Your organization uses a centralized identity provider to manage access for both human and machine users. You want to use this identity management system to enable on-premises applications to access Google Cloud without embedding hard-coded credentials. What should you do?