![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(156.8, 79%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EIU%3C/text%3E%3C/svg%3E)
Exchange Online
A Microsoft email and calendaring hosted service.
6,171 questions
Hi @IT-User9733
If you implement a conditional access policy as seen in https://learn.microsoft.com/en-us/azure/active-directory/conditional-access/block-legacy-authentication (How to: Block legacy authentication access to Azure AD with Conditional Access) you will then stop people from using basic authentication (legacy) and therefore force them to only use Modern Authentication.
Regardless of implementing this, legacy authentication will begin to be depreciated on October 1, 2022.
Your questions:
1) Stop users connecting to my apps that are using clients and protocols that don't support modern authentication.
Correct.
2) But it will not stop them from being able to send email to me from an app that doesn't support modern authentication.
Incorrect if you turn the policy on it will block legacy authentication to all apps. You should think about using MFA for all of your users by implementing the following:
If this is helpful please mark as correct answer.