Modern Auth has major advantages, for which Microsoft has been banging the gong for several years. That said, any change from a legacy standard to a more robust, modern one will involve some pain. The use of the internet and cloud services has evolved in ways that Basic Auth could never have anticipated. See also: Interest in Zero Trust Explodes with Cloud Migration A Change is Coming…And It Might Hurt Notably, it supports two-factor/multi-factor authentication (2FA/MFA), which allows additional authentication factors to further establish the user’s identity. Modern Auth leverages ADAL to enable applications to support a variety of sign-in capabilities, including smart card+certificate-based authentication. It’s a significantly more secure way of confirming the identity of a user while verifying that they are authorized to access applications and resources. Modern Auth still requires usernames and passwords as the first line of establishing identity, but it minimizes the number of times those credentials are exchanged or stored on separate servers with the use of tokens.
Things improved with two-factor authentication, but Microsoft recognized the high risk associated with this legacy protocol and has, for the past several years, pushed for a shift to a more secure form of Modern Authentication. It was inherently insecure, relying only on a username and password to authenticate every separate server. The replacement, Modern Authentication (Modern Auth), is more secure and provides a better user experience, given the distributed, federated nature of the modern web experience.įor the past two and a half decades, Basic Auth over the internet has sufficed. Given the current state of cybersecurity threats, the move to something more secure is crucial. By the end of the year, that legacy authentication method – which has been in existence for more than 25 years – was forever disabled. Last fall, Microsoft disabled one-source Basic Authentication (Basic Auth) for access to Exchange Online mailboxes.
Modern Authentication (Modern Auth) is more secure and provides a better user experience, given the distributed and federated nature of the modern web experience.
0 kommentar(er)
