Basic Authentication Deprecation in Exchange Online – May 2022 Update

Published May 03 2022 03:25 PM 58K Views

In about 150 days from today, we’re going to start to turn off Basic Auth for specific protocols in Exchange Online for those customers still using it.

Since we announced the October 1, 2022 deadline last year we’ve seen great progress from customers and partners as they move their clients and apps from basic to Modern Authentication. Since there are a lot of customers still using Basic Auth, we wanted to re-state the scope and implications of this change, and to answer some of the common questions we get.

As a reminder, Basic Auth is still one of, if not the most common ways our customers get compromised, and these types of attacks are increasing.

We’ve disabled Basic Auth in millions of tenants that weren’t using it, and we’re currently disabling unused protocols within tenants that still use it, but every day your tenant has Basic Auth enabled, you are at risk from attack.

Timeline and Scope

As we communicated last year in blog posts and Message Center posts, we will start to turn off Basic Authentication in our worldwide multi-tenant service on October 1, 2022. To be clear, we will start on October 1; this is not the date we turn it off for everyone. We will randomly select tenants, send 7-day warning Message Center posts (and post Service Health Dashboard notices), then we will turn off Basic Auth in the tenant. We expect to complete this by the end of this year. You should therefore be ready by October 1.

We’re turning off Basic Auth for the following protocols: MAPI, RPC, Offline Address Book (OAB), Exchange Web Services (EWS), POP, IMAP, Exchange ActiveSync (EAS), and Remote PowerShell.

We are not turning off SMTP AUTH. We have turned off SMTP AUTH for millions of tenants not using it, but if SMTP AUTH is enabled in your tenant, it’s because we see usage and so we won’t touch it. We do recommend you disable it at the tenant level and re-enable it only for those user accounts that still need it.

Exceptions and Per-Tenant Timing

There is no way to request an exception after October. Tenant selection is random, and we cannot put your tenant to the back of the queue to give you more time or change your settings on any specific date. If you want Basic Auth to be disabled at a time of your choosing (either now, or as soon as you are ready), use Authentication Policies. More info on that below.

What should I do to prepare for this change?

Any client (user app, script, integration, etc.) using Basic Auth for one of the affected protocols will be unable to connect. The app will receive an HTTP 401 error: bad username or password.

Any app using Modern Auth for these same protocols will be unaffected.

Our documentation page lists some of the common apps and what can be done to switch them from basic to Modern Auth, but based on calls with customers of all sizes, here are some common themes:

  1. If you have Outlook for Windows, make sure it’s up to date, has the right registry keys in place and most importantly – that the tenant-wide switch to enable is set to True! Without that setting Outlook for Windows won’t use Modern Auth. So, turn it on. If clients are already logged in to another Microsoft 365 app, such as Teams, they are already authenticated and so it’s very likely they will not see any kind of auth prompt. We are turning this setting on for customers as we disable Basic Auth for MAPI/RPC in the tenant, but not before. We want to make sure Outlook can connect using Modern Auth once Basic Auth is disabled. Outlook doesn’t support OAuth with POP and IMAP – if you want to use POP and IMAP, with a client app, you’ll need another app.
  2. POP/IMAP – we have several customers using these protocols for application access. POP and IMAP both support OAuth for interactive applications, and we’re rolling out support for non-interactive flows now. If you are a developer you’ll know where to look, and if you do that right now you’ll find the IMAP.AccessAsApp and POP.AccessAsApp permissions. We’ll have some guidance on how to use them very soon, so watch out for that.
  3. EWS apps – we also have several customers with apps that use EWS and Basic Auth. EWS supports app-only access and you can use Application Access Policies to control what an app can access – if you have apps using EWS with Basic Auth, you need to either modify the code, or get the app owner to do so. Many partner apps have support for Modern Auth, you just need to modify your configuration or update to the latest versions. Do it now!
  4. Exchange ActiveSync – all the native apps on up-to-date clients support Modern Auth, but many users devices are still using Basic Auth. If you use an MDM/MAM solution, use it to deploy new profiles. Here’s how you can use Intune to set the auth mechanism for iPhone and iPad, for example. If you don’t have an MDM, simply remove and re-add the account from the device and it should automatically switch to Modern Auth.
  5. PowerShell scripts – If you have scripts you need to run, follow this guide to use Modern Auth in your scripts.
  6. Reporting Web Services – the support for OAuth is rolling out now (to be completed by end of May). Basic Auth will be disabled starting October 1.
  7. Microsoft Teams Rooms – make sure they are using Modern Auth by following these steps.

How do you know you are still using Basic Auth? Azure AD sign-in events is the best place to look (filter by client app, then in the client app filter, check the boxes for the affected protocols under Legacy Authentication Clients). Check out this post for more info.

We also send monthly Message Center posts to tenants using Basic Auth, summarizing their usage. We’ve been doing this since October 2021. These are not as exact as Azure AD’s reports; they are meant as an indicator of usage, but if you get one, you should investigate what’s causing it.

Sometimes, we are asked if we can send the list of users still using Basic Auth. Unfortunately, we cannot send you a list, because that information is only available inside your tenant for privacy reasons. Of course, this information is available to admins in the Azure portal.

What’s the Best Way to Disable Basic Auth Once I’m Done?

The absolute best way to disable Basic Auth is to use Authentication Policies to block Basic Auth. As this article clearly states, if you want to block Basic Auth, use Auth Policies. Don’t use Set-CASMailbox or Conditional Access, as those are both post-authentication. They prevent access to the data, but they don’t stop authentication.

You might notice that that we’re not disabling Autodiscover at this time. That’s something we’ll do once the clients that depend on it are using Modern Auth, but it’s also something you can do for yourself with Authentication Policies.

What If I Still Need Help?

If you still need help, that’s where our amazing network of partners, MVPs, community, and Microsoft support engineers come in. There’s a huge amount of experience and knowledge to help you with this transition. So, ask questions, look for help, and most importantly – disable Basic Auth and get secure!

