Basic Authentication Retirement for legacy protocols in Exchange Online

 

NEW Message Center Announcement on your Tennant Admin pages!!

MC191153, Plan For Change, Published date: Sep 20, 2019
View this message in the Office 365 message center

 

Beginning October 13, 2020, we will retire Basic Authentication for EWS, EAS, IMAP, POP and RPS to access Exchange Online.

Note: this change does not impact SMTP AUTH.

There are several actions that you and/or your users can take to avoid service disruptions on client applications, and we describe them below. If no action is taken, client applications using Basic Authentication for EWS will be retired on October 13, 2020.

Any application using OAuth 2.0 to connect to these protocols, will continue to work without change or interruption.

[What do I need to do to prepare for this change?]
You have several options on how to prepare for the retirement of Basic Authentication.

  • You can start updating the client applications your users are using to versions that support OAuth 2.0 today. For mobile device access, there are several email apps available that support Modern Authentication, but we recommend switching to the Outlook app for iOS and Android as we believe it provides the best overall experience for your M365 connected users. For desktop/laptop access, we encourage the use of the latest versions of Outlook for Windows and Outlook for Mac. All Outlook versions including, or newer than, Outlook 2013 fully support OAuth 2.0.
  • If you have written your own code using these protocols, you will need to update your code to use OAuth 2.0 instead of Basic Authentication, you can reach out to us on stack overflow with the tag exchange-basicauth if you need some help.
  • If you or your users are using a 3rd party application, which uses these protocols, you will either need to
    • reach out to the 3rd party app developer who supplied this application to update it to support OAuth 2.0 authentication

-or-

    • assist your users to switch to an application that’s built using OAuth 2.0.

We are in the process of building reports that will help you identify any impacted users and client applications in your organization.

We will make these reports available to you in the next few months and communicate their availability via a follow-up Message center post.

Please click Additional Information to learn more about this retirement.

Sign in to the Office 365 Admin center to use the links below:

To customize what’s included in this email, who gets it, or to unsubscribe, set your Message center preferences.
If you are receiving this email because your Admin added you as a recipient, please contact your Admin to unsubscribe.

Edit release preferences
Choose the release track for your organization. Use these settings to join First Release if you haven’t already.

Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s