Modern Authentication configuration
requirements for transition from Office
365 dedicated/ITAR to vNext
Article + 07/21/2022 + Applies to: Exchange Online
Summary
This article describes configuration requirements for Modem Authentication after a
transition from Microsoft Office 365 dedicated/ITAR to vNext, depending on Outlook
version.
More Information
The configuration requirements vary, depending on the Outlook version. The following
table outlines the requirements and includes links to related articles.
Outlook — Modern
version auth
support
Outlook Yes
2016
Outlook Yes
2013,
Outlook No
2010
@ Important
EnableADAL
reg key
required
No
Yes
Not available
AlwaysUseMSOAuthForAutodiscover
reg key required
Yes
Yes
Not available
MAPI/HTTP
required
(remove any
blocks currently)
Yes
Yes
Not available
Serious problems might occur if you modify the registry incorrectly. Before you modify
it, back up the registry for restoration _ in case problems occur.
Outlook 2010* Modern Authentication is not supported.
* Users use Basic Authentication and may be prompted multiple times for credentials.
Outlook 2013
* Modern Authentication is not enabled by default.
* Modern Authentication can be enabled by setting the DWORD value to 1 in the
following registry subkeys:
HKCU\SOFTWARE \Microsoft\OFfice\15.@\Common\Identity\EnableADAL
HKCU\SOFTWARE\Microsoft \OFfice\15.0\Common\Identity\Version
For more information, see Enable Modern Authentication for Office 2013 on Windows
devices
* It is recommended that users force Outlook to use Modern Authentication by setting
the DWORD value of the following registry key to 1
HKEY_CURRENT_USER\Software\Microsoft\Exchange\AlwaysUseMSOAuthForAutoDisc
over
Outlook 2016
* Modern Authentication is enabled by default.
* It is recommended that users force Outlook to use Modern Authentication by setting
the DWORD value of the following registry key to 1:
HKEY_CURRENT_USER\Software\Microsoft\Exchange\AlwaysUseMSOAuthForAutoDisc
over
For more information, see Outlook prompts for password and doesn’t use Modern
Authentication to connect to Microsoft 365.
* MAPI/HTTP cannot be disabled. For more information, see Outlook 2010, 2013, 2016,
or Outlook for Microsoft 365 doesn't connect Exchange using MAP! over HTTP as
expected.
Skype for Business or Lync 2013* Recommend that users enable Modern Authentication after the Skype migration is
completed
* Recommend that users enable the following registry keys if you use Modern
Authentication for Exchange. To do that, set the DWORD value to 1
HKEY_CURRENT_USER\Software\Policies\Microsoft\Office\15.0\Lync\,
Al lowadalForNonLyncIndependentoflync
HKEY_CURRENT_USER\Software\Policies\Microsoft\OFfice\16.0\Lync\
AllowAdalForNonLyncIndependentofLync
Feedback
Was this page helpful? | 4 Yes || 2 No
Provide product feedback