> For the complete documentation index, see [llms.txt](https://doc.keepnetlabs.com/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://doc.keepnetlabs.com/next-generation-product/platform/phishing-reporter/phishing-reporter-deployment/phishing-reporter-page-view-failure-due-to-deprecated-exchange-online-tokens.md). # Phishing Reporter Page View Failure Due to Deprecated Exchange Online Tokens The **Phishing** **Reporter** **Page** **View** feature fails due to Microsoft's deprecation of legacy Exchange Online tokens earlier than expected date, June 2025. ## **Affected Systems** * **Microsoft** **365** **users** utilizing the **Phishing** **Reporter** **Page** **View** feature. ## **Symptoms** If you are using the **Phishing** **Reporter** **Page** **View** version, it may fail with the following empty message:

Empty message shown when Phishing Reporter Page View fails due to deprecated Exchange Online tokens.

## **Root Cause** **Microsoft** has deprecated legacy **Exchange** **Online** **tokens**, which the **Phishing** **Reporter** previously relied upon for **authentication** **and** **access**. ## Short Term Solution Admins can re-enable legacy Exchange Online tokens for their tenant by using **Exchange Online PowerShell** and the **Set-AuthenticationPolicy** command. For the deprecation timeline, token behavior, and migration guidance (NAA/MSAL), see Microsoft's [Nested app authentication FAQ - Legacy tokens](https://learn.microsoft.com/en-us/office/dev/add-ins/outlook/faq-nested-app-auth-outlook-legacy-tokens). **See also:** [Regarding deprecation of exchange tokens](https://learn.microsoft.com/en-us/answers/questions/4756209/regarding-deprecation-of-exchange-tokens) (Microsoft Q\&A) for community discussion and admin re-enable options. {% hint style="warning" %} It can take up to 24 hours before all requests from Outlook add-ins for legacy tokens are allowed. {% endhint %}

Exchange Online PowerShell — Allow Legacy Token sample. — Picture 1: Exchange Online Powershell - Allow Legacy Token Sample

## Long-Term Solution A more permanent solution, we highly recommend using **Microsoft** **Ribbon** **Phishing** **Reporter** that utilises **Graph** **API** and no dependency on Exchange Online tokens. ## FAQ: ### Q: Why is it happening now? A: Legacy tokens turned off for all tenants before the scheduled date before June.

Date	Legacy tokens status
Feb 17th, 2025	Legacy tokens turned off for all tenants. Admins can reenable legacy tokens via PowerShell.
Jun 2025	Legacy tokens turned off for all tenants. Admins can no longer reenable legacy tokens via PowerShell and must contact Microsoft for any exception.
Oct 2025	Legacy tokens turned off for all tenants. Exceptions are no longer allowed.

--- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter: ``` GET https://doc.keepnetlabs.com/next-generation-product/platform/phishing-reporter/phishing-reporter-deployment/phishing-reporter-page-view-failure-due-to-deprecated-exchange-online-tokens.md?ask=&goal= ``` `ask` is the immediate question: it should be specific, self-contained, and written in natural language. `goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.