Exchange Online – Get ready for the retirement of Basic Authentication

In the process of re enforcing security, one of the key is to use robust and secure authentication protocols and methods.

With that in mind, get ready for the retirement of the basic authentication in Exchange Online for POP and IMAP.

If you use POP and/or IMAP to connect to an Exchange Online mailbox, you will need to ensure your client (either mail client, third party software or network enabled device like printer or scanner) can use OAuth to authenticate against Exchange Online.

In addition, PowerShell and Exchange ActiveSync (EAS) will also be affected by this.

It is expected you already have switch to use the Exchange Online PowerShell v2 module ( for your Exchange Online automation with PowerShell.

Regarding EAS, you should switch to Outlook Mobile application.

The roll out has started and is scheduled to be completed by October 2020.

You can search and look for the authentication method used by using the Azure Active Directory sign-ins report.

Connect to either your Azure portal ( or Azure AD portal ( and reach out to the Azure Active Directory\Sign-ins blade under the Monitoring section

image_thumb[1]  image_thumb

Then you can filter by Client app


Which then will allow you to filter by client app type (IMAP, EAS, POP…)


You can now analyse the report to identify what/who is going to be impacted.

Benoit Hamet
Benoit Hamet
Benoit is working on Microsoft collaborative technologies He has been awarded as MVP for more than 12 years Currently MVP on Office 365 after being awarded on SharePoint (2011-2012) and Windows client & server (2002-2007) Speaker at various Microsoft events (TechDays, TechNet seminars) and Quest Software He works on on-premises (Active Directory, RADIUS/NPS, Exchange, Skype for Business, SharePoint, SQL, Terminal Server, Windows client and Windows Server) or online (Azure, Intune, Office 365, Exchange Online, SharePoint Online, Skype for Business Online, Teams) technologies