Would it be possible to somehow link or delegate logins to AzureAD?
This would make it much easier to maintain individual (user) accounts without the manual administration effort required.
I would imagine that you could designate a group or groups within an account that are capable of logging in.

Answered question