question

FletcherKevin-4084 avatar image
1 Vote"
FletcherKevin-4084 asked ·

Relation between disabling legacy protocols and disabling legacy authentication

I have read several articles about disabling legacy auth and still other articles about disabling legacy protocols. I'm confused how these two are related.

https://blogs.technet.microsoft.com/cloudready/2018/11/21/part-16-disable-office-365-legacy-email-authentication-protocols/

Is it possible to disable legacy protocols without enabling modern authentication? Are the two the same thing?

In the O365 secure score there used to be (I don't see it now) a action for disabling legacy protocols.

azure-ad-authenticationazure-ad-authentication-protocols
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

BijuThankappan-5910 avatar image
0 Votes"
BijuThankappan-5910 answered ·

FletcherKevin-4084 Legacy authentication refers to legacy protocols that use basic authentication. Azure AD supports variety of authentication protocols including legacy authentication. However, legacy protocols don’t support multi-factor authentication (MFA) and other features. Read all about these modern protocols here. Legacy and modern authentication/protocols are not the same. You may disable legacy authentication/protocol, however, you would still need modern authentication/protocols enabled.


· Share
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

FletcherKevin-4084 avatar image
0 Votes"
FletcherKevin-4084 answered ·

BijuThankappan-5910

Thank you. To clarify... I cannot disable legacy protocols without enabling modern authentication. Correct?

· 1 · Share
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Modern authentication is enabled by default and preferred by default. It's just about applications if they support modern authentication (so it's used) or not. So if you don't have applications that don't support modern authentication, then you don't need basic/legacy authentication and you should disable it.

0 Votes 0 ·