Modern Authentication / Outlook 2016 Password / OWA / App Password

In Office 365 two factor authentication (2FA), App Password is used for older versions of Microsoft Outlook or for non-outlook clients on devices like MACs or smart phones.

After enforcing 2FA in Office 365 and if you are trying to configure Outlook 2016 for email, and Outlook keeps rejecting the password that you have been using and that works with OWA, while if you try the App Password it works in Outlook, then you might want to add a registry key to enable and enforce Modern Authentication.

  • Outlook 2010 doesn’t support Modern Authentication

 

  • Outlook 2013 supports Modern Authentication but you need to add the following two registry keys.  DWORD and set to i

HKCU\SOFTWARE\Microsoft\Office\15.0\Common\Identity\EnableADAL

HKCU\SOFTWARE\Microsoft\Office\15.0\Common\Identity\Version

The following key will enforce it.

HKEY_CURRENT_USER\Software\Microsoft\Exchange\AlwaysUseMSOAuthForAutoDiscover

 

  • Outlook 2016 supports modern authentication and it is ON by default but we’ve had to enforce it in some instances because Outlook kept prompting for a password and wouldn’t take the password that worked with OWA but Outlook worked with App Password.  Enforcing Modern Authentication made Outlook 2016 accept the regular office 365 password (that worked OWA password).   Add the following DWORD and set to 1

HKEY_CURRENT_USER\Software\Microsoft\Exchange\AlwaysUseMSOAuthForAutoDiscover

Note: registry changes might result in problems and serious issues with computers and software.  Do it at your own risk.

 

How to Force Sync Azure AD Connect with Azure Office 365

 

If you have Azure AD Connector with Azure Office 365 and want to force Sync AD with Azure when you have just created a new user, start PowerShell on the server that has Azure AD Connect installed and type:

import-Module ADSync

Get-ADSyncScheduler

Start-ADSyncSyncCycle -PolicyType Delta

 

How to Connect to Office 365 Through Powershell

1- In Windows run PowerShell as an admin

2- Install PowerShell v2 if not installed

Install-Module -Name ExchangeOnlineManagement

3- Import Exchange Online Management module

Import-Module ExchangeOnlineManagement

4- Connect to Office 365 with admin user

Connect-ExchangeOnline  -UserPrincipalName  Admin@WhateverDomain.com

Replace admin@whateverdomain.com above with office 365 administrator account.  You will be prompted for credentials.

5- After that if you want, for instance, to grant a user named User1 “Author” permissions on root of public folders

Get-PublicFolder -Identity “\” -Recurse | Add-PublicFolderClientPermission -User  User1 -AccessRights Author

Replace User1 above with the user you want to grant access

6- To view permissions on the public folders called My Public Folder

Get-PublicFolderClientPermission “\My Public Folders”