We have a .Net Web Application that uses Single Sign On implemented by OpenID Connect to create an ID token and log a user in. Specifically
In order for me to query Graph API I assume I need an Access token (plus I want to be mindful of token expiry and refresh).
I figured it out.
The main application uses OpenID Connect to establish an ID Token. I then use MSAL.js to silently login utilizing my already established SSO session.
This is the sample I followed:
I then can acquire an access token to query Graph API.