It would be good if in addition to service principles and Managed Identity, Harness support Entra ID workload identity for connecting to Azure from delegates. This would allow service principle type authentication, so scoped to specific org/project, but without the need to manage password. https://learn.microsoft.com/en-us/entra/workload-id/workload-identities-overview