...
- Do internal Service/Resource accounts exist for users of the service?** If so, describe how those are provisioned (e.g. file upload, vendor-provided API, SAML assertion)
- Has it been decided where the Identity Provider will run? What credentials the users will use to authenticate?
- If so, please describe