Cast your minds back to 2019: Game of Thrones came to an end, many of us had never attended a ‘Zoom Quiz’ before, and we looked to 2020 with hopeful optimism. It was also the year – late in September – that Microsoft announced the retirement of basic authentication in Exchange Online.
And who can blame them? Basic authentication – that is, using just an email and password (which often ends up stored on the device) to grant access – is a piece of cake for cyber-attackers to bypass with modern methods and tools. For tools and their valuable data, basic authentication can be a gaping hole in their defences, ready to be exploited.
Fast forward to the present, and Microsoft’s deadline for retiring basic authentication is almost upon us; from the 1st October 2022, Microsoft will start to randomly select tenants on which they’ll disable basic authentication access for:
For those who need extra time or who are unaware of the coming changes, there’s an opportunity to re-enable basic authentication once per protocol until the end of December 2022 – after that, though, the functionality will be removed. For a full run-down of how the deprecation will unfold, visit Microsoft’s documentation.
In truth, quite a few things – chief among them is a shift to more security investment and tighter, more effective governance of security practices. As harsh as it may seem (regardless of the three-year lead time), this could be the shock some customers need to make important changes to their organisation-wide security.
Retiring basic authentication also highlights certain requirements from both parties…
Yep, it’s time. Security is a conversation that is simply too important – and potentially expensive – to avoid having. Still, many customers are hesitant to tread there, fearing sky-high costs or believing that their current measures are enough – sometimes because they don’t know how exposed they actually are.
For partners, the end of basic authentication can be leveraged to kick off the conversation, highlighting the alternative methods and measures available to customers. There’s also Microsoft’s Secure Score to lean on, showcasing tangible benchmarks and recommendations for context.
Understandably, the unfolding financial crisis will likely deter many customers from spending money, with a freeze on investing in security. Unlocking resources and freeing up funds to reinvest, then, will be a key play for partners to encourage the instigation of new security measures.
Microsoft’s announced changes mean it’s out with the old and in with the new; goodbye basic authentication, hello multi-factor authentication (MFA).
Of course, this comes with challenges of its own – namely, encouraging users to adopt MFA with methods such as the Microsoft Authenticator app. To maximise success, customers need to know ahead of time what their MFA uptake is like across the organisation. That way, they can ride out the transition with ease, and lay the foundation for a more secure future.
Providing an idea of where the organisation isn’t making the most of MFA will allow partners to support greater security uptake in their customers, while also giving them the intelligence to recommend decisive actions.
If there’s one major lesson to come out of Microsoft’s announcement, it’s this: understanding the current state of an organisation’s security keeps customers in control, which in turn enables them to implement the measures that minimise risk.
Creating visibility and transparency to build accountability, understanding, and action will be crucial for partners. From this vantage point, it’s far easier to remediate customer security concerns and help them to build the insights they need to keep everybody secure and on the same page moving forward.
"*" indicates required fields
Software Asset Management is a business practice that involves managing and optimising the life cycle of software within an organisation.
Software asset management is relevant to many facets of a business - take a look at some of the roles that it can form part of the focus of.
Software vendors come in all shape and sizes - all with their own set of licensing models and rules. We take a look at just a few of them.
As a constantly evolving subject, SAM is not without its challenges. We take a look at some of the most common ones.
Wondering what an investment in SAM could do for your business? Fill out a few details and find out what return you could get!
Answer a few questions about your SAM infrastructure & experience, and we'll put together a personalised recommendation for the future.
A simple health check of what's being used across your Office 365 estate in this FREE, Microsoft backed and easy to setup review.
Just like you would with your vehicle each year, get an annual check up of your software asset management programme.
Overwhelmed by the task of documenting the steps for a successful SAM programme? Get the experts in to help!
Concerned your SAM tools aren't covering your whole estate? Or on the look out for an entirely new tool? Get us in to assist.
Not content with covering all things SAM related, we've teamed up with Capital to provide a comprehensive hardware asset management review.
A simple, one-time reconciliation of the software you have deployed versus the licence entitlement you own.
A regularly scheduled analysis of your organisation's estate, specifically adapted to your needs and budget.
A full appraisal of your Microsoft 365 setup and how best to optimise it through automated recommendations.
An add-on to our SAMplicity One, MOT and Plus offerings, quickly diagnose your ability to migrate your resources to the cloud.
In collaboration with law firm Addleshaw Goddard, ensure the legality of your SAM programme and get assistance with any contract disputes.
Available as standard with SAMplicity Plus, ensure you're compliant if you're unexpectedly audited by a vendor.
We've teamed up with some of the forefront experts in licensing knowledge so you can teach yourself to be an expert too.
Stumped by the continually evolving complexities of SAM? Join us for one of our comprehensive courses, either in-person or online.
It’s chock full of useful advice, exclusive events and interesting articles. Don’t miss out!