ASP.NET

How to integrate Single Sign On authorization through Active Directory with JWT authorization (ASP.NET Core)?

Hey!
Now my site has login and password authorization through JWT tokens. It is necessary to add Single Sign On authorization through Active Directory to the existing authorization. I still don’t really understand how it should look like in general and what data the backend should receive from the frontend. And is it possible to implement the following logic:
1. The user enters the authorization site.
2. The site sends the login and password of the current logged in user from Active Directory (I doubt that there is, of course, the possibility of obtaining the Active Directory password, at least a hash).
3. The backend checks the validity of the login / password data (password hash), determines the role and rights of the user from the database by the login.
4. In case of successful authorization, the backend returns a JWT token and the user's role in the system.