Problem getting into my Desktop apps (outlook) after using Secure Score

%3CLINGO-SUB%20id%3D%22lingo-sub-773419%22%20slang%3D%22en-US%22%3EProblem%20getting%20into%20my%20Desktop%20apps%20(outlook)%20after%20using%20Secure%20Score%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-773419%22%20slang%3D%22en-US%22%3E%3CDIV%3E%3CDIV%3E%3CDIV%20class%3D%22_2ClJEwk6eSEncgqg9UR7rA%22%3E%3CDIV%20class%3D%22_2K9cq09BpeKeOlbW-Cgg3e%22%3E%3CDIV%3E%3CDIV%20class%3D%22_2nXzzTh-iOqGeRvwK4aMZV%22%3E%3CDIV%20class%3D%22ms-Button-flexContainer%20flexContainer-140%22%3EHello%2C%3C%2FDIV%3E%3C%2FDIV%3E%3C%2FDIV%3E%3C%2FDIV%3E%3C%2FDIV%3E%3C%2FDIV%3E%3C%2FDIV%3E%3CDIV%3E%3CDIV%20class%3D%22_3U2q6dcdZCrTrR_42Nxby%20JWNdg1hee9_Rz6bIGvG1c%20allowTextSelection%22%3E%3CDIV%3E%3CDIV%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FDIV%3E%3CDIV%3E%3CSPAN%3ESo%20I%20believe%20the%20%22Enable%20policy%20to%20block%20legacy%20authentication%22%20is%20what's%20giving%20me%20this%20trouble.%20This%20is%20the%20description%20secure%20score%20gives%20--%20%22Blocking%20legacy%20authentication%20makes%20it%20harder%20for%20attackers%20to%20gain%20access.%20Office%202013%20client%20apps%20support%20legacy%20authentication%20by%20default.%20Legacy%20means%20that%20they%20support%20either%20Microsoft%20Online%20Sign-in%20Assistant%20or%20basic%20authentication.%20In%20order%20for%20these%20clients%20to%20use%20modern%20authentication%20features%2C%20the%20Windows%20client%20has%20have%20registry%20keys%20set.%20%22%20%3CSTRONG%3EThese%20were%20the%20steps%20secure%20score%20said%20to%20take%3C%2FSTRONG%3E---%20In%20the%20Azure%20AD%20conditional%20access%20portal%2C%201.%20Click%20%2BNew%20policy%202.%20Conditions%20%26gt%3B%20Client%20Apps%20%26gt%3B%20Configure%20(Yes)%20%26gt%3B%20Explicitly%20select%20Mobile%20apps%20and%20desktop%20clients%20and%20Other%20clients%203.%20Under%20Access%20controls%20%26gt%3B%20select%20Block.%20Leave%20all%20other%20conditions%20blank%204.%20Make%20sure%20the%20policy%20is%20enabled%205.%20Create.%20For%20more%20info%2C%20see%20How%20to%3A%20Block%20legacy%20authentication%20to%20Azure%20AD%20with%20conditional%20access.%3C%2FSPAN%3E%3C%2FDIV%3E%3CDIV%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FDIV%3E%3CDIV%3E%3CSPAN%3E%26nbsp%3BI've%20tried%20disabling%20the%20policy%20but%20with%20no%20luck.%20Below%20is%20a%20picture%20of%20the%20credential%20pop-up%20Microsoft%20asks%20for%20in%20order%20to%20sign%20into%20Outlook%20via%20desktop%20app.%20It%20will%20not%20accept%20any%20password%20and%20continues%20to%20ask.%20Maybe%20it%20is%20not%20the%20legacy%20policy%3F%26nbsp%3B%3C%2FSPAN%3E%3C%2FDIV%3E%3CDIV%3E%26nbsp%3B%3C%2FDIV%3E%3CDIV%3E%3CSPAN%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20style%3D%22width%3A%20999px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Fgxcuf89792.i.lithium.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F124479i29B8341660859F82%2Fimage-size%2Flarge%3Fv%3D1.0%26amp%3Bpx%3D999%22%20alt%3D%22SS.PNG%22%20title%3D%22SS.PNG%22%20%2F%3E%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FDIV%3E%3CDIV%3E%3CDIV%3E%3CDIV%20class%3D%22jgenqigMC4s0jMUDuG-YY%22%3E%26nbsp%3B%3C%2FDIV%3E%3C%2FDIV%3E%3CDIV%3E%3CDIV%20class%3D%22_3U2q6dcdZCrTrR_42Nxby%20JWNdg1hee9_Rz6bIGvG1c%20allowTextSelection%22%3E%3CDIV%3E%3CDIV%3E%3CDIV%3E%3CDIV%3E%26nbsp%3B%3C%2FDIV%3E%3C%2FDIV%3E%3C%2FDIV%3E%3C%2FDIV%3E%3C%2FDIV%3E%3C%2FDIV%3E%3C%2FDIV%3E%3CDIV%3E%26nbsp%3B%3C%2FDIV%3E%3C%2FDIV%3E%3C%2FDIV%3E%3C%2FDIV%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-773419%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EAzure%20Outlook%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
Highlighted
Visitor
Hello,
 
So I believe the "Enable policy to block legacy authentication" is what's giving me this trouble. This is the description secure score gives -- "Blocking legacy authentication makes it harder for attackers to gain access. Office 2013 client apps support legacy authentication by default. Legacy means that they support either Microsoft Online Sign-in Assistant or basic authentication. In order for these clients to use modern authentication features, the Windows client has have registry keys set. " These were the steps secure score said to take--- In the Azure AD conditional access portal, 1. Click +New policy 2. Conditions > Client Apps > Configure (Yes) > Explicitly select Mobile apps and desktop clients and Other clients 3. Under Access controls > select Block. Leave all other conditions blank 4. Make sure the policy is enabled 5. Create. For more info, see How to: Block legacy authentication to Azure AD with conditional access.
 
 I've tried disabling the policy but with no luck. Below is a picture of the credential pop-up Microsoft asks for in order to sign into Outlook via desktop app. It will not accept any password and continues to ask. Maybe it is not the legacy policy? 
 
SS.PNG
 
 
 
0 Replies