In a recent project I needed to enable modern authentication on the tenant to be able to work with Office 2013. So I want to drop some lines in order to not to forget how to do it:
Enabling Modern Authentication for Exchange Online
Full details for enabling modern authentication are available in this article for Exchange Online from Microsoft; however here’s the short version. You’ll need to first install the Azure AD PowerShell module. Then connect to your Office 365 tenant and enable OAuth with Set-OrganizationConfig, via the following code:
$Cred = Get-Credential
$Session = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri https://outlook.office365.com/powershell-liveid/ -Credential $Cred -Authentication Basic -AllowRedirection
Import-PSSession $Session
Set-OrganizationConfig -OAuth2ClientProfileEnabled $true
Enabling Modern Authentication for Skype for Business Online
Configuring Skype for Business Online first requires installing the Skype for Business Online PowerShell Module which you’ll need to download and install, rather than install from the PowerShell Gallery. Then like Exchange, connect to your Office 365 tenant and enable OAuth with Set-CsOAuthConfiguration.
$Cred = Get-Credential
$session = New-CsOnlineSession -Credential $cred -Verbose -OverrideAdminDomain home.stealthpuppy.com
Import-PSSession $Session
Set-CsOAuthConfiguration -ClientAdalAuthOverride Allowed
Now with your tenant configuration complete, you may need to enable single sign-on with Azure AD Connect.
Desktop Configuration
This can be set via Group Policy preferences or any 3rd party UEM product. Office 2016 desktop applications should work without this configuration explicitly set; however, if you do set these keys for Office 2016, change 15 to 16 in the key path.
| KEY VALUE | TYPE | DATA | FIELD4 |
|---|---|---|---|
| HKCU\SOFTWARE\Microsoft\Office\15.0\Common\Identity | EnableADAL | REG_DWORD | 1 |
| HKCU\SOFTWARE\Microsoft\Office\15.0\Common\Identity | Version | REG_DWORD | 1 |
Albandrod's Memory 