Microsoft is retiring the legacy IDCRL authentication protocol in SharePoint Online. After May 1, 2026, IDCRL will be permanently disabled with no option to re-enable.
ℹ️
Key Facts:
Blocked by default: January 31, 2026
Grace period ends: April 30, 2026
Permanently disabled: May 1, 2026
Replacement: Modern OpenID Connect and OAuth protocols
Action required: Migrate all IDCRL-dependent applications and scripts
Blocked by default: January 31, 2026
Grace period ends: April 30, 2026
Permanently disabled: May 1, 2026
Replacement: Modern OpenID Connect and OAuth protocols
Action required: Migrate all IDCRL-dependent applications and scripts
Legacy applications and scripts using IDCRL authentication must migrate to modern authentication protocols (OpenID Connect, OAuth 2.0). This affects older PowerShell scripts, custom applications, and third-party tools that have not been updated to use modern auth. Test affected systems during the grace period before permanent disablement.
Sources: AdminDroid