The Exchange Team

41 Comments
%3CLINGO-SUB%20id%3D%22lingo-sub-3302102%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3302102%22%20slang%3D%22en-US%22%3E%3CP%3EIndeed%2C%20thanks%20for%20all%20the%20incredible%20accommodations%20you've%20invented%20and%20provided%20to%20make%20this%20possible%20to%20finally%20pull%20off.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3301997%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3301997%22%20slang%3D%22en-US%22%3E%3CP%3EVery%20well%20done.%20Like%20also%20all%20the%20Notifications%20in%20the%20Message%20Center.%20Great%20Job!%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3301930%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3301930%22%20slang%3D%22en-US%22%3E%3CP%3EThanks%20for%20all%20the%20tremendous%20work%20you're%20doing%20here!%20Death%20to%20Basic%20Auth!%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3322687%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3322687%22%20slang%3D%22en-US%22%3E%3CP%3EAs%20far%20as%20I%20know%20is%20Skype%20for%20Business%20client%20using%20EWS.%20Is%20this%20able%20to%20use%20Modern%20Auth%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3322386%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3322386%22%20slang%3D%22en-US%22%3E%3CP%3EWhen%20will%20you%20update%20the%20Sync-ModernMailPublicFolders.ps1%20%26amp%3B%20Sync-MailPublicFolders.ps1-Scripts%20(used%20for%20migrating%20Public%20Folders%20to%20EXO)%20to%20use%20Modern%20Auth%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3324711%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3324711%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F1381833%22%20target%3D%22_blank%22%3E%40AWeinmann%3C%2FA%3E%26nbsp%3Bfinal%20testing%20happening%20now%2C%20we'll%20have%20new%20scripts%20ready%20very%20soon.%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3301866%22%20slang%3D%22en-US%22%3EBasic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3301866%22%20slang%3D%22en-US%22%3E%3CP%3EIn%20about%20150%20days%20from%20today%2C%20we%E2%80%99re%20going%20to%20start%20to%20turn%20off%20Basic%20Auth%20for%20specific%20protocols%20in%20Exchange%20Online%20for%20those%20customers%20still%20using%20it.%3C%2FP%3E%3CP%3ESince%20%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fexchange-team-blog%2Fbasic-authentication-and-exchange-online-september-2021-update%2Fba-p%2F2772210%22%20target%3D%22_blank%22%3Ewe%20announced%20the%20October%201%2C%202022%20deadline%20last%20year%3C%2FA%3E%20we%E2%80%99ve%20seen%20great%20progress%20from%20customers%20and%20partners%20as%20they%20move%20their%20clients%20and%20apps%20from%20basic%20to%20Modern%20Authentication.%20Since%20there%20are%20a%20lot%20of%20customers%20still%20using%20Basic%20Auth%2C%20we%20wanted%20to%20re-state%20the%20scope%20and%20implications%20of%20this%20change%2C%20and%20to%20answer%20some%20of%20the%20common%20questions%20we%20get.%3C%2FP%3E%3CP%3EAs%20a%20reminder%2C%20Basic%20Auth%20is%20still%20one%20of%2C%20if%20not%20the%20most%20common%20ways%20our%20customers%20get%20compromised%2C%20and%20these%20types%20of%20attacks%20are%20increasing.%3C%2FP%3E%3CP%3EWe%E2%80%99ve%20disabled%20Basic%20Auth%20in%20millions%20of%20tenants%20that%20weren%E2%80%99t%20using%20it%2C%20and%20we%E2%80%99re%20currently%20disabling%20unused%20protocols%20within%20tenants%20that%20still%20use%20it%2C%20but%20every%20day%20your%20tenant%20has%20Basic%20Auth%20enabled%2C%20you%20are%20at%20risk%20from%20attack.%3C%2FP%3E%3CP%3ETimeline%20and%20Scope%3C%2FP%3E%3CP%3EAs%20we%20communicated%20last%20year%20in%20%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fexchange-team-blog%2Fbasic-authentication-and-exchange-online-september-2021-update%2Fba-p%2F2772210%22%20target%3D%22_blank%22%3Eblog%20posts%3C%2FA%3E%20and%20Message%20Center%20posts%2C%20we%20will%20start%20to%20turn%20off%20Basic%20Authentication%20in%20our%20worldwide%20multi-tenant%20service%20on%20October%201%2C%202022.%20To%20be%20clear%2C%20we%20will%20start%20on%20October%201%3B%20this%20is%20not%20the%20date%20we%20turn%20it%20off%20for%20everyone.%20We%20will%20randomly%20select%20tenants%2C%20send%207-day%20warning%20Message%20Center%20posts%20(and%20post%20Service%20Health%20Dashboard%20notices)%2C%20then%20we%20will%20turn%20off%20Basic%20Auth%20in%20the%20tenant.%20We%20expect%20to%20complete%20this%20by%20the%20end%20of%20this%20year.%20You%20should%20therefore%20be%20ready%20by%20October%201.%3C%2FP%3E%3CP%3EWe%E2%80%99re%20turning%20off%20Basic%20Auth%20for%20the%20following%20protocols%3A%20MAPI%2C%20RPC%2C%20Offline%20Address%20Book%20(OAB)%2C%20Exchange%20Web%20Services%20(EWS)%2C%20POP%2C%20IMAP%2C%20Exchange%20ActiveSync%20(EAS)%2C%20and%20Remote%20PowerShell.%3C%2FP%3E%3CP%3EWe%20are%20not%20turning%20off%20SMTP%20AUTH.%20We%20have%20turned%20off%20SMTP%20AUTH%20for%20millions%20of%20tenants%20not%20using%20it%2C%20but%20if%20SMTP%20AUTH%20is%20enabled%20in%20your%20tenant%2C%20it%E2%80%99s%20because%20we%20see%20usage%20and%20so%20we%20won%E2%80%99t%20touch%20it.%20We%20do%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fexchange%2Fclients-and-mobile-in-exchange-online%2Fauthenticated-client-smtp-submission%22%20rel%3D%22noopener%20noreferrer%22%20target%3D%22_blank%22%3Erecommend%3C%2FA%3E%20you%20disable%20it%20at%20the%20tenant%20level%20and%20re-enable%20it%20only%20for%20those%20user%20accounts%20that%20still%20need%20it.%3C%2FP%3E%3CP%3EExceptions%20and%20Per-Tenant%20Timing%3C%2FP%3E%3CP%3EThere%20is%20no%20way%20to%20request%20an%20exception%20after%20October.%20Tenant%20selection%20is%20random%2C%20and%20we%20cannot%20put%20your%20tenant%20to%20the%20back%20of%20the%20queue%20to%20give%20you%20more%20time%20or%20change%20your%20settings%20on%20any%20specific%20date.%20If%20you%20want%20Basic%20Auth%20to%20be%20disabled%20at%20a%20time%20of%20your%20choosing%20(either%20now%2C%20or%20as%20soon%20as%20you%20are%20ready)%2C%20use%20Authentication%20Policies.%20More%20info%20on%20that%20below.%3C%2FP%3E%3CP%3EWhat%20should%20I%20do%20to%20prepare%20for%20this%20change%3F%3C%2FP%3E%3CP%3EAny%20client%20(user%20app%2C%20script%2C%20integration%2C%20etc.)%20using%20Basic%20Auth%20for%20one%20of%20the%20affected%20protocols%20will%20be%20unable%20to%20connect.%20The%20app%20will%20receive%20an%20HTTP%20401%20error%3A%20bad%20username%20or%20password.%3C%2FP%3E%3CP%3EAny%20app%20using%20Modern%20Auth%20for%20these%20same%20protocols%20will%20be%20unaffected.%3C%2FP%3E%3CP%3EOur%20documentation%20page%20lists%20some%20of%20the%20common%20apps%20and%20what%20can%20be%20done%20to%20switch%20them%20from%20basic%20to%20Modern%20Auth%2C%20but%20based%20on%20calls%20with%20customers%20of%20all%20sizes%2C%20here%20are%20some%20common%20themes%3A%3C%2FP%3EIf%20you%20have%20Outlook%20for%20Windows%2C%20make%20sure%20it%E2%80%99s%20up%20to%20date%2C%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fmicrosoft-365%2Fadmin%2Fsecurity-and-compliance%2Fenable-modern-authentication%22%20rel%3D%22noopener%20noreferrer%22%20target%3D%22_blank%22%3Ehas%20the%20right%20registry%20keys%20in%20place%3C%2FA%3E%20and%20most%20importantly%20%E2%80%93%20that%20the%20tenant-wide%20switch%20to%20enable%20is%20set%20to%20True!%20Without%20that%20setting%20Outlook%20for%20Windows%20won%E2%80%99t%20use%20Modern%20Auth.%20%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fexchange-team-blog%2Fenabling-modern-auth-for-outlook-how-hard-can-it-be%2Fba-p%2F2278411%22%20target%3D%22_blank%22%3ESo%2C%20turn%20it%20on%3C%2FA%3E.%20If%20clients%20are%20already%20logged%20in%20to%20another%20Microsoft%20365%20app%2C%20such%20as%20Teams%2C%20they%20are%20already%20authenticated%20and%20so%20it%E2%80%99s%20very%20likely%20they%20will%20not%20see%20any%20kind%20of%20auth%20prompt.%20We%20are%20turning%20this%20setting%20on%20for%20customers%20as%20we%20disable%20Basic%20Auth%20for%20MAPI%2FRPC%20in%20the%20tenant%2C%20but%20not%20before.%20We%20want%20to%20make%20sure%20Outlook%20can%20connect%20using%20Modern%20Auth%20once%20Basic%20Auth%20is%20disabled.%20Outlook%20doesn%E2%80%99t%20support%20OAuth%20with%20POP%20and%20IMAP%20%E2%80%93%20if%20you%20want%20to%20use%20POP%20and%20IMAP%2C%20with%20a%20client%20app%2C%20you%E2%80%99ll%20need%20another%20app.%20POP%2FIMAP%20%E2%80%93%20we%20have%20several%20customers%20using%20these%20protocols%20for%20application%20access.%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fexchange%2Fclient-developer%2Flegacy-protocols%2Fhow-to-authenticate-an-imap-pop-smtp-application-by-using-oauth%22%20rel%3D%22noopener%20noreferrer%22%20target%3D%22_blank%22%3EPOP%20and%20IMAP%20both%20support%20OAuth%3C%2FA%3E%20for%20interactive%20applications%2C%20and%20we%E2%80%99re%20rolling%20out%20support%20for%20non-interactive%20flows%20now.%20If%20you%20are%20a%20developer%20you%E2%80%99ll%20know%20where%20to%20look%2C%20and%20if%20you%20do%20that%20right%20now%20you%E2%80%99ll%20find%20the%20IMAP.AccessAsApp%20and%20POP.AccessAsApp%20permissions.%20We%E2%80%99ll%20have%20some%20guidance%20on%20how%20to%20use%20them%20very%20soon%2C%20so%20watch%20out%20for%20that.%20EWS%20apps%20%E2%80%93%20we%20also%20have%20several%20customers%20with%20apps%20that%20use%20EWS%20and%20Basic%20Auth.%20EWS%20supports%20app-only%20access%20and%20you%20can%20use%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fgraph%2Fauth-limit-mailbox-access%22%20rel%3D%22noopener%20noreferrer%22%20target%3D%22_blank%22%3EApplication%20Access%20Policies%3C%2FA%3E%20to%20control%20what%20an%20app%20can%20access%20%E2%80%93%20if%20you%20have%20apps%20using%20EWS%20with%20Basic%20Auth%2C%20you%20need%20to%20either%20modify%20the%20code%2C%20or%20get%20the%20app%20owner%20to%20do%20so.%20Many%20partner%20apps%20have%20support%20for%20Modern%20Auth%2C%20you%20just%20need%20to%20modify%20your%20configuration%20or%20update%20to%20the%20latest%20versions.%20Do%20it%20now!%20Exchange%20ActiveSync%20%E2%80%93%20all%20the%20native%20apps%20on%20up-to-date%20clients%20support%20Modern%20Auth%2C%20but%20many%20users%20devices%20are%20still%20using%20Basic%20Auth.%20If%20you%20use%20an%20MDM%2FMAM%20solution%2C%20use%20it%20to%20deploy%20new%20profiles.%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fmem%2Fintune%2Fconfiguration%2Femail-settings-ios%22%20rel%3D%22noopener%20noreferrer%22%20target%3D%22_blank%22%3EHere%E2%80%99s%3C%2FA%3E%20how%20you%20can%20use%20Intune%20to%20set%20the%20auth%20mechanism%20for%20iPhone%20and%20iPad%2C%20for%20example.