Everest Pega Cloud is configured with Azure SSO to grant platform access and user access is given based on Active Directory Group membership. But there is one application in the platform which they use Pega as their backend application to create cases from an external system via pega REST api and get assignments from the same external system via pega REST api.

To get the assignments for a user they are using Pega API method GET assignments and they have to pass username and password. But since we are only authenticating users externally our operator ids does not have a password. External system users are already authenticated to their system and they are planning to send the SAML token via the REST api and we a looking a way to authenticate users using this SAML token or any other way as users are not configured with a password or we need an API method to only pass the username and get assignments.