Legacy Authentication FAQs

Body

What is Legacy Authentication?
Legacy authentication is an older way to authenticate to Office 365 for email and collaboration. Legacy authentication is much less secure than using modern authentication protocols and is frequently used by bad actors to compromise user accounts here at BSU.

What are some examples of Legacy Authentication?
For a list of applications that use legacy authentication, please visit the following URL: https://bridgew.teamdynamix.com/TDClient/1926/Portal/KB/ArticleDet?ID=137770

What is Modern Authentication?
Modern authentication refers to newer and more secure methods to authenticate to Office 365 and other Microsoft services.

How is Legacy Authentication less secure than Modern Authentication?
Legacy authentication only supports single-factor authentication, which uses just username and password and is vulnerable to brute force and password spray cyberattacks.  Modern authentication supports multi-factor authentication (MFA), which uses username, password, and MFA token, making it very difficult for bad actors to gain access to your account.

What do I need to do?
If your device hardware and software are up to date, in most cases, you would just need to delete the existing BSU mail profile and re-add a new one with Microsoft Exchange or Exchange and Office 365 as the email type.  We have more instructions on how to move away from legacy authentication in this URL: https://bridgew.teamdynamix.com/TDClient/1926/Portal/KB/ArticleDet?ID=142039

When is Legacy Authentication being disabled?
Microsoft has announced 10/1/2022 is the date which they will start blocking legacy authentication.

OK. I'm lost and need to talk to someone. Who can I call?
Please send an email to security@bridgew.edu and we'll schedule an appointment and work with you to ensure there is no loss of service.

I received an error message from Microsoft Outlook that says "Your email access has been blocked. You are receiving this message because your IT department has blocked your email access. This could be due to temporary conditions, like your network location. Contact your IT department with any questions or concerns about this mail. This email was automatically generated by Microsoft Exchange". 
An example of the message is below. This message indicates that legacy authentication was disabled on your account and that your device is still trying to use legacy authentication to access email. You will need to either update your device or use an up-to-date email client such as Microsoft Outlook to access your BSU Email.

Details

Details

Article ID: 137771
Created
Tue 9/14/21 10:35 AM
Modified
Mon 8/5/24 12:09 PM