Microsoft 365 will update default settings to enhance security by blocking legacy authentication protocols and requiring admin consent for third-party app access. Changes start mid-July 2025 and complete by August 2025. Organizations should assess configurations, notify stakeholders, update documentation, and configure the Admin Consent workflow.
Applies to: Microsoft Entra · SharePoint Online · Microsoft OneDrive · Microsoft 365 apps
Source: mc.merill.net — data via Merill Fernando's open archive (MIT).