For your scenario, Microsoft Entra ID could be a good solution for authentication purposes. It supports modern authentication protocols and provides identity and access management in Azure, covering the management plane of Azure and integrating with the data planes of most Azure services. Microsoft Entra ID natively supports modern protocols such as SAML, WS-Fed, and OpenID Connect, and can also support legacy authentication methods through independent software vendors (ISVs) solutions.
If you were to use Microsoft Entra ID, the setup would involve configuring your Azure App Gateway V2 to use Microsoft Entra ID for authentication. You would need to configure the appropriate authentication method, such as Microsoft Entra password hash synchronization or pass-through authentication, depending on your requirements. You can also use Microsoft Entra Conditional Access to dynamically control or block access to your applications based on risk conditions.
References: