Nov 04 2021
We want to use Outlook for iOS / Android with Hybrid Modern Auth to take advantage of CA and Intune.
After activation viaSet-OrganizationConfig -OAuth2ClientProfileEnabled $ true
Set-AuthServer -Identity EvoSTS * -IsDefaultAuthorizationEndpoint $ true
all internal Outlook 2016 clients also try to establish a connection via OAuth.
Since not all users are synchronized in the AAD, a connection is not possible for these users.
Does anyone have an idea how we can activate OAuth only for external connections or only for ActiveSync and the local clients still connect via Negotiate / NTLM?