This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(262.40000000000003, 19%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Hello,
I understand that basic authentication is being discontinued later this year. Is Microsoft planning on creating temporary blocks as a way to remind users to prepare for the discontinuation? I believe they did this years ago for the TLS 1.1 discontinuation.
Thanks.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(217.60000000000002, 51%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBS%3C/text%3E%3C/svg%3E)
Hi @Anon4343
Thank you for posting your query on Microsoft Q&A.
I understand that basic authentication is being discontinued later this year. Yes, Microsoft planning on creating temporary blocks as a way to remind users to prepare for the discontinuation.
In mid-October 2024, we will update the SMTP AUTH Clients Submission Report in the Exchange admin center to show if Basic auth or OAuth is being used to submit email to Exchange Online. In January 2025, we will send a Message Center post to tenants who are using Basic auth with Client Submission (SMTP AUTH) to alert them to the upcoming change. In August 2025, about 30 days before we disable Basic auth we will send another Message Center post to tenants who are still using Basic auth with Client Submission (SMTP AUTH).
Although SMTP AUTH is available now, we announced Exchange Online will permanently remove support for Basic authentication with Client Submission (SMTP AUTH) in September 2025. We strongly encourage customers to move away from using Basic authentication with SMTP AUTH as soon as possible. For more Information about alternative options, please see our announcement here- https://techcommunity.microsoft.com/t5/exchange-team-blog/exchange-online-to-retire-basic-auth-for-client-submission-smtp/ba-p/4114750. Other options for sending authenticated mail include using alternative protocols, such as the Microsoft Graph API.
Follow the document for more information: https://learn.microsoft.com/en-us/exchange/clients-and-mobile-in-exchange-online/deprecation-of-basic-authentication-exchange-online
Hope this helps. Do let us know if you have any further queries.
If this answers your query, do click `Accept Answer` and `Yes`.
Hi @Anon4343
Following up to see if the above answer was helpful. If this answers your query, do click Accept Answer and Yes, if you have any further query do let us know.
Hi Bandela, I don't see any information regarding whether Microsoft will be blocking basic authentication for a day to nudge clients to migrate away from the technology.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(163.2, 57.99999999999999%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
Hello Bandela, I am currently looking at the exchange admin center>reports>mail flow>smtp auth clients report and I think there must be something wrong with it.
I have a list of senders addresses in the report and some of them say they are using Basic Authentication, but when I click on any one of the sender addresses, it opens a side window and says that the sender is using modern authentication. Am I missing something here? Is there a good way to report on sender addresses that are still potentially using basic auth for client submission?
Thank you
Samf, you'll want to create your own question, but the answer is:
Go to Azure AD, Users, Sign-in Logs.
Click Columns at the top and check “Client apps”.
Click “Add filters” and choose Client apps.
You should see a “Client Apps: None Selected” header at the top. Click on that and then put a checkmark next to all “Legacy authentication clients”.
I appreciate the answer. I don't think creating a new question is a good idea. It took a bit of searching to find this post, and I would bet there are other people trying to find the same answers. If we move my question, then it will only hurt people trying to find this solution.
Thank you very much for your response! you said to put a checkmark next to all the legacy client app authentication methods. Are those all end of life, being discontinued this year? I was specifically only concerned about the basic auth for client submission smtp.