{"id":4334,"date":"2020-04-03T09:11:29","date_gmt":"2020-04-03T16:11:29","guid":{"rendered":"https:\/\/officedevblogs.wpengine.com\/?p=4334"},"modified":"2020-04-03T09:11:29","modified_gmt":"2020-04-03T16:11:29","slug":"deferred-end-of-support-date-for-basic-authentication-in-exchange-online","status":"publish","type":"post","link":"https:\/\/devblogs.microsoft.com\/microsoft365dev\/deferred-end-of-support-date-for-basic-authentication-in-exchange-online\/","title":{"rendered":"Deferred end of support date for Basic Authentication in Exchange Online"},"content":{"rendered":"<p>Last year\u00a0<a href=\"https:\/\/developer.microsoft.com\/en-us\/office\/blogs\/end-of-support-for-basic-authentication-access-to-exchange-online-apis-for-office-365-customers\/\">we announced\u00a0end of support for Basic Authentication<\/a>\u00a0for\u00a0Exchange Web Services (EWS),\u00a0Exchange Active Sync (EAS), Post Office Protocol (POP), Internet Message Access Protocol (IMAP), and Remote PowerShell (RPS) in Exchange Online.<\/p>\n<p>In response to the COVID-19 crisis and knowing that priorities have changed for many of our customers we have decided to postpone disabling Basic Authentication in Exchange Online for those\u00a0customers\u00a0still actively using it until the second half of 2021.\u00a0We will provide a more precise date when we have a better understanding of the impact of the situation.\u00a0This means that\u00a0existing\u00a0applications\u00a0that\u00a0are\u00a0using Basic Authentication to connect to Exchange Online using one\u00a0or more\u00a0of the above\u00a0API\u2019s\/protocols\u00a0will continue to work\u00a0for existing\u00a0customers\u00a0with active usage\u00a0and developers\u00a0now have additional time to migrate\u00a0such\u00a0apps to use Modern Authentication.<\/p>\n<p>In the meantime, we will\u00a0<a href=\"https:\/\/techcommunity.microsoft.com\/t5\/azure-active-directory-identity\/introducing-security-defaults\/ba-p\/1061414\">continue to\u00a0disable\u00a0Basic Authentication<\/a> for newly created tenants by default.\u00a0 Starting in October 2020 we will also start to disable Basic Authentication in tenants that have no recorded usage. This means that applications that are using Basic Authentication to connect to Exchange Online might face authentication failures when adopted by a customer who is new to Exchange Online or has not used Basic Authentication applications before. The best way to avoid such failures in your application is to <a href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/active-directory\/develop\/v2-overview\">adopt\u00a0Modern Authentication<\/a>. If you are unable to do so, you can work with the customer\u2019s administrators, who will have to make a security decision to downgrade their organization\u2019s security stance,\u00a0to explicitly enable access\u00a0to your application.<\/p>\n<p>We continue to invest in\u00a0Modern Authentication\u00a0capabilities\u00a0and will continue rolling out\u00a0OAuth support for POP, IMAP, SMTP AUTH and Remote PowerShell. We will publish more details on these as we make progress.\u00a0If you have not done so already, we\u00a0strongly\u00a0encourage you to move to OAuth\u00a0for the security benefits it offers to your applications and customers.<\/p>\n<p>The Exchange Team<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Last year\u00a0we announced\u00a0end of support for Basic Authentication\u00a0for\u00a0Exchange Web Services (EWS),\u00a0Exchange Active Sync (EAS), Post Office Protocol (POP), Internet Message Access Protocol (IMAP), and Remote PowerShell (RPS) in Exchange Online. In response to the COVID-19 crisis and knowing that priorities have changed for many of our customers we have decided to postpone disabling Basic Authentication [&hellip;]<\/p>\n","protected":false},"author":69107,"featured_media":25159,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[5,11],"tags":[39,22,69,66,12],"class_list":["post-4334","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-microsoft-identity-platform","category-office-add-ins","tag-authentication","tag-azure-ad","tag-exchange","tag-oauth-2-0","tag-outlook"],"acf":[],"blog_post_summary":"<p>Last year\u00a0we announced\u00a0end of support for Basic Authentication\u00a0for\u00a0Exchange Web Services (EWS),\u00a0Exchange Active Sync (EAS), Post Office Protocol (POP), Internet Message Access Protocol (IMAP), and Remote PowerShell (RPS) in Exchange Online. In response to the COVID-19 crisis and knowing that priorities have changed for many of our customers we have decided to postpone disabling Basic Authentication [&hellip;]<\/p>\n","_links":{"self":[{"href":"https:\/\/devblogs.microsoft.com\/microsoft365dev\/wp-json\/wp\/v2\/posts\/4334","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/devblogs.microsoft.com\/microsoft365dev\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/devblogs.microsoft.com\/microsoft365dev\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/microsoft365dev\/wp-json\/wp\/v2\/users\/69107"}],"replies":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/microsoft365dev\/wp-json\/wp\/v2\/comments?post=4334"}],"version-history":[{"count":0,"href":"https:\/\/devblogs.microsoft.com\/microsoft365dev\/wp-json\/wp\/v2\/posts\/4334\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/microsoft365dev\/wp-json\/wp\/v2\/media\/25159"}],"wp:attachment":[{"href":"https:\/\/devblogs.microsoft.com\/microsoft365dev\/wp-json\/wp\/v2\/media?parent=4334"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/microsoft365dev\/wp-json\/wp\/v2\/categories?post=4334"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/microsoft365dev\/wp-json\/wp\/v2\/tags?post=4334"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}