External BAQ To Azure DB requiring MFA

Has anyone added a External Data source from Azure that requires MFA? I opened a ticket with Epicor support and they stated that it is not supported or in the plans to be supported. I have a couple ideas on how to get around this. I was thinking we could use a ODBC connection or a specific account and remove the MFA requirement for that account. If anyone else has already done this I would appreciate if you share what you did and why you chose that path.

Can we drill into this a bit?

When you do an external BAQ, that is a server to (db) server communication. How do you envision a MFA access?

If you look at SAML or OAuth based protocols, there is a redirect to an IdP that the user needs to satisfy before obtaining a token to submit to the resource.

So:
E10 server is asked to go to external DB
External DB server redirects e10 to a web site to obtain a token… ERP server has no UX so fails.

(FYI - Take a gander at the Azure AD video series on this - Authentication fundamentals: The basics | Azure Active Directory - YouTube - Quite good and very short)

Are we trying to do a federated security model? (See video 4).

I am very interested in a few scenarios around this but am trying to understand if it’s a legislation issue or what that is driving these kinds of requests.

I would love to chat!

How do you use this database without epicor? How the access happens?