Office 365 - Audit Basic Authentication Usage
Basic authentication is a less secure authentication method which opens your Office 365 mailbox to cyberattacks like credential stuffing, brute force and password spray.
Important: Enabling Password Security in Office 365 (email) is recommended and should only be disabled as required for use with some non-Microsoft clients. If password security is enabled for your account, you will not see audit information as your account is secure.
Many email clients that use basic authentication are also capable of secure, modern authentication. Audit which devices and clients are using basic authentication to access your account and reconfigure if available:
Wisc Account Administration Site
Audit Basic Authentication Usage
- Log into Wisc Account Administration site. If you have administrative access to other accounts or domains, select the account you want to manage.
- Click the "Office 365" tab in the left-hand column. It will be expanded.
- Choose Password Security to see the audit information:
Important: If password security is enabled for your account, you will not see audit information as your account is secure.
- Use the connection information to discover devices/clients that are using basic authentication.
- Use the resources below to reconfigure devices/clients that are capable of using modern authentication.
- Protocol: Exchange ActiveSync
- Client: Apple-iPhone or Apple-iPad
- It's possible that your device is using a configuration migrated from an older device. All iOS devices running iOS 11 or newer are capable of using modern authentication.
- Delete any previous configuration and configure Mail app on iOS 11.x+
- Client: Client:Outlook/15.0
- Client: MSFT-WIN-3/10
- Microsoft Windows 10 Mail and Calendar was previously configured using Exchange protocol. The most recent version of Windows 10 Mail and Calendar supports Office 365.
- Delete any existing account configuration and reconfigure using Office 365.
- Client: KFxxxx (e.g. KFKAWI)
- Kindle Fire Mail application does not support modern authentication. Download Microsoft Outlook for Kindle.
- Client: Apple-iPhone or Apple-iPad
- Once you have reconfigured devices/clients to use modern authentication, enable password security for your account.