Microsoft Technical Bulletins

The latest updates for all the Microsoft Products you use every day.

Microsoft Exchange Curtain Reveal Tech Bulletin Header

Written by Q

In a world where information technology has become complex and untenable we remove all your frustrations dealing with the overwhelming complications by simplifying technology decisions, budget management and implementation.

Categories: Exchange Online

Tags: Action Required | Major Update | Retirement

January 11, 2022

Blog Home

Basic Authentication – Monthly Usage Report – December 2021

SharePoint Development Services, Exchange Online, Microsoft 365 Experts

From Microsoft Corporation
Technical Bulletin MC312373 · Published Jan 7, 2022

Action Required October 2022

Message Summary

We’re making some changes to improve the security of your tenant. We announced in 2019 that we would be retiring Basic Authentication for legacy protocols, and in September 2021, we confirmed that we would begin to disable Basic Authentication for in-use protocols beginning October 2022. 

We previously communicated this change via Message Center: MC191153 (Sept. ‘19), MC204828 (Feb. ‘20), MC208814 (April ‘20), MC237741 (Feb. ‘21) and MC286990 (Sep. ’21). 

You can always read the latest information about our plans to turn off Basic Authentication here.

Based on our telemetry, there may be some users in your tenant currently using Basic Authentication and we expect these users to be affected when these changes take place. 

In the month of December, we detected the following usage: 

Exchange ActiveSync: 0 

POP: 0 

IMAP: 1 

Outlook Windows: 0 

Outlook for Mac/Exchange Web Services: 0 

Exchange Remote PowerShell: 0 

Please note these numbers only reflect the count of unique users who have successfully authenticated to these services in the specified month, they do not reflect successful access to mailboxes or data (for example, a user may authenticate using IMAP, but may be denied access to the mailbox due to configuration or policy). 

If you want to block users or apps being able to authenticate at all using legacy protocols, we recommend using Authentication Polices. 

To investigate this usage further, we recommend you use Azure AD Sign-in Reports which can provide detailed user, IP and client details for these authentications. 

How this will affect your organization: 

Once this change is made, users in your tenant will be unable to access their Exchange Online mailbox using Basic Authentication and the protocols specified above. 

What you need to do to prepare: 

We recommend you take steps to investigate the usage of Basic Authentication in your tenant and determine its source. Ask yourself: 

  • Are these known users or apps within your tenant with valid use cases, or are these unexpected authentication attempts, possibly indicating a breach or unauthorized access?
  • Are these connections from out of date or badly configured applications, requiring upgrade or reconfiguration or are these third party (e.g., external) applications, that are integrated with your Exchange Online tenant?  

It’s important to begin to understand the use of Basic Authentication in your tenant before it is switched off beginning October 2022. 

t Services

TECHNICAL BULLETIN END

QuixTec provides this and other technical bulletins unaltered from Microsoft. As an authorized Microsoft Partner, we ensure that all our solutions we deliver to you include the latest Microsoft updates.

ABOUT US: QuixTec, LLC is a U.S. certified Veteran Owned, modern DevOps organization with experience in a plethora of IT Software Languages.  As a Microsoft Partner, we specialize in Discounted Microsoft Software Licensing, Microsoft SharePoint, Microsoft365 and HTML5 technologies for small to enterprise-sized organizations. Our dedication to IT excellence is evidenced through our PECB ISO Certification training center. The only PECB ISO authorized center in Washington State. QuixTec, implements and provides training for upcoming open-source digital marketing services that are taking the industry by storm. This solution, used by over 100,000 businesses, provides enterprise level marketing capabilities at startup rates. The founder, Richard, has 30 years of experience working with several notable companies that include World Vision, Expedia, Microsoft, Levi Strauss, NASA, Boeing Aerospace, Los Alamos National Laboratory, and the U.S. Air Force, to name a few.  QuixTec is in the Seattle area. Phone today for a free consultation and project estimate.

(425) 367-9025

LEARN MORE

SharePoint Development ServicesSharePoint Development - SharePoint Consultancy ServicesCustom Solution Development - Microsoft 365 Experts - Microsoft 365 - IT Staffing Services - WordPress Development Services - Form Email Validation - Microsoft Licensing - Mautic Open Source MarketingBest IT Staffing AgenciesIT Staffing Company  - PECB ISO Training and Certification

BLOG HOME

You May Also Like…