If I modify the default authentication policy and disable all the basic authentication protocols using the "new available" GUI settings, I notice that AllowBasicAuthOutlookService and AllowBasicAuthReporingWebServices are still enabled in the created policy.
Is there any specific reason for not including these settings in the GUI at this time? And if I block legacy authentication using a Conditional Access policy I assume that the two mentioned settings will be blocked? Is the effect of the CA policy the same of having a authentication policy where all AllowBasicAuth* settings are set to False/Disabled?
I've written down my experiences with phasing out Legacy authentication so far at https://www.vansurksum.com/2020/03/01/microsoft-is-going-to-disable-basic-legacy-authentication-for-exchange-online-what-does-that-actually-mean-and-does-that-impact-me/, hoping to provide a central location for information related to this upcoming change. I'll try to keep it up to date as much as possible with my learnings over time.