%20If%20you%20don%E2%80%99t%20have%20an%20MDM%2C%20simply%20remove%20and%20re-add%20the%20account%20from%20the%20device%20and%20it%20should%20automatically%20switch%20to%20Modern%20Auth.%20PowerShell%20scripts%20%E2%80%93%20If%20you%20have%20scripts%20you%20need%20to%20run%2C%20follow%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fpowershell%2Fexchange%2Fapp-only-auth-powershell-v2%3Fview%3Dexchange-ps%22%20rel%3D%22noopener%20noreferrer%22%20target%3D%22_blank%22%3Ethis%3C%2FA%3E%20guide%20to%20use%20Modern%20Auth%20in%20your%20scripts.%20Reporting%20Web%20Services%20%E2%80%93%20the%20support%20for%20OAuth%20is%20rolling%20out%20now%20(to%20be%20completed%20by%20end%20of%20May).%20Basic%20Auth%20will%20be%20disabled%20starting%20October%201.%20Microsoft%20Teams%20Rooms%20%E2%80%93%20make%20sure%20they%20are%20using%20Modern%20Auth%20by%20following%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2FMicrosoftTeams%2Frooms%2Frooms-authentication%23prerequisites-specific-to-microsoft-teams-rooms%22%20rel%3D%22noopener%20noreferrer%22%20target%3D%22_blank%22%3Ethese%3C%2FA%3E%20steps.%3CP%3EHow%20do%20you%20know%20you%20are%20still%20using%20Basic%20Auth%3F%20Azure%20AD%20sign-in%20events%20is%20the%20best%20place%20to%20look%20(filter%20by%20client%20app%2C%20then%20in%20the%20client%20app%20filter%2C%20check%20the%20boxes%20for%20the%20affected%20protocols%20under%20Legacy%20Authentication%20Clients).%20Check%20out%20%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fazure-active-directory-identity%2Fnew-tools-to-block-legacy-authentication-in-your-organization%2Fba-p%2F1225302%22%20target%3D%22_blank%22%3Ethis%3C%2FA%3E%20post%20for%20more%20info.%3C%2FP%3E%3CP%3EWe%20also%20send%20monthly%20Message%20Center%20posts%20to%20tenants%20using%20Basic%20Auth%2C%20summarizing%20their%20usage.%20We%E2%80%99ve%20been%20doing%20this%20since%20October%202021.%20These%20are%20not%20as%20exact%20as%20Azure%20AD%E2%80%99s%20reports%3B%20they%20are%20meant%20as%20an%20indicator%20of%20usage%2C%20but%20if%20you%20get%20one%2C%20you%20should%20investigate%20what%E2%80%99s%20causing%20it.%3C%2FP%3E%3CP%3ESometimes%2C%20we%20are%20asked%20if%20we%20can%20send%20the%20list%20of%20users%20still%20using%20Basic%20Auth.%20Unfortunately%2C%20we%20cannot%20send%20you%20a%20list%2C%20because%20that%20information%20is%20only%20available%20inside%20your%20tenant%20for%20privacy%20reasons.%20Of%20course%2C%20this%20information%20is%20available%20to%20admins%20in%20the%20Azure%20portal.%3C%2FP%3E%3CP%3EWhat%E2%80%99s%20the%20Best%20Way%20to%20Disable%20Basic%20Auth%20Once%20I%E2%80%99m%20Done%3F%3C%2FP%3E%3CP%3EThe%20absolute%20best%20way%20to%20disable%20Basic%20Auth%20is%20to%20use%20Authentication%20Policies%20to%20block%20Basic%20Auth.%20As%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fexchange%2Fclients-and-mobile-in-exchange-online%2Fdisable-basic-authentication-in-exchange-online%22%20rel%3D%22noopener%20noreferrer%22%20target%3D%22_blank%22%3Ethis%3C%2FA%3E%20article%20clearly%20states%2C%20if%20you%20want%20to%20block%20Basic%20Auth%2C%20use%20Auth%20Policies.%20Don%E2%80%99t%20use%20Set-CASMailbox%20or%20Conditional%20Access%2C%20as%20those%20are%20both%20post-authentication.%20They%20prevent%20access%20to%20the%20data%2C%20but%20they%20don%E2%80%99t%20stop%20authentication.%3C%2FP%3E%3CP%3EYou%20might%20notice%20that%20that%20we%E2%80%99re%20not%20disabling%20Autodiscover%20at%20this%20time.%20That%E2%80%99s%20something%20we%E2%80%99ll%20do%20once%20the%20clients%20that%20depend%20on%20it%20are%20using%20Modern%20Auth%2C%20but%20it%E2%80%99s%20also%20something%20you%20can%20do%20for%20yourself%20with%20Authentication%20Policies.%3C%2FP%3E%3CP%3EWhat%20If%20I%20Still%20Need%20Help%3F%3C%2FP%3E%3CP%3EIf%20you%20still%20need%20help%2C%20that%E2%80%99s%20where%20our%20amazing%20network%20of%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fpartner-center%2Ffind-a-partner%22%20rel%3D%22noopener%20noreferrer%22%20target%3D%22_blank%22%3Epartners%3C%2FA%3E%2C%20%3CA%20href%3D%22https%3A%2F%2Fmvp.microsoft.com%2FMvpSearch%22%20rel%3D%22noopener%20noreferrer%22%20target%3D%22_blank%22%3EMVPs%3C%2FA%3E%2C%20%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2F%22%20target%3D%22_blank%22%3Ecommunity%3C%2FA%3E%2C%20and%20%3CA%20href%3D%22https%3A%2F%2Fsupport.microsoft.com%2F%22%20rel%3D%22noopener%20noreferrer%22%20target%3D%22_blank%22%3EMicrosoft%20support%3C%2FA%3E%20engineers%20come%20in.%20There%E2%80%99s%20a%20huge%20amount%20of%20experience%20and%20knowledge%20to%20help%20you%20with%20this%20transition.%20So%2C%20ask%20questions%2C%20look%20for%20help%2C%20and%20most%20importantly%20%E2%80%93%20disable%20Basic%20Auth%20and%20get%20secure!%3C%2FP%3E%3CP%3EThe%20Exchange%20Team%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-TEASER%20id%3D%22lingo-teaser-3301866%22%20slang%3D%22en-US%22%3E%3CP%3EIn%20about%20150%20days%20from%20today%2C%20we%E2%80%99re%20going%20to%20start%20to%20turn%20off%20Basic%20Auth%20for%20specific%20protocols%20in%20Exchange%20Online%20for%20those%20customers%20still%20using%20it.%3C%2FP%3E%3C%2FLINGO-TEASER%3E%3CLINGO-LABS%20id%3D%22lingo-labs-3301866%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EAnnouncements%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EExchange%20Online%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3ESecurity%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3ETips%20'n%20Tricks%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3346305%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3346305%22%20slang%3D%22en-US%22%3E%3CP%3EDo%20you%20plan%20to%20implement%20SMTP.SendAsApp%20and%20similar%20flows%3F%20Current%20SMTP%2BOAuth%20implementation%20requires%20hackish%20interactive%20flow%20approach.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3347738%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3347738%22%20slang%3D%22en-US%22%3E%3CP%3Esorry%20noob%20question.%26nbsp%3B%3C%2FP%3E%3CP%3Ewhat%20is%20basic%20and%20what%20is%20modern%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3348553%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3348553%22%20slang%3D%22en-US%22%3E%3CP%3EHi%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F884063%22%20target%3D%22_blank%22%3E%40Andrew_Woo%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3ECheck%20out%20my%20article%20about%20this%20here%3A%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Fblog.expta.com%2F2021%2F10%2Fnotes-and-details-on-eradication-of.html%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fblog.expta.com%2F2021%2F10%2Fnotes-and-details-on-eradication-of.html%3C%2FA%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3348634%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3348634%22%20slang%3D%22en-US%22%3E%3CP%3EThanks%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F65924%22%20target%3D%22_blank%22%3E%40Jeff%20Guillet%3C%2FA%3E%26nbsp%3Bfor%20a%20very%20insightful%20information.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3351098%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3351098%22%20slang%3D%22en-US%22%3E%3CP%3EDoes%20this%20also%20mean%20deprecation%20of%20the%20ability%20to%20create%20authentication%20policies%20via%20PowerShell%20to%20provide%20access%20to%20basic%20Auth%20for%20individual%20users%2Fservice%20accounts%3F%20Using%26nbsp%3B%3CSPAN%3ESet-AuthenticationPolicy.%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3351200%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3351200%22%20slang%3D%22en-US%22%3E%3CP%3ESo%20if%20I%20turn%20on%20Security%20Defaults%2C%20which%20turns%20on%20Modern%20Auth%20and%20MFA%2C%20can%20I%20then%20use%20an%20App%20Password%20for%20a%20custom%20email%20application%20to%20send%20emails%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3351237%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3351237%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F1337277%22%20target%3D%22_blank%22%3E%40daryl_zero890%3C%2FA%3E%26nbsp%3B-%20no.%20App%20passwords%20are%20basic%20auth%2C%20and%20Security%20Defaults%20will%20disable%20that.%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3ERemember%2C%20we're%20not%20blocking%20basic%20auth%20for%20SMTP%20(which%20is%20what%20your%20app%20uses%20to%20send%20mail%20I%20would%20assume%3F)%20-%20if%20you%20want%20to%20keep%20using%20it%20you%20can.%20If%20you%20want%20to%20update%20your%20app%20to%20use%20modern%20auth%2C%20so%20much%20the%20better%2C%20but%20we're%20not%20blocking%20basic%20for%20SMTP.%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3351559%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3351559%22%20slang%3D%22en-US%22%3E%3CP%3Ewe%20need%20your%20support%20for%20change%26nbsp%3B%3CSPAN%3Ebasic%20auth%20to%26nbsp%3B%3C%2FSPAN%3E%3CSPAN%3EModern%20Auth%20on%20our%20Tenant%20%3F%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%3CSPAN%3Eor%20you%20can%20send%20steps%20to%20Mohamed.Safwat%40elabdgroup.com%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3351577%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3351577%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F149115%22%20target%3D%22_blank%22%3E%40Greg%20Taylor%20-%20EXCHANGE%3C%2FA%3E%26nbsp%3B%20thanks%20for%20keeping%20us%20up%20to%20date.%20Is%20there%20a%20reference%20for%20using%20ModernAuth%20with%20SMTP%20in%20.NET%20core%20apps%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3351622%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3351622%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F1386029%22%20target%3D%22_blank%22%3E%40MohamedSafwat%3C%2FA%3E%20Go%20to%20your%20admin%20settings%20page%20-%20On%20the%20left%20click%20on%20Settings%20-%20Org%20Settings%20-%20scroll%20down%20to%20Modern%20Authentication%20and%20click%20on%20that.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3351723%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3351723%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F1337277%22%20target%3D%22_blank%22%3E%40daryl_zero890%3C%2FA%3E%26nbsp%3Bthanks%20Darly_Zero%20%2C%20after%20to%20finish%20it%20%2C%20any%20users%20at%20our%20mail%20server%20using%20outlook%26nbsp%3B%20ver%2010%2C13%2C16%2C19%20its%20working%20or%20need%20to%20configure%20all%20our%20mailboxes%20from%20level%20users%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3351845%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3351845%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F149115%22%20target%3D%22_blank%22%3E%40Greg%20Taylor%20-%20EXCHANGE%3C%2FA%3E%26nbsp%3B%20Thank%20you%20for%20the%20reply.