Microsoft Exchange authentication changes

Microsoft has announced the use of basic authentication for Microsoft Exchange services is being deprecated and they will retire basic authentication entirely on 31st December 2022. Microsoft are moving instead to OAuth (Open Authorisation) for Exchange authentication.

Starting from the 1st October 2022 Microsoft will start disabling basic authentication for MAPI, RPC, Offline Address Book (OAB), Exchange Web Services (EWS), POP, IMAP, Exchange ActiveSync (EAS), and Remote PowerShell for randomly selected tenants.

Microsoft have confirmed they will not be disabling or changing any settings for SMTP AUTH. IRIS KashFlow will continue to use your own email address when sending emails.

How does this affect IRIS KashFlow users?

To continue to send emails through IRIS KashFlow via MS Exchange users will need to:

• Update your IRIS KashFlow SMTP configuration to use OAuth authentication.

• Or, re-enable basic authentication for your tenant. This can be done by raising a support ticket with Microsoft. Alternatively, if you have access to your Microsoft 365 admin centre you can complete these steps yourself.

After 31 December 2022 all users will need to switch to OAuth authentication to continue using MS Exchange with IRIS KashFlow.

The great news is IRIS KashFlow already supports OAuth. You can update your SMTP configuration in IRIS KashFlow and start using OAuth straight away. Read our updated SMTP Configuration article here for details.

Re-enable basic authentication

If you find Microsoft has already disabled basic authentication for your tenant, but you are not yet ready to switch to OAuth, you will need to re-enable basic authentication by raising a support ticket with Microsoft. Or, follow these steps, if you have access to your Microsoft 365 admin center.

IRIS KashFlow support are unable to assist with your Microsoft account administration. Any such queries should be raised with Microsoft support. Please see Microsoft documentation for more information.

1. Log into your Microsoft 365 admin centre (opens in new window).

2. Go to Users > Active users.

3. Select the address used to send emails through IRIS KashFlow. This will open a slide-out with more options.

4. From the slide-out, go to Mail. Then select Manage email apps.

5. Select Authenticated SMTP in the list of options to check the box.

6. Select Save changes.

7. In IRIS KashFlow go to Settings > SMTP Configuration (take me there in the app).

8. Authentication type should still be set to Basic / session.

9. Select Test Email to check basic authentication has been re-enabled for your account.