Replies: 1 comment 2 replies
-
|
Hi, This is not supported because 2FA requires OAuth and, in order to use OAuth, you need a mail client supporting the Basically, even if you force all your users to use 2FA, they will end up using AppPasswords because no mainstream mail client supports OAuth. And, since App Passwords are like regular passwords, there is no point in adding a feature to enforce increased security. |
Beta Was this translation helpful? Give feedback.
-
|
Thanks for your answer.
I do see one advantage in enforcing app passwords. If different App Passwords are used for different devices, one can simply revoke that app password if the device gets lost. If the normal user password is used, it has to be changed on every device that accesses the account. Google has already implemented that. You cannot use your account password anymore when 2 factor authentication is enabled on the account:
|
Beta Was this translation helpful? Give feedback.
-
|
@jwgn Feel free to create an enhancement request for this feature. I am not against it, hopefully one day IMAP clients will support OIDC. |
Beta Was this translation helpful? Give feedback.
-
Hi,
I want to enforce three things for increased account security for new users:
I did not find these options in the webinterface. Is there a way to accomplish this?
Beta Was this translation helpful? Give feedback.
All reactions