Maintain control of your Microsoft 365 data
Post Reply
Integri_Sander
Influencer
Posts: 17
Liked: 1 time
Joined: Feb 22, 2021 3:48 pm
Full Name: Sander Smet
Contact:

RESTful API: legacy support

Post by Integri_Sander »

Hello,

I was wondering how it's possible -using the RESTful API- to differentiate organizations using legacy support.

To identify an organization using modern authentication, I look at the UseMfa property (under OnlineSettings).
If this property is set to true, it is an organization using modern authentication, otherwise it uses basic authentication.
But for legacy support I haven't found any property like this.

Kind regards

Case #04805271
nielsengelen
Product Manager
Posts: 5797
Liked: 1215 times
Joined: Jul 15, 2013 11:09 am
Full Name: Niels Engelen
Contact:

Re: RESTful API: legacy support

Post by nielsengelen »

If legacy is enabled, I believe there is a certificate parameter that can be used for monitoring.
Personal blog: https://foonet.be
GitHub: https://github.com/nielsengelen
Integri_Sander
Influencer
Posts: 17
Liked: 1 time
Joined: Feb 22, 2021 3:48 pm
Full Name: Sander Smet
Contact:

Re: RESTful API: legacy support

Post by Integri_Sander »

Hello Niels,

Thank you for your response, I thought that the certificate parameter was used for restores using an application certificate.

Below are 2 exchange online settings (I censored potential sensitive information) which I retrieved from the API.

Legacy support (tenant on v4):
"exchangeOnlineSettings": {
"useApplicationOnlyAuth": false,
"officeOrganizationName": "xxx.onmicrosoft.com",
"account": "xxx@xxx.com",
"grantAdminAccess": true,
"useMfa": true,
"applicationId": "xxx-xxx-xxx-xxx-xxx",
}

Modern authentication exclusively:
"exchangeOnlineSettings": {
"useApplicationOnlyAuth": true,
"officeOrganizationName": "xxx.onmicrosoft.com",
"account": "xxx@xxx.com",
"grantAdminAccess": true,
"useMfa": true,
"applicationId": "xxx-xxx-xxx-xxx-xxx",
"applicationCertificateThumbprint": "xxx"
}

Are you referring to the "applicationCertificateThumbprint"?
And if so, how would I use this property to differentiate a legacy supported organization from a modern authentication organization?
Could it be that a legacy supported organization is differentiated by having the "useApplicationOnlyAuth' property set to false and the "useMfa" property set to true?

Kind regards

Edit: corrected legacy support information
Integri_Sander
Influencer
Posts: 17
Liked: 1 time
Joined: Feb 22, 2021 3:48 pm
Full Name: Sander Smet
Contact:

Re: RESTful API: legacy support

Post by Integri_Sander » 1 person likes this post

I have just received an answer from Veeam support stating that the "useApplicationOnlyAuth" property (set to false) is the property to identify a legacy supported organization.

Thank you for your response Niels.
Kind regards
nielsengelen
Product Manager
Posts: 5797
Liked: 1215 times
Joined: Jul 15, 2013 11:09 am
Full Name: Niels Engelen
Contact:

Re: RESTful API: legacy support

Post by nielsengelen »

Hi Sander, thanks for updating/sharing for future reference.
Personal blog: https://foonet.be
GitHub: https://github.com/nielsengelen
Post Reply

Who is online

Users browsing this forum: No registered users and 26 guests