Feature #12903
open
alternative authentication methods for email notifications?
0%
Description
i have been using gmail for years but they are disabling password only access to accounts.
since pfsense has only password only access to accounts...this functionally disables my email notifications.
TrueNAS, as an example, has OATH capability, and i can still use it, but i now need another solution for pfsense.
email is not an area i have any expertise in, due to lack of interest...but now I need to find something else.
Updated by gavin penney about 2 years ago
oops, i meant to add the email from google, not that it matters that much.
On May 30, you may lose access to apps that are using less secure sign-in technology
email@gmail.com
To help keep your account secure, Google will no longer support the use of third-party apps or devices which ask you to sign in to your Google Account using only your username and password. Instead, you’ll need to sign in using Sign in with Google or other more secure technologies, like OAuth 2.0. Learn moreWhat do you need to do?
An app or device which uses Simple Mail Transfer Protocol (SMTP) to send emails using your Google Account has less secure access to your Gmail. This might be an older device, like a printer or scanner. To continue using your Google Account with this app or device:
App - Remove your Google Account from the app or device and sign in again using Sign in with Google
Device - Change your device’s settings so you’re using more secure sign-in technology
Updated by Jim Pingle about 2 years ago
We can look into other ways to authenticate, but in the Gmail case it should still work with App Passwords: https://support.google.com/accounts/answer/185833?hl=en
They just don't want people using their actual password in those sorts of roles.
Updated by gavin penney about 2 years ago
Jim Pingle wrote in #note-2:
We can look into other ways to authenticate, but in the Gmail case it should still work with App Passwords: https://support.google.com/accounts/answer/185833?hl=en
They just don't want people using their actual password in those sorts of roles.
OH. i had no idea app passwords existed, because it only shows up if you have 2fa, and since I only use this account for sending emails out, I never had that on.
it looks like it works now.
perhaps a blurb could be added to the page to let people know such a thing exists? or a link to details about authentication methods for common smtp(s)?
it's still a valid feature request, but my problem is solved for now at least.
Updated by Jim Pingle about 2 years ago
I can add a note in the documentation but adding a provider-specific note in the GUI doesn't seem like a good trend to start there.