New versions of Outlook, 2019 and Outlook for Microsoft 365 do support it out of the box. To use Modern Authentication with older versions of Outlook you may need to change some settings on the client-side.
WHERE DO YOU SWITCH OUTLOOK IDENTITY ANDROID
The easiest option is to switch to the Outlook App on Android and Apple devices. Most sign-in events will probably from native email clients on mobile phones. You can use the list to migrate the applications to the modern authentication protocol. This will list all sign-in events from the last 7 days with the user and application that is used. Thick all Legacy Authentication Clients.Click again on the filter (now labeled client app).Change the date range to the last 7 days.So the first step is to find out which users and applications that are. Now you can’t just turn them all off, because most users and probably also some business applications are using them. The next step in the process is to disable the basic authentication protocols.
WHERE DO YOU SWITCH OUTLOOK IDENTITY WINDOWS
Turn on modern authentication for Outlook 2013 for Windows and laterĭisabling the Basic Authentication Protocols.Expand Settings and click on Org Settings.The first step is to enable Modern Authentication, but after we have enabled it we will need to phase out the basic authentication methods. There are a couple of steps when it comes to enabling modern authentication in Office 365. With MFA the user needs to log in with something he knows (username and password) and something he has, a one-time token on the mobile phone. So we can give app-only access to the mailbox of the user, but not the OneDrive for example.Īnother really important advantage of modern authentication in Office 365 is that we can use Multi-Factor Authentication, also known as MFA. Another advantage of the token is that we can define a permission scope. The token has a limited lifetime after which it will become invalid. An application doesn’t store the credentials of the users, but authentication is done with tokens.Īfter a user logs in with their account, a token is given back to the application. Modern Authentication on the other hand is based on ADAL (Active Directory Authentication Library) and OAuth 2.0. So each app can have access to all the data of the user. Another problem with basic authentication is that you can’t define the permission scope for the application. This means that the app has stored the credentials of the user somewhere in the application’s storage, making it vulnerable to attackers. With basic authentication, each app or add-in that needs to authenticate against Office 365 will pass the credentials of the user with each request. Basic Authentication vs Modern Authenticationīasic Authentication is the old way of logging in with only a username and password. So now is a really good time to take a closer look at Modern Authentication and how you can enable it in your Office 365 tenant. Starting in June 2021, Microsoft will start with disabling the Basic Authentication method for the tenants who don’t use it. But still, a lot of existing tenants are using basic authentication and/or the old protocols. Modern Authentication is enabled by default in Office 365 for tenants created after Aug 2017. Especially in combination with legacy protocols, like SMTP and IMAP. This makes your tenant really vulnerable to attacks. Phishing emails for example are an effective way for criminals to get the users’ credentials. It’s more secure than the Basic Authentication method, which relied only on a username and password.Īs we all know by now, usernames and passwords get easily stolen. Modern Authentication in Office 365 is a combination of authentication and authorization methods.