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ESo%20is%20there%20a%20way%20to%20use%20App%20Passwords%20without%20turning%20on%20MFA%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20just%20happen%20to%20have%20a%20situation%20where%20a%203rd%20party%20ERP%20program%20wants%20to%20input%20all%20the%20email%20users%20accounts%20and%20passwords%20and%20I%20don't%20want%20to%20give%20them%20each%20users%20password.%26nbsp%3B%20This%20tenant%20has%20Modern%20Auth%20enabled%2C%20but%20not%20MFA%20right%20now.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThank%20you%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3352395%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3352395%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F149115%22%20target%3D%22_blank%22%3E%40Greg%20Taylor%20-%20EXCHANGE%3C%2FA%3E%3CSPAN%3E%26nbsp%3Bwill%20blocking%20of%20SMTP%20begin%20to%20occur%20after%20the%20October%20'22%20date%2C%20or%20will%20it%20remain%20ON%20for%20some%20time%20to%20come%3F%26nbsp%3B%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%3EThank%20you%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3353177%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3353177%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F1337277%22%20target%3D%22_blank%22%3E%40daryl_zero890%3C%2FA%3E%26nbsp%3BYou%20cannot%20use%20App%20Passwords%20without%20MFA%2C%20however%20if%20that%20ERP%20requires%20usernames%20and%20passwords%20for%20sending%20email%2C%20e.i.%20SMTP%2C%20you%20could%20create%20one%20account%20and%20then%20allow%20that%20account%20to%20SendAs%20dedicated%20users.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3351194%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3351194%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F698845%22%20target%3D%22_blank%22%3E%40ViliusS%3C%2FA%3E%26nbsp%3B-%20yes%2C%20that's%20the%20current%20plan%20(all%20plans%20can%20change).%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F1385964%22%20target%3D%22_blank%22%3E%40patricks1104%3C%2FA%3E%26nbsp%3B-%20there's%20no%20need%20for%20auth%20policies%20to%20enable%2Fdisable%20basic%20for%20the%20affected%20protocols%2C%20when%20basic%20is%20disabled%20at%20the%20tenant%20level.%20There%20are%20some%20protocols%20not%20currently%20in%20scope%20(Autodiscover%20is%20mentioned%20above%20for%20example)%2C%20so%20Auth%20Policies%20will%20still%20be%20useful%20for%20those.%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3353668%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3353668%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F698845%22%20target%3D%22_blank%22%3E%40ViliusS%3C%2FA%3E%26nbsp%3B%20Thanks!%26nbsp%3B%20I%20forgot%20about%20that.%26nbsp%3B%20I%20haven't%20done%20that%20in%20a%20long%20time.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThat%20would%20be%20up%20to%20the%20ERP%20software%20if%20they%20can%20do%20it%20though%20I%20think.%26nbsp%3B%20Since%20I%20don't%20know%20the%20ERP%20software%2C%20I%20wonder%20how%20would%20the%20ERP%20know%20to%20send%20as%20which%20user%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3351777%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3351777%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F1386029%22%20target%3D%22_blank%22%3E%40MohamedSafwat%3C%2FA%3E%26nbsp%3B%20Outlook%20Version%202010%20will%20NOT%20work%20with%20Modern%20Auth.%26nbsp%3B%20Outlook%202013%20will%20need%20registry%20keys%20added%20so%20that%20it%20works.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fmicrosoft-365%2Fadmin%2Fsecurity-and-compliance%2Fenable-modern-authentication%3Fview%3Do365-worldwide%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fmicrosoft-365%2Fadmin%2Fsecurity-and-compliance%2Fenable-modern-authentication%3Fview%3Do365-worldwide%3C%2FA%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Flazyadmin.nl%2Foffice-365%2Fmodern-authentication-office-365%2F%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Flazyadmin.nl%2Foffice-365%2Fmodern-authentication-office-365%2F%3C%2FA%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3353705%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3353705%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F1337277%22%20target%3D%22_blank%22%3E%40daryl_zero890%3C%2FA%3E%26nbsp%3BYes%2C%20it%20depends%20on%20the%20software%2C%20but%20usually%20the%20username%20and%20From%3A%20email%20address%20are%20completely%20separate%20fields%20in%20the%20settings.%20It%20needs%20username%20to%20authenticate%20to%20SMTP%20server%20and%20then%20can%20use%20any%20From%3A%20email%20address%20it%20likes%20which%20that%20user%20has%20permissions%20for.%20It%20just%20usually%20happens%20that%20username%20and%20From%3A%20email%20address%20is%20the%20same%2C%20but%20it%20is%20not%20mandatory%20to%20be%20so.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3354131%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3354131%22%20slang%3D%22en-US%22%3E%3CP%3EDoes%20this%20also%20affect%20EWS%20access%20with%20Basic%20auth%20to%20personal%20Ms%20accounts%20(Outlook.com%2C%20Live.com%2C%20Hotmail.com)%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3354830%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3354830%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F1386150%22%20target%3D%22_blank%22%3E%40brianttg%3C%2FA%3E%26nbsp%3B-%20SMTP%20AUTH%20is%20not%20being%20disabled.%20Top%20section%20of%20the%20blog%3A%20%22%3CSPAN%3EWe%20are%20not%20turning%20off%20SMTP%20AUTH.%20We%20have%20turned%20off%20SMTP%20AUTH%20for%20millions%20of%20tenants%20not%20using%20it%2C%20but%20if%20SMTP%20AUTH%20is%20enabled%20in%20your%20tenant%2C%20it%E2%80%99s%20because%20we%20see%20usage%20and%20so%20we%20won%E2%80%99t%20touch%20it.%26nbsp%3B%3C%2FSPAN%3E%22%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F1386410%22%20target%3D%22_blank%22%3E%40anconam%3C%2FA%3E%26nbsp%3B-%20no%2C%20not%20affected.%20Yet.%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3355004%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3355004%22%20slang%3D%22en-US%22%3E%3CP%3EYay...%20was%20glad%20I%20found%20the%20Blog%20via%20Bleeping....%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EMyself%2C%20I'm%20fine%20with%20Basic%20going%20the%20way%20of%20the%20ark%2C%20as%20it%20makes%20perfect%20sense%20from%20Security%20angle.%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThe%20problem%20we%20have%2C%20in%20New%20Zealand%20(NZ)%2C%20for%20a%20vast%20majority%20of%20our%20Small%20Business%20Customers%20(%3CEM%3E1%20-%2010%20user%20sites%3C%2FEM%3E)%20is%20that%20they%20rely%20on%203rd%20Party%20device%20%26amp%3B%20task%20alerting%20eMail%20software%20eg%3A%20UPS%2C%20Backups%20etc%20%26amp%3B%203rd%20Party%20Line%20of%20Business%20eg%3A%20Medical%20systems%2C%20that%20still%20use%20simple%20SMTP%20(user%2Fpassword%2FDNS%20Server%20name%2Fport%20%26amp%3B%20SSL%2FTLS)%2C%20or%20have%20a%20software%20with%20inbuilt%20mail%20clients%20(not%20Exchange%20aware).%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI've%20run%20into%20rather%20a%20brick%20wall%20trying%20to%20get%20a%20clear%20MS%20document%20outlining%20how%20to%20have%20my%20Clients%20using%20Modern%20Auth%20%26amp%3B%202FA%20for%20those%20Apps%20that%20do%20support%20them%20(%3CEM%3Efor%20Medical%2C%20Legal%20etc%20-%20they%20love%20it%3C%2FEM%3E)%2C%20and%20also%20being%20able%20to%20use%20that%20mailbox%2C%20or%20another%20mailbox%20(%3CEM%3Ewithin%20the%20same%20Tenant%3C%2FEM%3E)%20for%20those%20alert%20apps%20that%20won't%20ever%20get%20Modern%20Auth%20built%20into%20them%20(%3CEM%3Ewhich%20I%20know%2C%20as%20I've%20spoken%20to%20some%20of%20the%20vendors%2C%20and%20they%20keep%20saying%20oh%2C%20just%20use%20App%20Password%3C%2FEM%3E)%2C%20which%20doesn't%20work.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWith%20this%20disable%20of%20basic%2C%20it%20reads%20that%20App%20Passwords%20will%20be%20of%20no%20operational%20use%20i.e.%20can't%20just%20create%20one%20for%20the%20User%2C%20to%20use%20in%20the%203rd%20Party%20app%20under%20the%20more%20secure%20365%20Exch%20system.....%20this%20is%20a%20real%20pity%20as%20the%20sheer%20magnitude%20of%20this%20usage%20in%20NZ%20Small%20Business%20will%20mean%20the%20customers%20will%20be%20forced%20to%20opt%20to%20remain%20ISP%20POP%2FIMAP%20%26amp%3B%20traditional%20SMTP%20based.%20They're%20not%20going%20to%20be%20able%20to%20demand%20the%20UPS%20or%20Backup%20suppliers%20etc%20make%20changes%20to%20their%20software%20for%20365%2C%20then%20they're%20not%20going%20to%20want%20IT%20(us)%20to%20roll%20it%20out%20%26amp%3B%20pay%20for%20it......%20is%20a%20fact%20here%20.....%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20realise%20SMTP%20Auth%20not%20going%2C%20but%20haven't%20managed%20to%20get%20Mail%20to%20go%20for%20a%20UPS%20software%20package%2C%20under%20a%20newly%20created%20365%20Tenant%20(%3CEM%3Esecurity%20set%20to%20Basic%20Off%3C%2FEM%3E)%20%26amp%3B%20MFA%20on%20the%20user...%20Must%20be%20missing%20something%2C%20%26amp%3B%20setting%20MFA%20on%20in%20one%20place%2C%20then%20another%20place%20seems%20odd.....%20Not%20sure%20if%20can%20get%20these%20mailers%20(%3CEM%3Ewhich%20work%20fine%20via%20ISPs%2C%20but%20customers%20won't%20want%20to%2Fcan't%20pay%20for%20special%20mail%20a%2Fcs%20elsewhere%3C%2FEM%3E)%20to%20work%20365%2C%20or%20where%20the%20setup%20failure%20is%20in%20our%20config%20for%20the%20customer%2C%20%26amp%3B%20I've%20tried%20MS%20Support%20%26amp%3B%20so%20far%20nothing%20functional%20.....%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAt%20least%20this%20blog%20confirms%20what%20I'd%20gleaned%20out%20of%20one%2C%20seemingly%20off%20the%20cuff%20mention%20in%20a%20MS%20article%20somewhere%2C%20re%20BASIC%20impacting%20POP%20%26amp%3B%20IMAP......%20which%20creates%20problems%20for%203rd%20Parties%20where%20they've%20integrated%20a%20mailer%20into%20their%20system%20%26amp%3B%20represent%20the%20mailbox%20within%20their%20app......%20I%20know%20of%20a%20core%20business%20Application%20in%20NZ%2C%20a%20medical%20industry%20app%20(widely%20used)%2C%20that%20works%20this%20way.....