Hi, in a tenant where OAuth2ClientProfileEnabled is $false, is it possible for any client to be using modern authentication; or are all clients limited to basic authentication protocols only?
On iOS, when connecting a mailbox to the native mail app, with the aboveOAuth2ClientProfileEnabled $false configuration, i get a web based oauth sign in page. This indicates to me that this is a "modern" auth flow even though OAuth2ClientProfileEnabled is set to false.
Enabling or disabling modern authentication in Exchange Online as described in this topiconlyaffects modern authentication connections by Outlook 2013 or later clients.
Other email clients that support modern authentication (for example, Outlook Mobile, Outlook for Mac 2016, and Exchange ActiveSync in iOS 11 or later)alwaysuse modern authentication to log in to Exchange Online mailboxes, regardless of whether you enable or disable modern authentication for Outlook 2013 or later clients as described in this topic.