Manage AD authenticated users and token(password) authenticated users in one realm

We create quite large app, and assume at least 3 general roles in it: operations, beneficiaries and experts. Is there a way to authenticate users in diffrent way? Like: operarions via AD, beneficiaries and experts via tokens aquired after providing valid password - in one realm?
We want all users to register/login upon one url(same domain) while realm seams meant to be the place to manage all users to authenticte in one app.
Thanks!!!