MT.1009 - At least one Conditional Access policy is configured to block other legacy authentication.
Overview
Legacy authentication is an unsecure method to authenticate. This function checks if the tenant has at least one conditional access policy that blocks legacy authentication.
Learn more: https://learn.microsoft.com/entra/identity/conditional-access/howto-conditional-access-policy-block-legacy
Test Metadata
| Field | Value |
|---|---|
| Test ID | MT.1009 |
| Severity | High |
| Suite | M365 Advisor |
| Category | CA |
| PowerShell test | Test-MtCaBlockLegacyOtherAuthentication |
| Tags | CA, M365Advisor, MT.1009 |
Source
- Pester test:
tests/M365Advisor/Entra/Test-ConditionalAccessBaseline.Tests.ps1 - PowerShell source:
powershell/public/M365Advisor/entra/Test-MtCaBlockLegacyOtherAuthentication.ps1