On 2021-10-04 at 11:34:33 UTC-0400 (Mon, 4 Oct 2021 16:34:33 +0100) lejeczek <pelj...@yahoo.co.uk> is rumored to have said:
> Both IMAP & SMTP Exchange server requires OAuth2 and it might be that where > I'm failing, as I still have to investigate. It is not workable for a server to require OAuth2 (or any similar MFA tool) for SMTP relay because one purpose of such mechanisms is to authenticate the presence of a human paying active attention to the authentication. Automating that is supposed to be impossible. In practice, this is overcome by having credentials that are retained by the authenticating agent for an extended time, only needing human attention when the current credential expires. OAuth2 specifically requires a prior registration of the authenticating agent with the authenticator before that agent can authenticate any user, only to obtain an access token that may only be valid for one day. With the understanding that those facts will impact the workability of making Postfix use OAuth2 for relay, you may find a solution on the page at http://mmogilvi.users.sourceforge.net/software/oauthbearer.html. It involves a custom plugin for Cyrus SASL and configuration. I have NOT tested that procedure, but it looks reasonable. -- Bill Cole b...@scconsult.com or billc...@apache.org (AKA @grumpybozo and many *@billmail.scconsult.com addresses) Not Currently Available For Hire