%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EUnless%20we%20can%20figure%20out%20how%2C%20with%20365%2C%20it%20sounds%20like%20we%20won't%20be%20able%20to%20make%20that%20work%20-%20which%20will%20ultimately%20torpedo%20the%20customer's%20adoption%20of%20365%2C%20which%20isn't%20ideal%20given%20it%20has%20taken%20me%20a%20few%20years%20to%20convince%20them%20to%20move%20away%20from%20ISP%20based%20system.....%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EExample%20of%20this%3A%20for%20One%20of%20our%20Clients%2C%20their%20new%20365%20Tenant%20setup%20is%20Basic%20Disabled%20%26amp%3B%20MFA%20on%2C%20and%20is%20mostly%20fine%20for%20their%20Outlook%202016.%3C%2FP%3E%3CP%3EBut%20we%20can't%20figure%20out%20how%20to%20configure%20the%20UPS%20or%20Backup%20software%20to%20be%20able%20to%20send%20using%20any%20Mailbox%20in%20the%20Tenant.%20Ditto%2C%20they%20have%20another%20Mailbox%20that%20the%20App%20only%20understands%20either%20POP%2FIMAP%20integration%2C%20and%20uses%20that%20for%20the%20mail%20within%20their%20application%20i.e.%20Sending%20%26amp%3B%20seeing%20the%20mail%20in%20their%20inbox.%20Can%20such%20an%20app%20still%20work%20with%20Basic%20disabled%20%3F%3F%3F%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EEven%20for%20most%20Multi-Functions%2C%20in%20the%20end%2C%20we've%20had%20to%20Setup%20a%20Connector%20%26amp%3B%20Static%20IP%20to%20send%20out%2C%20but%20we%20really%20do%20not%20want%20to%20allow%20the%20site%20to%20be%20able%20to%20do%20that%2C%20yes%2C%20good%20router%20%26amp%3B%20allow%20only%20approved%20devices%2C%20but%20still%20messy....%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ECan%20we%20please%20have%20a%20simple%20document%20(%3CEM%3Epreferably%20one%20that%20doesn't%20jump%20to%20multiple%20articles%20to%20cover%20the%20steps%20-%20am%20fine%20with%20other%20articles%20linked%20for%20supporting%20reference%2C%20but%20not%20to%20have%20to%20go%20here%2C%20there%20%26amp%3B%20everywhere%20to%20figure%20out%20what%20usually%20is%20a%20simple%20concept%20in%20the%20end%3C%2FEM%3E)%20that%20covers%20this%20off%20please%2C%20%26amp%3B%20include%203rd%20party%20apps%2C%20including%20MS%20server%20names%2Fsettings%20thanks.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAgain%2C%20appreciate%20the%20need%20for%20greater%20security%2C%20so%20keep%20that%20fight%20up%2C%20however%20please%20also%2C%20how%20do%20we%20cater%20for%20those%20essential%20mailers%20that%20can't%20do%20the%20Modern%20stuff%20within%20the%20same%20Tenant%20please....%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EHope%20it%20all%20makes%20sense.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ECheers%3C%2FP%3E%3CP%3EG%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3355577%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3355577%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F1386595%22%20target%3D%22_blank%22%3E%40Greg-CNS%3C%2FA%3E%26nbsp%3BRegarding%20SMTP%20there%20is%20a%20fine%20document%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fexchange%2Fmail-flow-best-practices%2Fhow-to-set-up-a-multifunction-device-or-application-to-send-email-using-microsoft-365-or-office-365%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fexchange%2Fmail-flow-best-practices%2Fhow-to-set-up-a-multifunction-device-or-application-to-send-email-using-microsoft-365-or-office-365%3C%2FA%3E%26nbsp%3B.%20Basically%20you%20have%20to%20turn%20Security%20Defaults%20off%20or%20use%20SMTP%20relay.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3361785%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3361785%22%20slang%3D%22en-US%22%3E%3CP%3EHey%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F698845%22%20target%3D%22_blank%22%3E%40ViliusS%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThanks%20for%20that%2C%20yes%20have%20seen%20%26amp%3B%20had%20to%20use%20the%20Relay%20already.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EIt's%20really%20not%20a%20great%2Fpractical%20option%20though%2C%20as%20yes%20have%20to%20get%2025%20open%2C%20%26amp%3B%20really%20one%20doesn't%20want%20a%20site%20open%20that%20way.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAlas%2C%20many%20of%20our%20customers%20put%20say%20UPS%20%26amp%3B%20Backups%20out%20with%20their%20staff%20eg%20Remote%20workers%2C%20so%20need%20to%20use%20their%20app%20mailers%20from%20Home%20or%20elsewhere%20%26amp%3B%20Connectors%20for%20their%20homes%20%26amp%3B%20elsewhere%20is%20simply%20impractical.%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EHere's%20just%20one%20example%20of%20the%20issue.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ECustomer%20needs%20to%20use%20Outlook%20with%20Authenticator%20challenging%20launch%20everytime%20or%20not%20show%20mail%20(Medical%20Privacy)%20if%20not%20authenticated%20legitimately.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWhen%20we%20setup%20on%20365%20for%20the%20Customer%2C%20with%20the%20domain%20having%20Security%20Defaults%20ON%2C%20the%20customer%20was%20over%20the%20moon%20that%20that%20worked%20as%20desired.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThey've%20had%20Outlook%20for%20years%2C%20but%20NEVER%20used%20it%20because%20of%20this%2C%20rather%20they've%20WebMail%20accessed%20their%20ISP%20until%20now.....%20so%20365%20%26amp%3B%20Authenticator%20%3D%20happy%20customer.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThen%2C%20because%20they%20have%20Backup%20Software%20(%3CEM%3EEaseUS%20ToDo%20in%20this%20case%2C%20but%20almost%20any%20other%20would%20be%20similarly%20afflicted%3C%2FEM%3E)%2C%20%26amp%3B%20they%20have%20PowerShield%20SafeGuard%20UPS%20units%20the%20NetGuard%20software%20also%2C%20they%20need%20to%20have%20ability%20for%20those%20software%20items%20to%20be%20able%20to%20Send%20Backup%20Results%20%26amp%3B%20UPS%20alert%20emails%20via%20SMTP%20mail.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThey%20(%3CEM%3Elike%20any%20typcial%20Small%20Business%20customer%3C%2FEM%3E)%20won't%20pay%20for%20a%20dedicated%20mailbox%2C%20%26amp%3B%20when%20with%20ISP%20they%20were%20able%20to%20use%20their%20existing%20eMail%20address%20creds%20within%20the%20Configs%20of%20those%20apps%20-%20no%20issues.%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWith%20365%2C%20Security%20Defaults%20on%2C%20the%20above%20SMTP%20mailing%20doesn't%20work.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAlso%2C%20the%20customer%20has%20a%203rd%20Party%20Medical%20App%20which%20sends%2Freceives%20mail%20within%20the%20Medical%20system%20app%20(%3CEM%3Eso%20has%20its%20own%20mail%20client%20showing%20Inbox%2FSent%20etc%20-%20I%20believe%20POP%3C%2FEM%3E).%26nbsp%3BA%202nd%20Mailbox%20was%20agreed%20to%20for%20the%20Medical%20App%20mail.....%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EIn%20an%20effort%20to%20get%20POP%20%26amp%3B%20SMTP%20working%2C%20I%20disabled%20Security%20Defaults%20and%20I%20thought%20enabled%20SMTP%20Auth%2C%20but%20this%20appears%20to%20have%20broken%20the%20Customer's%20initial%20Authenticator%20Challenge%20with%20Outlook.....%20Also%20didn't%20manage%20to%20get%20the%20SMTP%20to%20work%20(%3CEM%3Ewas%20using%20App%20Password%2C%20which%20with%20Basic%20gone%20sounds%20a%20dead%20option%3C%2FEM%3E).....%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThe%20above%20is%20a%20very%20typical%20Small%20Business%20set%20of%20needs%20(%3CEM%3Ecertainly%20in%20NZ%2C%20but%20likely%20worldwide%20I'd%20expect)%2C%26nbsp%3B%3C%2FEM%3Ehence%20I'm%20trying%20to%20get%20this%20and%20other%20customers%20over%20to%20365%20%26amp%3B%20away%20from%20ISPs%20so%20they%20get%20the%20benefit%20of%20Outlook%20across%20devices%2C%20Calendars%2C%20Addressbooks%20etc%2C%20but%20still%20need%20to%20have%20those%20Support%20Apps%20-%20UPS%2C%20Backup%20software%20%26amp%3B%20embedded%20Mail%20Clients%20working.....%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EHence%20the%20request%20for%20a%20simple%20doco%20that%20covers%20this%20general%20scenario%2C%20with%20the%20intended%20MS%20dropping%20of%20Basic%20all%20combined%20%26amp%3B%20working%20for%20a%20NEW%20Tenant%20(%3CEM%3Ewho%20will%20be%20Security%20Defaults%20enabled%3C%2FEM%3E)%20%26amp%3B%20also%20showing%20turning%20on%202FA%20%26amp%3B%20configuring%20-%20as%20they%20will%20be%20related%20topics%2C%20but%20a%20single%20doc%20(%3CEM%3Ethat's%20current%20i.e.%20written%20on%20what's%20to%20be%20%26amp%3B%20moving%20forward%2C%20not%20written%20based%20on%20what%20has%20been%20able%20to%20work%20-%20which%20is%20where%20I've%20been%20stuck%20referring%20to%20recent%20stuff%20that's%20about%20previous%20how%20to%20-%20not%20now%20how%20to%3C%2FEM%3E)%20that%20covers%20this%20scenario%20for%20the%20many%20out%20there%20trying%20to%20do%20this%20for%20their%20customers.....%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAppreciate%20the%20response%20though%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F698845%22%20target%3D%22_blank%22%3E%40ViliusS%3C%2FA%3E%26nbsp%3B%2C%20so%20I'm%20hoping%20someone%20in%20the%20Exchange%20Team%20can%20think%20this%20out%20%26amp%3B%20whip%20up%20a%20doco%20that%20covers%20it%2C%20as%20this%20is%20holding%20up%20moving%20more%20customers%20from%20their%20ISP%20mail%20(traditional)%20to%20365%20for%20us%2C%20as%20we%20don't%20want%20to%20mix%20in%20SMTP2Go%20type%20solutions%20for%20the%20Alerts%2FBackup%20msgs%20%26amp%3B%20have%20another%20Domain%20at%20an%20ISP%20to%20handle%20the%20integrated%20Mail%20Client%20within%20their%20essential%20apps%2C%20otherwise%20what's%20the%20point%20of%20going%20365%20for%20them%20-%20that%20would%20be%20the%20question%20pushed%20back%20%26amp%3B%20unanswerable%20from%20a%20cost%20perspective.....%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ECheers%3C%2FP%3E%3CP%3EG%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3362073%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3362073%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F1386595%22%20target%3D%22_blank%22%3E%40Greg-CNS%3C%2FA%3E%26nbsp%3B-%20I%20did%20send%20you%20a%20direct%20message%2C%20check%20for%20that.%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EIn%20short%2C%20if%20you%20want%20to%20keep%20using%20SMTP%20%2B%20basic%20-%20you%20can.%20For%20as%20long%20as%20you%20want.%20Yes%2C%20you'll%20need%20to%20disable%20Security%20Defaults.