First connect to Exchange Online PowerShell. Then check if legacy authentication is blocked already:
Get-OrganizationConfig | fl *defaultauth*
If it's still enabled, review the Azure AD sign-in logs to check if legacy authenication is in use (filter by Client App and select all of the legacy methods), and resolve accordingly.
If Conditional Access is available, create a policy to block it using the GUI, or via command:
New-AuthenticationPolicy -Name "Block legacy authentication"
Set-OrganizationConfig -DefaultAuthenticationPolicy "Block legacy authentication"
No comments:
Post a Comment