Forum Discussion
Office 365 MFA Enabled Users and the Apple Mail app for iOS Concern
I just enabled MFA and I have the same recurring iOS password request. I loaded the Outlook app but I later found the work around for this issue. Like most people, I didn't write down the App Password. Here's how you generate another one. When you enter it in the password field instead of your mail password, the popup goes away and the mail loads. I saved it this time so that I'll have it in the future.
https://www.hendrix.edu/HelpDesk/Computers_and_Devices/Mobile_Devices/Set-Up_Email_Access_with_MFA_(Apple_Mail)/
I'm revisiting my own post as I see this is still a problem. Onboarded new customer and users prefer the native Mail app. Still continuous prompts with MFA enforced or if the Security Defaults is enabled. The app password is not 100% reliable.
So anyone figure out a decent work around? Still seems like broken promises from Apple that they have resolved this issues with Microsoft 365...
- You have to go into Office 365 and turn on Modern Authentication. Microsoft says in their literature its enabled by default but it’s not.
Turn on Modern authentication for your organization
For most subscriptions modern authentication is automatically turned on, but if you purchased your subscription a long time ago, it might not be. This has to be turned on before MFA works appropriately with Office apps.
In the Microsoft 365 admin center, in the left nav choose Settings > Org settings.
Under Services tab, choose Modern authentication, and in the Modern authentication pane, make sure Enable Modern authentication is selected. Choose Save changes.- Oh it’s enabled... This isn’t my first rodeo with this problem...
Alex Melching We have the same issue here. Users work fine in the Outlook mobile app, but the handful using the native iOS mail client repeatedly receive the prompt for password/edit settings. I haven't been able to find a solution to this anywhere other than forcing people to use Outlook Mobile. We have been using Conditional Access for some time. Everyone is properly licensed and our org is enabled globally for modern auth. I'm not exactly sure where to go from here. There's a disconnect somewhere.