%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EPOP%20and%20IMAP%20are%20used%20for%20%3CEM%3Einbound%3C%2FEM%3E%20mail%20to%20a%20mailbox%2C%20UPS's%20and%20backup%20software%20sending%20reports%20don't%20use%20these.%20If%20you%20don't%20have%20apps%20polling%20mailboxes%20using%20POP%2FIMAP%20and%20basic%2C%20then%20as%20you%20know%2C%20that's%20not%20going%20to%20keep%20working.%20But%20are%20you%20really%20seeing%20lots%20of%20apps%20used%20by%20SMB's%20that%20work%20this%20way%3F%20If%20that%203rd%20party%20medical%20app%20needs%20POP%2C%20who's%20the%203rd%20party%3F%20What%20do%20they%20say%20about%20getting%20away%20from%20basic%20auth%3F%20Many%20other%203rd%20party%20apps%20have%20already%20done%20that...%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3362151%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3362151%22%20slang%3D%22en-US%22%3E%3CP%3EGreat%20work%20team!%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ERegarding%20unattended%20scripts%2C%20we%20are%20still%20running%20into%20an%20issue%20where%20using%20app-only%2FCBA%20authentication%20doesn%E2%80%99t%20allow%20us%20to%20add%2Fupdate%20an%20email%20address%20to%2Ffor%20a%20Microsoft%20365%20group%20using%20the%20Set-UnifiedGroup%20cmdlet.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EShould%20this%20be%20possible%20as%20it%E2%80%99s%20the%20only%20thing%20preventing%20us%20moving%20to%20modern%20auth%20much%20sooner%20for%20our%20automation%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EMany%20thanks%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3365578%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3365578%22%20slang%3D%22en-US%22%3E%3CP%3EHello%2C%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EWhat%20method%20is%20Microsoft%20going%20to%20use%20to%20turn%20off%20Basic%20Auth%20for%20specific%20protocols%3F%20the%20default%20EAP%3F%20Thanks%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3367639%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3367639%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F460298%22%20target%3D%22_blank%22%3E%40StevieBot%3C%2FA%3E%26nbsp%3B-%20I'll%20check%20with%20some%20people.%20Have%20you%20opened%20a%20support%20ticket%3F%20If%20not%2C%20please%20do.%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F20390%22%20target%3D%22_blank%22%3E%40Andres%20Gorzelany%3C%2FA%3E%26nbsp%3BWe%20are%20setting%20a%20bit%20that%20is%20even%20earlier%20in%20the%20auth%20pipeline.%20BasicAuthBlockedApps%20-%20search%20the%20Interweb%20for%20that%20phrase%20and%20I%20think%20you'll%20find%20an%20article%20or%20two%20from%20some%20other%20great%20MVPs%20like%20Jeff%20Guillet%2C%20who%20I%20can't%26nbsp%3B%40%20here%20for%20some%20reason...%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3368218%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3368218%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F460298%22%20target%3D%22_blank%22%3E%40StevieBot%3C%2FA%3E%26nbsp%3B-%20I%20heard%20back%20from%20the%20team.%20Known%20issue%2C%20no%20current%20eta%20for%20fixing.%20However%20they%20did%20say%20there%20is%26nbsp%3Ban%20alternative%20method%20to%20work%20with%20unified%20groups%20using%20unattended%20scripts%20in%20the%20documentation%2C%20which%20uses%20Microsoft%20graph%20-%20%3CA%20href%3D%22https%3A%2F%2Fnam06.safelinks.protection.outlook.com%2F%3Furl%3Dhttps%253A%252F%252Fdocs.microsoft.com%252Fen-us%252Fpowershell%252Fmodule%252Fexchange%252Fset-unifiedgroup%253Fview%253Dexchange-ps%26amp%3Bdata%3D05%257C01%257Cgrtaylor%2540microsoft.com%257Cfae811f463bd4644df2008da34891aa0%257C72f988bf86f141af91ab2d7cd011db47%257C0%257C0%257C637880061002821242%257CUnknown%257CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%253D%257C3000%257C%257C%257C%26amp%3Bsdata%3DIvoDhf9G6slC3VYtObPb2xw0sIhajcv%252BkTs3SKvQZ0k%253D%26amp%3Breserved%3D0%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fpowershell%2Fmodule%2Fexchange%2Fset-unifiedgroup%3Fview%3Dexchange-ps%3C%2FA%3E%20%2C%20%3CA%20href%3D%22https%3A%2F%2Fnam06.safelinks.protection.outlook.com%2F%3Furl%3Dhttps%253A%252F%252Fdocs.microsoft.com%252Fen-us%252Fgraph%252Fapi%252Fgroup-update%253Fview%253Dgraph-rest-1.0%2526tabs%253Dhttp%26amp%3Bdata%3D05%257C01%257Cgrtaylor%2540microsoft.com%257Cfae811f463bd4644df2008da34891aa0%257C72f988bf86f141af91ab2d7cd011db47%257C0%257C0%257C637880061002821242%257CUnknown%257CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%253D%257C3000%257C%257C%257C%26amp%3Bsdata%3DUQiZgc2bnNcqMDxlrrsXbQKz9srC1BZ0V57oUdLw1Y8%253D%26amp%3Breserved%3D0%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fgraph%2Fapi%2Fgroup-update%3Fview%3Dgraph-rest-1.0%26amp%3Btabs%3Dhttp%3C%2FA%3E%3C%2FP%3E%0A%3CP%3ENot%20sure%20that'll%20help%2C%20but%20it's%20all%20I%20can%20provide%20for%20now.%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3366864%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3366864%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F1386595%22%20target%3D%22_blank%22%3E%40Greg-CNS%3C%2FA%3E%26nbsp%3B%2C%20my%20suggestion%20would%20be%20to%20use%20a%20separate%20SMTP%20account%20with%20Basic%20Auth%20enabled%20for%20all%20UPS%20devices%20still.%20Me%20personally%20I%20always%20create%20separate%20accounts%20for%20groups%20of%20devices%20(like%20%3CA%20href%3D%22mailto%3Aprinter%40example.com%2C%22%20target%3D%22_blank%22%20rel%3D%22noopener%20nofollow%20noreferrer%22%3Eprinter%40example.com%2C%3C%2FA%3E%26nbsp%3B%3CA%20href%3D%22mailto%3Aups%40example.com%2C%22%20target%3D%22_blank%22%20rel%3D%22noopener%20nofollow%20noreferrer%22%3Eups%40example.com%2C%3C%2FA%3E%26nbsp%3B%3CA%20href%3D%22mailto%3Aerpsoftware%40example.com%2C%22%20target%3D%22_blank%22%20rel%3D%22noopener%20nofollow%20noreferrer%22%3Eerpsoftware%40example.com%2C%3C%2FA%3E%26nbsp%3Betc.).%20These%20emails%20can%20be%20the%20same%20for%20all%20clients.%20You%20can%20look%20at%20it%20like%20%22if%20UPS%20is%20leased%20to%20the%20client%20as%20a%20service%2C%20then%20SMTP%20account%20for%20that%20device%20could%20be%20leased%20as%20a%20service%20too%22.%20You%20can%20even%20created%20aliases%20like%20%3CA%20href%3D%22mailto%3Aups1%40example.com%2C%22%20target%3D%22_blank%22%20rel%3D%22noopener%20nofollow%20noreferrer%22%3Eups1%40example.com%2C%3C%2FA%3E%26nbsp%3B%3CA%20href%3D%22mailto%3Aups2%40example.com%22%20target%3D%22_blank%22%20rel%3D%22noopener%20nofollow%20noreferrer%22%3Eups2%40example.com%3C%2FA%3E%26nbsp%3Band%20send%20from%20these%20addresses%20using%20exactly%20the%20same%20mailbox.%20Unless%20clients%20insist%20that%20these%20UPS%20devices%20must%20send%20email%20from%20their%20domain%2C%20then%20you%20will%20have%20to%20create%20these%20mailboxes%20for%20every%20client.%3C%2FP%3E%3CP%3EAnyway%2C%20this%20way%20you%20will%20have%20a%20better%20visibility%20into%20the%20tenants%2C%20who%20is%20sending%20what%2C%20and%20it%20is%20much%20easier%20to%20debug%20when%20things%20go%20sideways.%20Remember%2C%20the%20point%20of%20username%20is%20to%20identify%20the%20user%20OR%2C%20in%20case%20of%20non-interactive%20session%2C%20the%20device.%3C%2FP%3E%3CP%3EBy%20the%20way%2C%20you%20don't%20need%20full%20M365%20license%20for%20that.%20Exchange%20Online%20Kiosk%20license%20which%20costs%20something%20like%202%20USD%20a%20month%20would%20be%20enough%20to%20send%20SMTP%20email.%20I%20know%20some%20guys%20did%20manage%20to%20get%20it%20working%20with%20a%20shared%20mailbox%20without%20a%20license%2C%20but%20I%20didn't%20try%20that%20personally.%3C%2FP%3E%3CP%3EOf%20course%20there%20is%20always%20an%20option%20with%20SMTP%20Relay%2C%20but%20then%20you%20have%20to%20do%20authentication%20by%20IP%20or%20by%20Certificate%2C%20which%20could%20be%20more%20cost%20intensive%20than%20couple%20of%20dollars%20a%20month%20for%20Kiosk%20license.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EIMAP%20and%20POP%20is%20of%20course%20is%20completely%20different%20matter%2C%20I%20don't%20have%20good%20recommendation%20for%20that.%20I%20suspect%20all%20those%20ERP%20software%20developers%20will%20have%20to%20move%20to%20Modern%20Auth%20sooner%20rather%20than%20latter%20because%20it's%20not%20only%20Microsoft%20which%20is%20disabling%20Basic%20Auth.%20Google%20is%20disabling%20basic%20auth%20next%20month%20and%20some%20other%20providers%20already%20disabled%20it.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3370982%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3370982%22%20slang%3D%22en-US%22%3E%3CP%3EIt%20would%20be%20excellent%20if%20someone%20that%20can%20write%20software%20(people%20here)%20could%20add%20modern%20authentication%2Foauth%3F%20onto%20a%20free%20SMTP%20server%20like%20hmailserver.%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%20data-unlink%3D%22true%22%3Ehmailserver%20dot%20com%26nbsp%3B%20is%20open%20source%20and%20has%20basic%20auth%20now.%20It%20is%20stable%20and%20been%20around%20for%20years%2C%20but%20only%20does%20username%20password%20auth.%26nbsp%3BLot's%20of%20Office365%20IT%20managers%20use%20it%20to%20send%20scans%20from%20old%20printers%2Cdevices%2Fetc%20to%20hmail%20then%20out%20to%20O365.%20Then%20the%20IT%20managers%20could%20disable%20SMTP%20basic%20auth%20on%20their%20environments.%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3Eprinter%2Fscanner%2Fetc%20------internalemailaccount------hmailserverinternaldomain------outsidepaidforemailonlyoffice365accountforsending------office365%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3377285%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3377285%22%20slang%3D%22en-US%22%3E%3CP%3EThanks%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F698845%22%20target%3D%22_blank%22%3E%40ViliusS%3C%2FA%3E%26nbsp%3B.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EYes%2C%20in%20the%20past%20%3CEM%3E(with%20bigger%20customers)%20%3C%2FEM%3EI've%26nbsp%3Balways%20opted%20for%20Service%20type%20mailbox%2Fes%20%3CEM%3E(as%20appropriate)%3C%2FEM%3E%2C%20with%20the%20function%20being%20separate%20to%20the%20Users%20themselves.%20SMB%20customers%20tend%20to%20more%20readily%20see%20cost%20%3CEM%3E(making%20that%20a%20barrier)%2C%3C%2FEM%3E%20no%20matter%20how%20much%20one%20manages%20to%20prove%20the%20real%20value.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20will%20see%20if%20I%20can%20re-assert%20that%20position%20with%20our%20customers%20%3CEM%3E(which%20is%20all%20the%20harder%2C%20given%20cost%20translation%20of%20subscriptions%20to%20NZD%2C%20recently%20increased%20too%20%26amp%3B%20comparing%20with%20ISP%2Fmailbox%20costs%20for%20SMB%20customers%3C%2FEM%3E)%3CEM%3E.