"CISA Releases Guidance on Switching to Modern Auth in Exchange Online Before October 1"
The US Homeland Security Department's Cybersecurity and Infrastructure Security Agency (CISA) has published guidance for transitioning from Basic Authentication ("Basic Auth") in Microsoft Exchange Online to Modern Authentication ("Modern Auth") before Microsoft permanently disables Basic Auth on October 1, 2022. Basic Auth is a legacy authentication method that does not support multi-factor authentication (MFA), which is required by Executive Order 14028, "Improving the Nation's Cybersecurity," for Federal Civilian Executive Branch (FCEB) agencies. Although this guidance is intended for FCEB agencies, CISA encourages all organizations to switch to Modern Auth and enable MFA before October 1. CISA urges all organizations to review Switch to Modern Authentication in Exchange Online Before Basic Authentication Deprecation and prioritize moving to Modern Auth. This article continues to discuss new guidance on switching to Modern Auth in Microsoft Exchange Online.