How do I enable mfa when software applications require access to email

Question

How do I enable mfa when software applications require access to email

Rich Kennedy 0

We can not enable MFA on email accounts which are connected to software applications that send email. We turn off MFA and the account is at risk.

The application password method did not work in this case.

Looking for general guidelines before approaching the application vendor.

Akshay Kaushik 18,026 Reputation points Microsoft Employee Moderator

2023-05-11T14:15:35.5366667+00:00

@Rich Kennedy

Hope you got a chance to review the action plan suggested below. Please do let me know if you have any queries in the comments section. If you don't have any further queries and the suggestion works as per your business need. Please "Accept the answer(Yes)" and "share you feedback ". This will help us and others in the community as well.

Thanks,

Akshay Kaushik

1 answer

Your answer

Akshay Kaushik 18,026 Reputation points Microsoft Employee Moderator

2023-05-11T14:15:35.5366667+00:00

@Rich Kennedy

Hope you got a chance to review the action plan suggested below. Please do let me know if you have any queries in the comments section. If you don't have any further queries and the suggestion works as per your business need. Please "Accept the answer(Yes)" and "share you feedback ". This will help us and others in the community as well.

Thanks,

Akshay Kaushik

Answer 1

Andy David - MVP 160.3K MVP Volunteer Moderator

Using service accounts is not recommended as you know. The vendor should be using a service principal ( enterprise application) to access mailboxes, not an actual account.

If that is not possible, then consider using a conditional access policy if you are licensed (Premium P1) and scope that user to only allow logons from trusted IPs ( whatever those IPs are)

0 comments

Share via

How do I enable mfa when software applications require access to email

1 answer

Your answer