%3C%2FEM%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI'll%20approach%20the%203rd%20Party%20directly%20to%20see%20re%20what%20(if%20any)%20progress%2C%20they're%20making%20towards%20their%20App%20(%3CEM%3Ewhich%20by%20the%20way%2C%20I've%20confirmed%20they%20recommended%20use%20of%20IMAP%20to%20keep%20their%20software's%20local%20mail%20cache%20footprint%20size%20down%3C%2FEM%3E)%20using%20Modern%20Auth%2C%20as%20that%20would%20definitely%20be%20a%20big%20one%2C%20as%20I%20could%20then%20seriously%20push%20to%20use%20the%20KIOSK%20A%2Fc%2C%20%26amp%3B%20as%20you%20say%2C%20SMTP%20AUTH%20%26amp%3B%20hopefully%20-%20job%20done%20%26amp%3B%20customer%20(%3CEM%3Ehopefully%3C%2FEM%3E)%20happy%20too....%20BUT%20....%20to%20keep%20SMTP%20AUTH%20with%20Basic%2C%20one%20has%20to%20disable%20Security%20Defaults%2C%20thus%20one%20loses%20the%20ability%20of%20the%20Authenticator%20being%20required%20......%20unless%20one%20can%20enforce%20that%20on%20the%202%20A%2Fcs%20(not%20use%20SMTP%20AUTH%20at%20all%20on%20those)%20%26amp%3B%20have%20the%20KIOSK%20A%2Fc%20with%20SMTP%20AUTH%20%26amp%3B%20Basic)%20.......%20in%20which%20case%20-%20phew%2C%20possibly....%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAlthough%2C%20I%20can't%20hold%20my%20breath%20re%20the%20developer%20having%20made%20such%20progress%2C%20%26amp%3B%20this%20wouldn't%20be%20uncommon%20I'd%20think%20with%20a%20lot%20of%20similar%203rd%20party%20apps%20out%20there.%26nbsp%3B%20I%20suspect%2C%20Microsoft's%20NOT%20seeing%20this%20as%20an%20issue%2C%20as%20customers%20have%20either%20NOT%20adopted%20365%20(%3CEM%3Efor%20these%20needs%20not%20being%20met%3C%2FEM%3E)%20OR%20have%20had%20to%20run%20secondary%20Mail%20mechanisms%20(%3CEM%3Ethus%26nbsp%3Bmore%20cost%20%26amp%3B%20complexity%20to%20their%20businesses%3C%2FEM%3E)%20to%20get%20around%20these%20issues%2C%20hence%20MS%20isn't%20seen%20as%20the%20one%20stop%20shop%2C%20%26amp%3B%20with%20Google%26nbsp%3B(y%3CEM%3Ees%2C%20I'd%20also%20noted%20too%20re%20Google)%2C%26nbsp%3B%3C%2FEM%3Eabout%20to%20do%20the%20same%2C%20well%20I%20suspect%20the%20issue%20will%20be%20compounded%20very%20soon....%26nbsp%3B%20then%20we%20may%20start%20to%20see%20the%20real%20scope%20of%20this%20problem%20come%20to%20the%20fore.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EIn%20an%20effort%20to%20raise%20the%20profile%20of%20this%20need%2C%20I'm%20but%20one%20in%20the%20world%20of%20many%20who%20are%2Fwill%20be%20in%20this%20boat%20with%20customers%2C%20I%20keep%20asking%20%26amp%3B%20pushing%20this%20issue.....%20Clear%20document%20please.....%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAlso%2C%20this%20begs%20the%20question%20-%20is%20there%20then%20a%20role%20for%20App%20Passwords%20in%20the%20future%3F%3F%3F%3F%3F%3F%20This%20really%2C%20to%20me%2C%20seemed%20to%20be%20%22Use%20at%20your%20risk%22%20solution%2C%20whilst%20not%20exposing%20the%20Mailbox%20itself%20i.e.%20for%20SMTP%20send%20%26amp%3B%20not%20compromising%20the%20Mailbox%2C%20whilst%20yes%2C%20potentially%20could%20(%3CEM%3Eif%20pwd%20seized%3C%2FEM%3E)%20be%20a%20SPAM%20vector......%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWhen%20I%20put%20this%20issue%20to%20Microsoft%20(%3CEM%3Evia%20the%20365%20Support%20-%20I%20managed%20to%20get%20a%20very%20nice%20person%2C%20who%20tracked%20me%20down%20to%20keep%20the%20issue%20moving%20-%20wow%20appreciated%20that%3C%2FEM%3E)%20......%20I%20pretty%20much%20expected%20the%20answer%2C%20as%20I'd%20worked%20it%20out%20but%20docs%20skip%20around%20the%20statement...%20Here's%20what%20was%20said%20....%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CEM%3Ereview%20if%20the%20goal%20is%20possible.%3C%2FEM%3E%3C%2FP%3E%3CP%3E%3CEM%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2FExchange%2Fclients-and-mobile-in-exchange-online%2Fenable-or-disable-modern-authentication-in-exchange-online%3FredirectSourcePath%3D%25252farticle%25252f58018196-f918-49cd-8238-56f57f38d662%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EEnable%20or%20disable%20modern%20authentication%20for%20Outlook%20in%20Exchange%20Online%3C%2FA%3E%3C%2FEM%3E%3C%2FP%3E%3CP%3E%3CEM%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fexchange%2Fmail-flow-best-practices%2Fhow-to-set-up-a-multifunction-device-or-application-to-send-email-using-microsoft-365-or-office-365%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EHow%20to%20set%20up%20a%20multifunction%20device%20or%20application%20to%20send%20email%20using%20Microsoft%20365%20or%20Office%20365%20%7C%20Microsoft%20Docs%3C%2FA%3E%3C%2FEM%3E%3C%2FP%3E%3CP%3E%3CEM%3EIt%20looks%20like%20the%20first%20goal%20needs%20to%20turn%20on%20the%20Modern%20authentication%20to%20work%20and%20the%202nd%20goal%20will%20not%20work%20if%20the%20modern%20authentication%20is%20turned%20on.%3C%2FEM%3E%3C%2FP%3E%3CP%3E%3CEM%3Ein%20that%20case%20both%20goals%20are%20contradiction.%26nbsp%3B%3C%2FEM%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EKnowing%20that%20we%20need%20Authentication%20enabled%20for%20Customer%20to%20be%20challenged%20with%20Outlook%20%26amp%3B%20not%20let%20in%20if%20not%20answered%2C%20but%20also%20need%20ability%20to%20do%20the%20SMTP%20AUTH%20(Basic%20required)%20-%20it%20seems%20no%20go%2C%20unless%20have%203rd%20A%2Fc%20(Service%20-%20KIOSK%20licence)%20%26amp%3B%20can%20have%20SMTP%20Auth%2FBasic%20on%20for%20that%20one%20mailbox.....%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20do%20hope%20this%20makes%20sense%2C%20%26amp%3B%20again%20is%20why%20I%20ask%20for%20a%20simple%20worked%20example%20doc%20%26amp%3B%20I'm%20sure%20our%20world%20of%20MS%20techs%20would%20be%20much%20the%20happier%20%26amp%3B%20be%20better%20able%20to%20make%20cases%20to%20Mgmt%20persons%20for%20say%20Service%2FKiosk%20A%2Fcs%20when%20one%20can%20show%20-%20Hey%20this%20is%20how%20MS%20say%20it%20needs%20to%20be%20done.....%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAm%20appreciative%20of%20the%20assists%20everyone...%20%26amp%3B%20hope%20with%20your%20aid%20I'll%20be%20able%20to%20make%20something%20work%2C%20such%20that%20we%20can%20do%20similarly%20for%20the%20next%2C%20the%20next%20%26amp%3B%20so%20on%20......%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ECheers%3C%2FP%3E%3CP%3EG%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3378382%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3378382%22%20slang%3D%22en-US%22%3E%3CDIV%3E%3CDIV%3E%3CSPAN%3EHi%20%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F149115%22%20target%3D%22_blank%22%3E%40Greg%20Taylor%20-%20EXCHANGE%3C%2FA%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FDIV%3E%3CBR%20%2F%3E%3CDIV%3E%3CSPAN%3EI'm%20also%20trying%20to%20send%20email%20from%20our%20website%20via%20SMTP%20using%20e.g.%20noreply%40ourcompany.com.%3C%2FSPAN%3E%3C%2FDIV%3E%3CBR%20%2F%3E%3CDIV%3E%3CSPAN%3EIs%20there%20a%20way%20that%20we%20keep%20Security%20Defaults%20turned%20ON%20and%20allow%20Basic%20Auth%20only%20on%20noreply%40ourcompany.com%20via%20Conditional%20Access%3F%3C%2FSPAN%3E%3C%2FDIV%3E%3C%2FDIV%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3379803%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3379803%22%20slang%3D%22en-US%22%3E%3CP%3EHI%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F149115%22%20target%3D%22_blank%22%3E%40Greg%20Taylor%20-%20EXCHANGE%3C%2FA%3E%26nbsp%3B%3A%20can%20we%20have%20update%20to%20authentication%20to%20Reporting%20Web%20Service%3F%3C%2FP%3E%3CP%3EArticle%20says%3A%20Reporting%20Web%20Services%20%E2%80%93%20the%20support%20for%20OAuth%20is%20rolling%20out%20now%20(to%20be%20completed%20by%20end%20of%20May).%20Basic%20Auth%20will%20be%20disabled%20starting%20October%201.%3C%2FP%3E%3CP%3EBut%20we%20could%20not%20find%20details%2Fsample%20on%20how%20to%20find%20out%20that%20OAuth%20is%20available%20for%20tenant%20and%20how%20to%20authenticate%20to%20Reporting%20Web%20Service%20via%20OAuth.%20We%20have%20solution%20based%20on%20Reporting%20Web%20Services%20with%20some%20tenants%20and%20need%20to%20make%20it%20ready%20for%20removal%20of%20Basic%20auth%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThank%20you!%3C%2FP%3E%3CP%3EJiri%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3380740%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3380740%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F1386595%22%20target%3D%22_blank%22%3E%40Greg-CNS%3C%2FA%3E%26nbsp%3B%2C%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CBLOCKQUOTE%3E%3CSPAN%3EI'll%20approach%20the%203rd%20Party%20directly%20to%20see%20re%20what%20(if%20any)%20progress%2C%20they're%20making%20towards%20their%20App%20(%3C%2FSPAN%3E%3CEM%3Ewhich%20by%20the%20way%2C%20I've%20confirmed%20they%20recommended%20use%20of%20IMAP%20to%20keep%20their%20software's%20local%20mail%20cache%20footprint%20size%20down%3C%2FEM%3E%3CSPAN%3E)%20using%20Modern%20Auth%2C%20as%20that%20would%20definitely%20be%20a%20big%20one%2C%20as%20I%20could%20then%20seriously%20push%20to%20use%20the%20KIOSK%20A%2Fc%2C%20%26amp%3B%20as%20you%20say%2C%20SMTP%20AUTH%20%26amp%3B%20hopefully%20-%20job%20done%20%26amp%3B%20customer%20(%3C%2FSPAN%3E%3CEM%3Ehopefully%3C%2FEM%3E%3CSPAN%3E)%20happy%20too....%20BUT%20....%20to%20keep%20SMTP%20AUTH%20with%20Basic%2C%20one%20has%20to%20disable%20Security%20Defaults%2C%20thus%20one%20loses%20the%20ability%20of%20the%20Authenticator%20being%20required%20......%20unless%20one%20can%20enforce%20that%20on%20the%202%20A%2Fcs%20(not%20use%20SMTP%20AUTH%20at%20all%20on%20those)%20%26amp%3B%20have%20the%20KIOSK%20A%2Fc%20with%20SMTP%20AUTH%20%26amp%3B%20Basic)%20.......%20in%20which%20case%20-%20phew%2C%20possibly....%3C%2FSPAN%3E%3CBR%20%2F%3E%3CHR%20%2F%3E%3C%2FBLOCKQUOTE%3E%3CP%3EThere%20is%20no%20issue%20running%20SMTP%20Basic%20AUTH%20and%20requiring%20MFA%20for%20other%20mailboxes.%20Security%20Defaults%20are%20just%20that%2C%20the%20defaults.%20You%20can%20disable%20it%20and%20then%20configure%20SMTP%20basic%20AUTH%20on%20per%20mailbox%20basis.%20At%20the%20same%20time%20you%20can%20also%20configure%20to%20require%20MFA%20per-user%20via%20MFA%20settings%20or%20via%20Conditional%20Policies.%20If%20you%20configure%20MFA%20via%20MFA%20settings%20App%20Passwords%20will%20be%20available.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CBLOCKQUOTE%3E%3CP%3E%3CEM%3Ereview%20if%20the%20goal%20is%20possible.