Disable legacy authentication - when are conditional access policies applied

Occasional Contributor

Hello everyone,


in case of disabling legacy authentication, I am looking for informatione about the step in the authentication process, when conditional access policies are applied. Is this happening after the authentication (entering username and password e.g.) of the user is done and another validation is required? 


Thank you for your support.

1 Reply
best response confirmed by ChristianFrielingsdorf (Occasional Contributor)

Yes, you are right Conditional Access only takes effect after authentication has happened.
If you want to block legacy authentication from connecting, this is partially possible through Exchange Authentication Policies -