What is legacy authentication and why it is being disabled?

Legacy authentication is an unsecure authentication method that can be leveraged by malicious actors to bypass existing protections and compromise user accounts. By disabling legacy authentication and replacing it with the more secure modern authentication, we can better protect the University community against account compromises and potential phishing attacks.

For more details on legacy authentication and modern authentication, see the article Legacy authentication and Microsoft 365 UTmail+ accounts.

How will the change impact community members?

As a result of the change, some email clients may stop working. This change will only impact University community members who still use legacy authentication. These individuals will be notified about the change through email.

Please note: this change will mostly impact email clients. If you experience other issues please contact your campus help desk.

What you need to do if you were informed that you are using legacy authentication and are unable to access your email client?

• You can still access your email by using your U of T webmail account.
• Follow these simple steps to enable a working email client
  
  • Check if you are using a supported email client that uses modern authentication. See the list of email clients that support modern authentication.
  • If you are already using one of the supported email clients, remove your account from it and re-add it using our Knowledge Base Instructions.
  • If you are not using a supported email client, install one of the suggested clients and add your account to it using our Knowledge Base Instructions.

If you still need assistance, please contact Information Commons Help Desk.