What Microsoft’s Shift From Basic Authentication Means For Your Business
If you’ve ever used a password to access a system, that means you’ve participated in authentication.
It’s a common feature of the corporate world, and because Microsoft’s suite of services is so popular there, you’ve likely had to authenticate yourself or your team members on a Microsoft application or network.
Microsoft recently made a critical change in its authentication posture, eliminating a feature known as Basic Authentication. While this change was made for the right reasons and will have a net-positive impact on those using Microsoft products, it’s still a change those organizations will need to assess and navigate.
So what will this mean for you? Let’s take a closer look at what Basic Authentication was, what Microsoft decided to do with it, and how you and your organization can remain flexible in the face of these changes.
Authentication: An Overview
An organization’s internal network will often grant users access to proprietary information they don’t want anyone outside the organization to view. For this reason, companies need to be able to protect their network, letting the right people in and keeping the wrong people out.
That’s what authentication is for. Authentication is how computer networks verify that the user logging into a system is who they say they are. There are variations and different ways to authenticate one’s identity. But ultimately, no matter what form it takes, all authentication offers organizations the ability to safeguard their network from anyone who doesn’t belong on it.
Until recently, Microsoft offered a feature known as Basic Authentication.
What is Microsoft Basic Authentication?
So what is – or, more appropriately, was – Microsoft’s Basic Authentication? According to Microsoft’s documentation site, Basic Authentication moves network usernames and passwords from one part of the network to another, unencrypted. To ensure protection, Microsoft users had to utilize SSL encryption alongside Basic Authentication.
This extra level of security helped keep sensitive data safe, whether that data was being shared on the public-facing internet or on a company’s intranet. It wasn’t a comprehensive security solution, however, which has led to Microsoft developing a better solution for security. While Microsoft used Basic Authentication for a number of years, in the last few years, their more modernized platforms used a different, more holistic type of authentication.
Microsoft’s Announcement Regarding Basic Authentication
In 2019, Microsoft announced it was moving away from Basic Authentication, both for Exchange Web Services and Exchange Online for Active Synch. It did so in October 2020. Microsoft announced this shift well in advance to give its users time to shift away from the change.
In advance of the move, Microsoft asked its users to gradually transition from Basic to a different type of authentication (more on that below). While migrations are never simple, they contended that the value-added would limit the risk users encountered from continuing to use Basic Authentication.
What Will Replace Basic Authentication?
Microsoft moved from Basic to a format known as Modern Authentication. Modern Authentication isn’t new in and of itself, but it’s not compatible with some of Microsoft’s older applications.
So how does Modern Authentication work? It’s a step up from Basic, offering more security and a more comprehensive authentication posture. According to Microsoft’s Modern Authentication site, there are a whole host of authentication capabilities in Exchange Online. These functions include:
- Multi-factor authentication, which asks users to identify themselves multiple times to gain access
- Smart cards, which ask users to present an organization-issued card as identification
- Certificate-based authentication
- Third-party identity providers
If you’re looking to use Modern Authentication with an older version of Outlook on Windows, you may be able to use it if you’ve enabled Modern Authentication and the application supports it. Microsoft offers additional guidance on how it can support other applications within its Office platform.
In the past, if you didn’t have Modern Authentication enabled, your Outlook would default to Basic Authentication to connect to Exchange Online. Now that Microsoft has disabled Basic, this is no longer an option.
How Will Microsoft Ending Basic Authentication Impact You?
There’s good news and bad news for this change and how it will impact you and your business. First, the bad news: like any sweeping change to a platform you use, this may require action on your part. If you use an older version of Office, there’s a chance it doesn’t support Modern Authentication. That means you’ll likely need to upgrade to a newer version of Office. This kind of change has the potential to significantly disrupt your organization and its workflow – unless you’re able to identify a partner to help you through the process.
Here’s the good news: this change will work wonders in terms of making your team members’ Office experience more secure. There’s no telling what kind of damage that can be done via a security breach. One successful phishing or hacking attempt could corrupt your data, expose sensitive information, or lead to a loss of money or consumer trust. With Modern Authentication, you decrease the likelihood of a hack occurring.
This wasn’t a case of change for the sake of change – Modern Authentication offers a much more sophisticated approach to network security. Enhanced authentication promises your team members’ passwords and access will be kept more secure. It may not eliminate the possibility of an attack entirely, but it certainly mitigates the risk.
That leads us back to the question of how you can ensure your organization is using a compliant version of Office. The best recourse is to partner with a trusted IT services provider who understands how to navigate Microsoft and Microsoft products. That way, you can focus on your mission while leaving the migration efforts to the experts.
That expert is Schilling IT. At Schilling IT, we’re well-versed in managing and maintaining Microsoft services. We know how to get your company up to speed quickly, minimizing disruption and maximizing efficiency. We can help you ensure your company won’t feel any undue pressure as you make any changes.
For more on how to navigate Microsoft support and your Microsoft networking needs your business may have, call Schilling IT today.
Fill in our contact form and our team will reach out!
"*" indicates required fields