From Basic to Modern Authentication
Microsoft will soon be enforcing Modern Authentication on all Microsoft 365 users to increase security during the user sign-in process.
Many businesses are already moving beyond basic authentication to increase security through better credential methods.
Basic Authentication is another term for usernames and passwords. This method however is too basic for today’s cyberspace. Attackers can easily target accounts by applying guessable passwords across an organization.
Two Factor Authentication
Two Factor Authentication (2FA) is a process of confirming your identity twice before granting you access to an account or service. Implementing 2FA adds an extra barrier of entry for anyone attempting to access your account.
Types of authentication generally fall into three categories: knowledge factors, possession factors and inherent factors. Knowledge refers to something the person has to remember, like a PIN, password or even pet's name. Possession refers to a secondary device, like a key fob, card reader or smartphone. Finally, inherent factors use a person's unique attributes, typically biometrics like a fingerprint or voice recognition.
2FA uses two (or more) of these methods to verify the identity of the person, thereby adding a far more robust protective layer than just a password.
What is Modern Authentication?
Microsoft is committed to moving beyond Basic Authentication to Modern Authentication.
Modern Authentication uses OAuth 2.0 tokens and the Active Directory Authentication Library. Modern also means multi-factor - it requires two pieces of evidence to prove a user’s identity. This makes it much more difficult for cyber criminals to attack.
Microsoft will soon be enforcing Modern Authentication on all Microsoft 365 users. The purpose is to provide an additional layer of security during the user sign-in process to ensure data protection and minimize the security risk.
In simple terms, it means:
- Strengthening passwords
- Enabling multi factor authentication
- Shutting off any protocols/access that are not needed and present risk.
Whilst we are unsure of exact timescales, Microsoft have pledged to make the shift to modern authentication a mandatory procedure.
Microsoft Secure Score
Enabling multifactor authentication is the number one security recommendation to improve your Microsoft Secure Score. This is a measurement of an organization's security protocols, with a higher number indicating a higher level of security. Following the Secure Score recommendations can protect your organization from threats.
With a recent Client, their Secure Score rose by 121% on the back of our Modern Authentication work.
We strongly recommend implementing Modern Authentication now before it is enforced by Microsoft.
For more information or to find out your Secure Score, please get in touch.
