Welcome to the mailbox.org user forum!
2FA and app-specific passwords
Answered
I'm new to mailbox and a quick search gave me some info, but I would like to be sure if I got it right.
At the moment mailbox offers 2FA for the web interface, but as for CalDAV, CardDAV, IMAP and I guess XMPP (haven't used it yet) it uses the main account password. And I can't generate app-specific passwords.
Is this right?
The same question 
No connection
Real-time notifications may not work
Yes, unfortunately that's right. :-(
Yes, unfortunately that's right. :-(
Yes, unfortunately that's right. :-(
Yes, unfortunately that's right. :-(
My renewal date is coming up and the fact that they have yet to figure out a solution for modern 2FA is maybe going to be the deciding factor.
My renewal date is coming up and the fact that they have yet to figure out a solution for modern 2FA is maybe going to be the deciding factor.
For those who missed the announcement from Mailbox.org a while ago, they offer free Two-Factor Authentication (2FA) for Private accounts. To activate it, find the documentation at https://kb.mailbox.org/en/private/account-article/how-to-use-two-factor-authentication-2fa
The challenge with Mailbox.org Private accounts is that their present 2FA support only web-based client. It does not yet support local e-mail client, and data synchronization via CalDAV, CardDAV, and WebDAV.
--- --- --- --- --- --- --- --- --- --- --- --- --- --- --- ---
About 2FA for Business accounts. We received this status update from the Mailbox.org team on May 5th, 2023: "As to 2FA for business customers we are currently working on an implementation with Keycloak"
See video, screenshot, and documentation about Keycloak 2FA at https://userforum-en.mailbox.org/topic/1556-2fa-for-business#comment-2823
For those interested in using or contributing to 2FA for Mailbox.org Business, you are welcome to join this other discussion at https://userforum-en.mailbox.org/topic/1556-2fa-for-business
--- --- --- --- --- --- --- --- --- --- --- --- --- --- --- ---
Below is the same message as above. But with details if you're interested in those.
Today June 16th, 2023 we sent those two questions to Mailbox.org:
We are waiting for Mailbox.org reply
By "web-based client" above I mean for both Business and Private accounts, the web log-in page is presently at https://login.mailbox.org
By "local e-mail client" above I mean for both Business and Private accounts, for example, but not limited to, using the local e-mail client Thunderbird to send email messages via SMTP, or receive email messages via IMAP.
By "data synchronization" above I mean for both Business and Private accounts, for example, but not limited to, using local e-mail client Thunderbird to do data synchronization via CalDAV, CardDAV, and WebDAV.
Documentation about the present 2FA for Private accounts reads: "Two-factor authentication can only be enabled for logins to the web-based client. All other services such as IMAP, POP3 and SMTP that use a local e-mail client or data synchronization via WebDAV, CalDAV, and CardDAV (and the corresponding clients) are not supported to use 2FA." Source at https://kb.mailbox.org/en/private/account-article/how-to-use-two-factor-authentication-2fa
For those who missed the announcement from Mailbox.org a while ago, they offer free Two-Factor Authentication (2FA) for Private accounts. To activate it, find the documentation at https://kb.mailbox.org/en/private/account-article/how-to-use-two-factor-authentication-2fa
The challenge with Mailbox.org Private accounts is that their present 2FA support only web-based client. It does not yet support local e-mail client, and data synchronization via CalDAV, CardDAV, and WebDAV.
--- --- --- --- --- --- --- --- --- --- --- --- --- --- --- ---
About 2FA for Business accounts. We received this status update from the Mailbox.org team on May 5th, 2023: "As to 2FA for business customers we are currently working on an implementation with Keycloak"
See video, screenshot, and documentation about Keycloak 2FA at https://userforum-en.mailbox.org/topic/1556-2fa-for-business#comment-2823
For those interested in using or contributing to 2FA for Mailbox.org Business, you are welcome to join this other discussion at https://userforum-en.mailbox.org/topic/1556-2fa-for-business
--- --- --- --- --- --- --- --- --- --- --- --- --- --- --- ---
Below is the same message as above. But with details if you're interested in those.
Today June 16th, 2023 we sent those two questions to Mailbox.org:
We are waiting for Mailbox.org reply
By "web-based client" above I mean for both Business and Private accounts, the web log-in page is presently at https://login.mailbox.org
By "local e-mail client" above I mean for both Business and Private accounts, for example, but not limited to, using the local e-mail client Thunderbird to send email messages via SMTP, or receive email messages via IMAP.
By "data synchronization" above I mean for both Business and Private accounts, for example, but not limited to, using local e-mail client Thunderbird to do data synchronization via CalDAV, CardDAV, and WebDAV.
Documentation about the present 2FA for Private accounts reads: "Two-factor authentication can only be enabled for logins to the web-based client. All other services such as IMAP, POP3 and SMTP that use a local e-mail client or data synchronization via WebDAV, CalDAV, and CardDAV (and the corresponding clients) are not supported to use 2FA." Source at https://kb.mailbox.org/en/private/account-article/how-to-use-two-factor-authentication-2fa
Replies have been locked on this page!