However, as the name implies, the solution only works for hybrid organizations.įive and a half years later, and fresh from the long-running but successful project to eradicate basic authentication from Exchange Online, Microsoft is turning its attention to bringing modern authentication to non-hybrid (or “ pure”) Exchange Server organizations.
It was the first step to move Exchange Server away from basic authentication and leveraged the hybrid connection between Exchange Server and Azure AD (How hybrid MFA works for Exchange). In December 2017, Microsoft announced Hybrid Modern Authentication for Exchange On-Premises, a method to allow Exchange Servers to accept OAuth tokens issued by Azure AD to authenticate user connections. Modern Authentication for Pure Exchange On-Premises Organizations Running Exchange 2019 and Exchange 2016
Modern Authentication for Pure Exchange On-Premises Organizations Running Exchange 2019 and Exchange 2016.Microsoft in May kicked off a major push to get all Azure AD customers to adopt Modern Auth by rolling out "security defaults", which are aimed at smaller customers to ensure they have basic security hygiene, especially MFA, regardless of the license they had. It's previously said that 99% of compromised Microsoft accounts did not have MFA enabled. In February, Microsoft warned that just 22% of customers that use Azure Active Directory (AAD) had implemented "strong identity authentication" as of December 2021. There are 921 password attacks every second - nearly doubling in frequency over the past 12 monthsĪzure AD accounts in organizations that have disabled legacy authentication experience 67% fewer compromises than those where legacy authentication is enabled More than 97% of credential-stuffing attacks use legacy authentication More than 99% of password-spray attacks use legacy authentication protocols CISA's guideline for switching off Basic Auth highlights several reasons Microsoft has given for moving to Modern Auth:
0 kommentar(er)
