At sign in, the user authenticates directly against an identity platform (either Azure AD or an on-premises identity provider like ADFS) and receives an access token in return, which grants Outlook for iOS and Android access to the user's mailbox or files. Modern authentication provides Outlook for iOS and Android with a secure mechanism to access Microsoft 365 or Office 365 data without ever touching a user's credentials. Modern Authentication (OAuth): Outlook for iOS and Android leverages Modern Authentication (OAuth) to protect user's credentials.
In other words, the user's mailbox data is stored within the region in which the tenant (or mailbox in the case of a Multi-Geo tenant) is located.ĭevice ID: Each Outlook for iOS and Android connection registers in the Microsoft 365 or Office 365 Admin console and is able to be managed as a unique connection. The Microsoft 365- or Office 365-based architecture provides the following benefits:ĭata locality: User mailbox data stays in place, and therefore continues to respect the data locality and regionality promises of Microsoft 365 or Office 365 for data at rest. Outlook for iOS and Android is fully delivered through Microsoft services that provide a strong commitment to security, privacy, and compliance.
Data simply stays in its current Exchange Online mailbox, and it's secured with TLS version 1.2 over HTTPS connections end-to-end, between Microsoft 365 or Office 365 and the app. All Office 365 Enterprise, Government, Business, and Education accounts are supported natively, which means there is no mailbox data cached outside of Microsoft 365 or Office 365. The Outlook for iOS and Android app is fully powered by the Microsoft Cloud. The Outlook for iOS and Android Help Center is available for users, including help for using the app on specific devices and troubleshooting information.