We are going to be working on updating a asp.net 4.72 framework web apps and web apis next year. Currently, we are researching the changes in moving to .NET 6 to plan for the migration. One item we would like to tackle is user authentication which is currently using NTLM username/passwords from our AD servers. Is there a path for moving away from NTLM to OpenID Connect that still uses our AD servers or would we need to move all users to Azure AD? We haven't found examples/documentation for the use of Microsoft.Identity.Web on premise.