Alright Commit... what's the plan?
https://techcommunity.microsoft.com/...er/ba-p/805892
https://office365itpros.com/2020/02/...uthentication/
IMAP4 and POP3
Microsoft says that they have completed work on modern authentication for these obsolete access protocols and are rolling out the code within Exchange Online. They make the point that modern authentication has been available for IMAP4 in Outlook.com for some years, which begs the question why it’s taken so long to appear in the commercial service.
Documentation for developers is being completed, which will allow companies who write the IMAP4 and POP3 clients people use to connect to Exchange Online mailboxes to upgrade their code before October.
Some work will be needed to test and deploy updated clients. With that in mind, the question must be asked if it is time to retire these protocols and use something more modern. Remember, IMAP4 and POP3 were created at a time when a separate protocol was needed (SMTP) to send messages. These protocols can only download messages. OWA is a good replacement for PCs while Outlook Mobile should replace mobile clients that use IMAP4 and POP3.
I don’t underestimate the pain and disruption caused when users are forced to switch clients, but we have arrived at a crunch point where the need for security trumps personal preference for antiquated protocols.
SMTP
Microsoft says that they are nearly finished work to implement modern authentication for SMTP. When Microsoft switches off basic auth for SMTP, this is likely to disrupt connectivity for mail-enabled devices that use SMTP to send notifications and other information. It’s unclear how many manufacturers will upgrade the software running on these devices to use modern authentication, especially for older devices. It might be the case that no solution will be available to allow devices to continue connecting to Exchange Online unless customers pressurize manufacturers to create patches.
https://techcommunity.microsoft.com/...er/ba-p/805892
https://office365itpros.com/2020/02/...uthentication/
IMAP4 and POP3
Microsoft says that they have completed work on modern authentication for these obsolete access protocols and are rolling out the code within Exchange Online. They make the point that modern authentication has been available for IMAP4 in Outlook.com for some years, which begs the question why it’s taken so long to appear in the commercial service.
Documentation for developers is being completed, which will allow companies who write the IMAP4 and POP3 clients people use to connect to Exchange Online mailboxes to upgrade their code before October.
Some work will be needed to test and deploy updated clients. With that in mind, the question must be asked if it is time to retire these protocols and use something more modern. Remember, IMAP4 and POP3 were created at a time when a separate protocol was needed (SMTP) to send messages. These protocols can only download messages. OWA is a good replacement for PCs while Outlook Mobile should replace mobile clients that use IMAP4 and POP3.
I don’t underestimate the pain and disruption caused when users are forced to switch clients, but we have arrived at a crunch point where the need for security trumps personal preference for antiquated protocols.
SMTP
Microsoft says that they are nearly finished work to implement modern authentication for SMTP. When Microsoft switches off basic auth for SMTP, this is likely to disrupt connectivity for mail-enabled devices that use SMTP to send notifications and other information. It’s unclear how many manufacturers will upgrade the software running on these devices to use modern authentication, especially for older devices. It might be the case that no solution will be available to allow devices to continue connecting to Exchange Online unless customers pressurize manufacturers to create patches.
Comment