Starting on October 1, 2022, Microsoft is starting to disable an outdated way of logging into Exchange Online known as “basic authentication.” This outdated method is vulnerable to various forms of p...
Updated Nov 09, 2023
Version 8.0
Blog Post
4 MIN READ
Exchange Online email applications stopped signing in, or keep asking for passwords? Start here.
Seeking clarification on this:
What about application passwords? Will that keep working?
If application passwords are being used for MFA (Multi Factor Authentication) along with basic auth as another auth mechanism, then when basic authentication is disabled, app passwords used for MFA will stop working too.
I have a run-of-the-mill CRM that uses IMAP to collect emails and insert into the CRM as cases. I am aware of the risks, and have IMAP, POP, etc turned off for all other email accounts. But for this one email account it requires basic auth for IMAP access. I'd like to know if there is a way to use an app password moving forward. Or if I need to contact the CRM vendor (or move away from Microsoft altogether).
The wording of the above paragraph is quite confusing. Is this a clear case that ALL app passwords will be disabled, or that under certain conditions they will continue to work? If it is the later, I'd like to know what conditions to replicate so that I can use app passwords for my CRM setup.