I am going to be enabling modern authentication in office 365 and wanted to doublecheck the consequences. I am always cautious with changes that affect everyone at once.
We currently do not have modern authentication or security defaults enabled. We use the ios mail app, the outlook app for iPhone, and outlook 2016 & 2019 on windows computers. We dont' do much with powershell. We use one drive & azure backup, but no other azure services. I am mostly concerned about people getting to their email. We currently do not use MFA.
I want to enable MFA, but when I did, it broke the outlook sign in for those that had MFA. After research, I've concluded that is because we don't have modern authentication enabled.
My Plan is to:
a). enable modern authentication for the organization.
b). gradually start adding MFA on a per-user basis, starting with admins and high risk accounts, as fast as I can keep up.
c). eventually enabling security defaults.
I don't have any plan to enable conditional access at this point, as our plan doesn't support it.
My understanding is that everyone is going to be prompted to log back in after I enable modern authentication. This will be on their iPhones, iPads, and Windows Outlook apps. Once they log back in, they will be good to go for some period of time - although they may get prompted periodically (no more than once a week?)
Am I missing anything? specifically around turning on modern authentication, what other affect will it have, other than prompting users to log in again?