The only option is to use the egress interface for source nat.
I usually set these up using the dip option "In the same subnet as the extended IP" instead of a secondary interface ip. Using this option the ip address or pool can by anywhere at all you want. These can even overlap or be the same as other interfaces on the same device.
Naturally you can't use the dip addresses for any other active devices or there will be a conflict, but the range itself does not need to be assigned to the actual egress interface to use the dip address.
I've used this method for remote vpn nat on a number of connections successfully.