Add modern authentication to SMTP

Related products: Windows GUI Indicium Service Tier

We use the SMTP settings to send Two-factor codes by email. We use the Office 365 service for the email delivery. To increase security we would like to have an option for modern authentication.

See also https://techcommunity.microsoft.com/t5/exchange-team-blog/basic-authentication-and-exchange-online-july-update/ba-p/1530163 for more information.

Somewhere in the future the support for basic authentication for SMTPwill be dropped.

Updated idea status NewOpen

The future is nearing: Today, we are announcing that, effective October 1, 2022, we will begin to permanently disable Basic Auth in all tenants

Microsoft shared an updated article about the retirement of the basic authentication in Office 365: https://techcommunity.microsoft.com/t5/exchange-team-blog/basic-authentication-and-exchange-online-september-2021-update/ba-p/2772210

Please make the modern authentication available well ahead before that date.


We are facing this future also! Us there any update about this subject.

Or is the advice to use sendgrid as I read in another topic??

 

 

I short… what is the most common way to send emails from the TW application in relation with the use of Office 365?

 


Hi everyone,

We understand your concerns, and will be exploring the options for adding out-of-the-box support for modern authentication to the Thinkwise SMTP connector soon.

However, sending emails using Microsoft 365 with modern authentication can also be done through the Microsoft Graph API, so it is already possible to workaround the deprecation of Basic authentication with SMTP AUTH by using the Thinkwise HTTP connector. See, for example, these links for more information:

Alternatively, you can of course also use third-party SMTP relay services such as SendGrid.

 

Finally, Microsoft states that it will continue to support SMTP AUTH for the time being, so nothing will break right away after October 1st:

SMTP AUTH will still be available when Basic authentication is permanently disabled on October 1, 2022. The reason SMTP will still be available is that many multi-function devices such as printers and scanners can't be updated to use modern authentication. However, we strongly encourage customers to move away from using Basic authentication with SMTP AUTH when possible. Other options for sending authenticated mail include using alternative protocols, such as the Microsoft Graph API.

 

We will keep you informed of the progress.


@Jasper Can we send the Login two factor email authentication messages from the Web GUI with Microsoft Graph API as of now?


Hi @efitskie, that's not yet possible unfortunately. Any emails sent by the runtime components of the platform itself will also be part of the change.


@Jasper October is just around the corner and we still rely on the SMTP to send out 2FA an password reset emails.

How do we fix this before October?


Hi Eric,

I understand your concerns, but as mentioned before, nothing will break regarding SMTP authentication as of October 1st. This is reconfirmed by Microsoft in the September update of the Basic Authentication Deprecation blog.

We will not be disabling or changing any settings for SMTP AUTH.

 

However, we aim to provide modern authentication support for both the SMTP connector and the mails sent by the Web GUI and Indicium for 2FA and password reset with the 2023.1 release of the Thinkwise Platform.