Modern Authentication for Microsoft Exchange Online [CHK-1021]

Rationale

Modern authentication enhances the security of the tenant by supporting multi-factor authentication (MFA). Legacy authentication, which does not support MFA and relies on an outdated username and password screen, poses potential security risks.

Fix

An automated fix is available through Attic. If you prefer to fix it manually:

Connect to ExchangeOnline using Connect-ExchangeOnline.
Run the following command to enable modern authentication:
```
Set-OrganizationConfig -OAuth2ClientProfileEnabled $true
```

Impact

Enabling modern authentication improves the security of your Microsoft environment by allowing multi-factor authentication and reducing the risk of account takeover.

More Information

CIS M365 1.2 - (L1) Ensure modern authentication for Exchange Online is enabled
CHK-1325 - Legacy authentication disabled

Modern Authentication for Microsoft Exchange Online [CHK-1021]

This check verifies if modern authentication is enabled for Microsoft Exchange Online, which is crucial for multi-factor authentication.

Rationale

Fix

Impact

More Information