Relation between disabling legacy protocols and disabling legacy authentication

Fletcher, Kevin 6 Reputation points

I have read several articles about disabling legacy auth and still other articles about disabling legacy protocols. I'm confused how these two are related.

Is it possible to disable legacy protocols without enabling modern authentication? Are the two the same thing?

In the O365 secure score there used to be (I don't see it now) a action for disabling legacy protocols.

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,188 questions
0 comments No comments
{count} vote

2 answers

Sort by: Most helpful
  1. Biju Thankappan 101 Reputation points

    FletcherKevin-4084 Legacy authentication refers to legacy protocols that use basic authentication. Azure AD supports variety of authentication protocols including legacy authentication. However, legacy protocols don’t support multi-factor authentication (MFA) and other features. Read all about these modern protocols here. Legacy and modern authentication/protocols are not the same. You may disable legacy authentication/protocol, however, you would still need modern authentication/protocols enabled.

    0 comments No comments

  2. Fletcher, Kevin 6 Reputation points


    Thank you. To clarify... I cannot disable legacy protocols without enabling modern authentication. Correct?