Enable Conditional Access policies to block legacy authentication
Why This Matters
Legacy authentication protocols such as Basic authentication do not support multi-factor authentication (MFA), making them a prime target for attackers. By enforcing Conditional Access policies that block these outdated protocols, you significantly reduce the risk of credential theft and unauthorized access. This is a critical control for any organization that wants to enforce modern authentication and comply with security best practices.
What Aether365 Checks
This security check verifies that a Conditional Access policy is enabled in Microsoft Entra ID to block legacy authentication protocols. The check appears in your Aether365 dashboard under the entra-id category and is aligned with the CIS Microsoft 365 Foundations Benchmark.