Allow AIM to directly authenticate users from other Identity Providers without CONNECT

Currently, AIM can only use CONNECT or Microsoft Entra ID as the main Identity Provider. Configuring any other IDP requires federation through CONNECT.

Allowing other IDPs to work directly with AIM without CONNECT would simplify the OIDC configuration and keep admins from having to synchronize user accounts from their IDP to CONNECT.