Issue / Question:
- Microsoft announced Exchange Online will retire Basic auth for Client Submission (SMTP AUTH) by September 2025.
Environment:
- Cargas Energy 2019 and Later
- Microsoft 365
Resolution / Answer:
Microsoft has announced a change to outgoing email authentication. After September 2025, applications and devices will no longer be able to use Basic auth as an authentication method and must use OAuth when using SMTP AUTH to send email.
This impacts Cargas Energy, as it uses the outgoing mail service provided by Microsoft's SQL Server, and that service does not support more advanced authentication mechanisms.
Given this, you can expect Cargas to release a new email mechanism with more flexible authentication strategies so that you can continue to send out invoices and statements from Cargas Energy, using your existing Microsoft 365 infrastructure.
Please return to this article periodically for progress updates. You may also select the green "Follow" button at the top of the article in order to be notified of changes.
According to Microsoft...
"Basic auth is a legacy authentication method that sends usernames and passwords in plain text over the network. This makes it vulnerable to credential theft, phishing, and brute force attacks. To improve the protection of our customers and their data, we are retiring Basic auth from Client Submission (SMTP AUTH) and encouraging customers to use modern authentication methods that are more secure."
Additional Info:
- More info from Microsoft: Deprecation of Basic authentication in Exchange Online
Comments
Article is closed for comments.