Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,378 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 81%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
To identify if your users have apps that are using basic auth, you can go to the sign-ins page:
1) Navigate to the Azure portal > Azure Active Directory > Sign-ins.
2) Add the Client App column if it is not shown by clicking on Columns > Client App.
3) Add filters > Client App > select all of the legacy authentication protocols. Select outside the filtering dialog box to apply your selections and close the dialog box.
4) If you have activated the new sign-in activity reports preview, repeat the above steps also on the User sign-ins (non-interactive) tab.
These logs will indicate which users are still depending on legacy authentication and which applications are using legacy protocols to make authentication requests.
Another way to do this is to create a Conditional Access policy in reporting mode and query for legacy authentication.
Refer to:
How to: Block legacy authentication to Azure AD with Conditional Access
What is Conditional Access report-only mode?