%3C%2FEM%3E%3C%2FP%3E%3CP%3E%3CEM%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2FExchange%2Fclients-and-mobile-in-exchange-online%2Fenable-or-disable-modern-authentication-in-exchange-online%3FredirectSourcePath%3D%25252farticle%25252f58018196-f918-49cd-8238-56f57f38d662%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EEnable%20or%20disable%20modern%20authentication%20for%20Outlook%20in%20Exchange%20Online%3C%2FA%3E%3C%2FEM%3E%3C%2FP%3E%3CP%3E%3CEM%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fexchange%2Fmail-flow-best-practices%2Fhow-to-set-up-a-multifunction-device-or-application-to-send-email-using-microsoft-365-or-office-365%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EHow%20to%20set%20up%20a%20multifunction%20device%20or%20application%20to%20send%20email%20using%20Microsoft%20365%20or%20Office%20365%20...%3C%2FA%3E%3C%2FEM%3E%3C%2FP%3E%3CP%3E%3CEM%3EIt%20looks%20like%20the%20first%20goal%20needs%20to%20turn%20on%20the%20Modern%20authentication%20to%20work%20and%20the%202nd%20goal%20will%20not%20work%20if%20the%20modern%20authentication%20is%20turned%20on.%3C%2FEM%3E%3C%2FP%3E%3CP%3E%3CEM%3Ein%20that%20case%20both%20goals%20are%20contradiction.%26nbsp%3B%3C%2FEM%3E%3C%2FP%3E%3CHR%20%2F%3E%3C%2FBLOCKQUOTE%3E%3CP%3ENot%20sure%20what%20you%20mean%20here.%20What%20escapes%20most%20people%20is%20that%20SMTP%20AUTH%20supports%20both%20basic%20authentication%20and%20modern%20auth%20(OAuth).%20%3CSTRIKE%3EAs%20far%20as%20I%20tried%20currently%20you%20have%20to%20enable%20SMTP%20Basic%20Auth%20in%20order%20for%20SMTP%20AUTH%20%2B%20OAuth%20to%20work.%3C%2FSTRIKE%3E%20But%20I%20see%20no%20contradiction%20between%20these%20two%20documents.%3C%2FP%3E%3CP%3ELooks%20like%20I%20could%20be%20wrong%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fexchange%2Ftroubleshoot%2Fadministration%2Fcannot-connect-mailbox-pop-imap-outlook%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fexchange%2Ftroubleshoot%2Fadministration%2Fcannot-connect-mailbox-pop-imap-outlook%3C%2FA%3E%26nbsp%3Bsays%20that%20you%20should%20be%20able%20to%20connect%20via%20SMTP%20OAuth%20even%20when%26nbsp%3B%3CSPAN%3ESmtpClientAuthenticationDisabled%20is%20set%20to%20true.%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3384630%22%20slang%3D%22en-US%22%3ERe%3A%20Basic%20Authentication%20Deprecation%20in%20Exchange%20Online%20%E2%80%93%20May%202022%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3384630%22%20slang%3D%22en-US%22%3E%3CP%3EHi%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F698845%22%20target%3D%22_blank%22%3E%40ViliusS%3C%2FA%3E%26nbsp%3B%20(%26amp%3B%20hopefully%20%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F324116%22%20target%3D%22_blank%22%3E%40The_Exchange_Team%3C%2FA%3E%26nbsp%3Btoo)%2C%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI'd%20requested%20of%20MS%20Support%20to%20advise%20if%3A%3C%2FP%3E%3CUL%3E%3CLI%3EMailbox%201%20could%20have%3CUL%3E%3CLI%3ERequirement%20for%20Authenticator%20when%20using%20OAUTH%20apps%20i.e.%20Outlook%2C%20thus%20Outlook%20only%20opens%20once%20User%20approves%20Outlook%20launch%20via%20Authenticator%20OR%20not%20launch%20if%20failed%20challenge....%3C%2FLI%3E%3CLI%3EStill%20allow%20SMTP%20AUTH%20with%20BASIC%20-%20to%20be%20used%20for%20the%20SMTP%20Sending%20(%3CEM%3Epresumably%20App%20Passwords%3C%2FEM%3E)%20Backup%2FUPS%20status%20emails%26nbsp%3B%3C%2FLI%3E%3C%2FUL%3E%3C%2FLI%3E%3CLI%3EMailbox%202%20could%20have%3CUL%3E%3CLI%3ERequirement%20for%20Authenticator%20when%20using%20OAUTH%20apps%20i.e.%20Outlook%20(as%20above)%3C%2FLI%3E%3CLI%3EStill%20allow%20SMTP%20AUTH%20with%20BASIC%20-%20(as%20above)%20for%20Backup%2FUPS%20status%20emails.%3C%2FLI%3E%3CLI%3EIMAP%20Client%20(%3CEM%3Eerroneously%20indicated%20as%20POP%3C%2FEM%3E)%20mailer%20in%20the%20Medical%20App%20(%3CEM%3Ewhich%20uses%20SMTP%20AUTH%20Basic%20to%20send)%3C%2FEM%3E%3C%2FLI%3E%3C%2FUL%3E%3C%2FLI%3E%3C%2FUL%3E%3CP%3E%3CEM%3ENote%3A%20The%20Medical%20App%20Support%20have%20indicated%20that%20their%20app%20does%20NOT%20work%20with%20OAUTH%20%2F2FA%20at%20this%20stage%20i.e.%20doesn't%20work%20with%20365%20unless%20BASIC%20is%20on%20%26amp%3B%202FA%20off.%20This%20is%2Fwas%20where%20I%20understood%20App%20Passwords%20fitted%20in%20(but%20expect%20that%20Basic%20AUTH%20would%20still%20be%20required%20for%20these%20apps%2C%20being%20as%20the%20App%20is%20OAUTH%20unaware%2C%20to%20communicate).%20I%20explained%20that%20IMAP%2C%20as%20a%20protocol%2C%20can%20use%20BASIC%20or%20OAUTH%20authorisation%2C%20but%20the%20coding%20in%20the%20IMAP%20application%20would%20need%20to%20support%20the%20Authorisation%20mechanism%2C%20hence%20that%20their%20product%20sounds%20only%20to%20support%20IMAP%20BASIC%20AUTH%20to%20access%20the%20mailbox.%26nbsp%3B%3C%2FEM%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThe%20customer%20accepts%20that%20they%20need%202%20mailboxes%2C%20but%20is%20already%20baulking%20over%20the%20cost%20to%20their%20small%20business%20of%20the%20two%20365%20Mailboxes%20vs%20their%20old%20ISP%20stuff%20(%3CEM%3EISP%20%3D%26nbsp%3B%3C%2FEM%3E%3CEM%3Eless%20secure%20authorisation%20i.e.%20BASIC%20-%20yes%2C%20less%20featured%20-%20no%20shared%20mailboxes%2Fcalendars%20-%20yes%2C%20but%20worked%20with%202%20mailboxes%20for%20the%20multiple%20purposes%20-%20costing%20approx%20%2480%2BGST%2Fannum%20for%205%20mailboxes%2C%20but%20sharing%20much%20smaller%20disk%20space%3C%2FEM%3E)%2C%20so%20encouraging%20a%20further%20spend%20for%20the%20KIOSK%20Licence%20(%3CEM%3Ewhich%20by%20the%20way%20USD%20%242%2Fmonth%2C%20the%20price%20turns%20out%20is%20NZD%20%246%2BGST%2Fmonth%20i.e.%20%2472%2BGST%2Fannum%2C%20on%20top%20of%20the%20over%20%24110%2BGST%2Fannum%20per%20each%20of%20the%20two%20other%20mailboxes)%26nbsp%3B%3C%2FEM%3Eis%20not%20proving%20popular%20on%20top%20to%20separate%20out%20the%20Service%20emails.....%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThis%20article%20%3CA%20href%3D%22https%3A%2F%2Fsupport.microsoft.com%2Fen-us%2Faccount-billing%2Fusing-app-passwords-with-apps-that-don-t-support-two-step-verification-5896ed9b-4263-e681-128a-a6f2979a7944%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EUsing%20app%20passwords%20with%20apps%20that%20don't%20support%20two-step%20verification%20(microsoft.com)%3C%2FA%3E%26nbsp%3Bdoesn't%20really%20explain%20where%20these%20fit%20in.%20I%20mean%2C%20sure%20they're%20for%20Legacy%20Apps%20(%3CEM%3Eremembering%20Legacy%20Apps%20will%20be%20BASIC%20Auth%20only%3C%2FEM%3E)%2C%20but%20given%20removal%20of%20BASIC%20Auth%2C%20then%20doesn't%20that%20mean%20that%20these%20are%20essentially%20now%20going%20to%20be%20redundant%3F%20%3CEM%3Ei.e.%20App%20Passwords%20removed%20the%202%20step%20process%20for%20apps%20that%20didn't%20understand%20that%20-%20aka%20anything%20that%20only%20used%20User%2FPassword%20combo%2C%20%26amp%3B%20likely%20only%20supported%20BASIC%20AUTH%20as%20the%20authorisation%20process%2C%20hence%20dropping%20BASIC%20essentially%20means%20Legacy%20Apps%20die%20too.....%3C%2FEM%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EReading%20doco%20is%20great%2C%20%26amp%3B%20I'm%20certainly%20not%20afraid%20of%20doing%20that%2C%20however%20doco%20does%20need%20to%20cover%20the%20needs%20of%20those%20needing%20to%20read%20it%2C%20%26amp%3B%20not%20be%20obscure%20to%20the%20point%20of%20the%20confusion%20for%20the%20masses%20like%20us.%20I've%20been%26nbsp%3B%20reading%26nbsp%3B%3CSPAN%3Evarious%20inter-linked%20docs%20from%20MS%20on%20these%20matters%2C%20(%3CEM%3Ehave%20been%20doing%20MS%20stuff%20for%20%26gt%3B20%20years%2C%20thus%20am%20not%20unaware%20of%20the%20intricacies%20associated%20in%20working%20things%20out)%3C%2FEM%3E%2C%20but%20this%20issue's%20had%20me%20chasing%20my%20tail%20a%20bit%20too%20much%2C%20hence%20the%20continued%20ask%20-%20please%2C%20a%20simple%20doco%20to%20cover%20off%20a%20genuine%20how%20to%20make%20something%20like%20what%20I'm%20seeking%20to%20work%20work%20within%20the%20MS%20universe%20please.%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%3EIn%20that%20doco%2C%20don't%20just%20cover%20the%20MS%20stuff%2C%20which%20MS%20will%20be%20actively%20updating%2C%20but%20perhaps%20focus%20on%20%26amp%3B%20cover%20off%20the%20fundamentals%20for%20traditional%203rd%20party%20App%20BASIC%20Auth%20Dependent%20apps%20stuff%20i.e.%20legacy%20mailers%2C%20SMTP%20senders%2C%20Multi-Functions)%20without%20need%20for%20SMTP%20relay%20(%3CEM%3Ewhich%20is%20site%20targeted%20-%20yet%20still%20too%20wide%20for%20my%20liking%20-%20unless%20can%20do%20more%20in%20site%20router%20-%20which%20most%20SMB%20sites%20can%20not%3C%2FEM%3E)%2C%20App%20Passwords%20-%26nbsp%3B%20can%20we%20use%20these%20with%20these%20apps%20whilst%20still%20maintaining%20the%20greater%20security%20for%20Authenticator%20for%20Apps%20that%20understand%20that%3F%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%3EWe're%20literally%20having%20to%20consider%20extra%20mailer%20services%20outside%20365%20for%20our%20SMB%20customers%20just%20to%20do%20the%20housework%20emails%2C%20%26amp%3B%20for%20the%20integrated%20legacy%20IMAP%20mail%2FSMTP%20Sending%20medical%20mailer%20client%2C%20and%20this%20just%20seems%20crazy%20dumb.....%20We've%20got%20customers%20who%20have%20365%20but%20no%20Static%20IP%2C%20so%20for%20their%20Multi-Functions%2C%20they%20can't%20do%20Relays.....%20%26amp%3B%20setting%20up%20SMTP%20Relay%20providers%20%26amp%3B%20messing%20with%20DNS%2FSPF%2FDKIM%20etc....%20this%20just%20doesn't%20seem%20logical%20when%20we%20have%20encouraged%20customers%20to%20do%20their%20SMB%20(%3CEM%3Enot%20the%20network%20protocol%20of%20course%20i.e.%20no%20pun%3C%2FEM%3E)%20business%20the%20MS%20way......%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%3EHopefully%20someone%20in%20the%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F324116%22%20target%3D%22_blank%22%3E%40The_Exchange_Team%3C%2FA%3E%26nbsp%3B%20can%20please%20fill%20in%20the%20blanks%20(%3CEM%3Eor%20even%20better%2C%20paint%20the%20fuller%20%26amp%3B%20workable%20picture%3C%2FEM%3E)......%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%3EAppreciate%20everyone's%20guidance.%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%3ERegards%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%3CSPAN%3EG%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E
Co-Authors
Version history
Last update:
‎May 06 2022 04:20 PM
Updated by: