From the course: Top 10 Security Features to Enable within Microsoft 365
Unlock the full course today
Join today to access over 23,400 courses taught by industry experts.
Blocking legacy authentication
From the course: Top 10 Security Features to Enable within Microsoft 365
Blocking legacy authentication
- [Instructor] To give your users easy access to the cloud applications, as your active directory supports a broad variety of authentication protocols, including legacy authentication. However, legacy protocols don't support multifactor authentication. Multifactor authentication is in many environments, a common requirement to address identity theft. For MFA to be effective, you also need to block legacy authentication. This is because legacy authentication protocols such as POP, SMTP, IMAP and MAPI cannot enforce the multifactor authentication, making them preferred entry points for adversaries, trying to attack the organization. The numbers on legacy authentication from analysis of Azure active directory traffic are stark. More than 99% of password spray attacks used legacy authentication protocols. More than 97% of credential-stuffing attacks used legacy authentication. As you AD accounts in organizations that…
Contents
-
-
-
-
-
(Locked)
Understanding Conditional Access6m 37s
-
(Locked)
Blocking legacy authentication9m 23s
-
(Locked)
Identifying applications that use legacy authentication2m 36s
-
(Locked)
Configuring policies to block legacy authentication3m 58s
-
(Locked)
Managing access with Conditional Access6m 28s
-
(Locked)
Create base Conditional Access policies9m 3s
-
(Locked)
-
-
-
-