Project

General

Profile

Actions

Feature #12903

open

alternative authentication methods for email notifications?

Added by gavin penney 4 months ago. Updated 4 months ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
Notifications
Target version:
-
Start date:
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Release Notes:
Default

Description

i have been using gmail for years but they are disabling password only access to accounts.
since pfsense has only password only access to accounts...this functionally disables my email notifications.

TrueNAS, as an example, has OATH capability, and i can still use it, but i now need another solution for pfsense.

email is not an area i have any expertise in, due to lack of interest...but now I need to find something else.

Actions #1

Updated by gavin penney 4 months ago

oops, i meant to add the email from google, not that it matters that much.

On May 30, you may lose access to apps that are using less secure sign-in technology
    email@gmail.com 
To help keep your account secure, Google will no longer support the use of third-party apps or devices which ask you to sign in to your Google Account using only your username and password. Instead, you’ll need to sign in using Sign in with Google or other more secure technologies, like OAuth 2.0. Learn moreWhat do you need to do?

An app or device which uses Simple Mail Transfer Protocol (SMTP) to send emails using your Google Account has less secure access to your Gmail. This might be an older device, like a printer or scanner. To continue using your Google Account with this app or device:

    App - Remove your Google Account from the app or device and sign in again using Sign in with Google
    Device - Change your device’s settings so you’re using more secure sign-in technology

Actions #2

Updated by Jim Pingle 4 months ago

We can look into other ways to authenticate, but in the Gmail case it should still work with App Passwords: https://support.google.com/accounts/answer/185833?hl=en

They just don't want people using their actual password in those sorts of roles.

Actions #3

Updated by gavin penney 4 months ago

Jim Pingle wrote in #note-2:

We can look into other ways to authenticate, but in the Gmail case it should still work with App Passwords: https://support.google.com/accounts/answer/185833?hl=en

They just don't want people using their actual password in those sorts of roles.

OH. i had no idea app passwords existed, because it only shows up if you have 2fa, and since I only use this account for sending emails out, I never had that on.

it looks like it works now.
perhaps a blurb could be added to the page to let people know such a thing exists? or a link to details about authentication methods for common smtp(s)?

it's still a valid feature request, but my problem is solved for now at least.

Actions #4

Updated by Jim Pingle 4 months ago

I can add a note in the documentation but adding a provider-specific note in the GUI doesn't seem like a good trend to start there.

https://redmine.pfsense.org/issues/12908

Actions

Also available in: Atom PDF