Nov 03 2022 12:49 AM
Hi everyone,
we got the news today for our M365 Apps.
"You are receiving this message because our reporting indicates one or more users in your organization are using basic authentication to access resources."
---
How can we find out which services/endpoints are using basic auth?
We are having hundreds of customer systems we connect to and do not manage.
BR
Stephan
Nov 03 2022 01:33 AM
Nov 04 2022 12:35 AM - edited Nov 04 2022 12:49 AM
1. Sign-ins using legacy authentication workbook --> https://learn.microsoft.com/en-us/azure/active-directory/reports-monitoring/workbook-legacy%20authen...
2. Identify legacy authentication use --> https://learn.microsoft.com/en-us/azure/active-directory/conditional-access/block-legacy-authenticat...
OLD but very good
3. New tools to block legacy authentication in your organization ---> https://techcommunity.microsoft.com/t5/microsoft-entra-azure-ad-blog/new-tools-to-block-legacy-authe...
Nov 08 2022 05:29 AM
Nov 08 2022 07:52 AM
@StephanGee Not sure I understand. You manage your own tenant and how the authentication works for incoming connections/sign-ins, i.e. What you allow or not. You might have blocked legacy authentication with CA and/or with the Authentication policy? Conditional Access policies are enforced after first-factor authentication is completed. If you implement Authentication policies (from the M365 admin portal or New/Set-Authentication policy, you stop connections before a sign-in can be attempted.