I am trying to identify applications that are still using Basic Authentication to connect to MS services (O365, etc.) before MS shuts off access in October of this year. MS has provided a way to view this data via the Azure Sign-in report. One of the applications,
according to this report, is our Veeam backup for O365 product. However, I setup that up to use MFA months ago. I confirmed that it still uses it (I had to create an app ID in Azure, an app secret, etc.). It says the "User agent" is Mozilla/4.0
(compatible; MSIE 6.0; MS Web Services Client Protocol 4.0.30319.42000)….no idea why as the server has IE11 and nothing else. The MFA Report says "MFA requirement skipped due to app password". I am not confident this tool is giving accurate
information. I am surprised it doesn't just have a column that says Basic Authentication (Yes or No). Any idea why I am seeing this?
↧