On 2022/08/19 09:08, Gellner, Oliver via mailop wrote: > Hello, > IMAP, SMTP etc are still being supported with Office365. What gets > disabled is Basic Auth for some services. Microsoft announced the > decomission of Basic Authentication three years ago and all tenant > administrators have been notified several times in the meantime about > this change. Originally the change was planned for 2020, but due to > interoperability issues it got postponed until 2022. So while I'm no > Microsoft fellow I don't think anyone should be caught unprepared.
The interoperability issues have not been fixed though. > If you need POP3 or IMAP4 access with Basic Auth, then you can either > put a proxy or other email server in between which speaks Basic Auth > on one side and OAuth on the other. That proxy will have the same issue as seen by other tools accessing the OAuth2-only services. Hideously complicated configuration, having to keep tokens refreshed, etc. It would seem sensible for operators who want to require something stronger than basic authentication to have a way to use TLS with client certificates as an alternative to OAuth2, it would be a lot more straightforward to handle on the client side. Unless they have other motives. It's not really surprising to see this exact thing mentioned on https://en.wikipedia.org/wiki/Embrace,_extend,_and_extinguish _______________________________________________ mailop mailing list [email protected] https://list.mailop.org/listinfo/mailop
