After going live, we switched to Azure AD federated logins; this was a bit of a pain because we had to abandon all the original native accounts as they were replaced by disconnected/unlinked Azure AD accounts.
We’re now in the process of migrating to Okta as our IdP and while I am able to get the Open ID connection set up, the user bind functionality doesn’t seem to match to Azure AD accounts (I suppose because it’s intended for native accounts).
Is there any way to have Okta via OpenID bind to existing Azure AD accounts, or do we need to abandon a set of IDs again in order to make this work? If the latter, is there a way to migrate ownership of items to the new ID?