Modern Authentication secures Office 365 resources using multi-factor authentication, certificate-based authentication, and SAML-based logins (such as Federation), for a true single sign-on experience.įor MFA to be effective, you will need to block basic & legacy authentication. To address the common security risks and user experience associated with Office 365 deployments, Microsoft introduced the Active Directory Authentication Library (ADAL) for Office 365 client applications, referred to as Modern Authentication. It has proven ineffective and is not recommended in modern IT environments especially when authentication is exposed to the internet as is the case for Office 365. Basic Authentication is unable to enforce MFA and is superseded by Modern Authentication.īasic & legacy authentication mechanisms that rely solely on username and password. Basic Authentication relies on sending usernames and passwords - often stored on or saved to the device - with every request, increasing risk of attackers capturing users’ credentials, particularly if not TLS protected. Microsoft is planning the deprecation of Basic Authentication for multiple protocols prior to its removal (Date TBC by Microsoft).
0 Comments
Leave a Reply. |