[MlMt] Advice on using MM with 2 Factor authentication ( Duo)?

[TJ Luoma]

I have bad news and really bad news.

The bad news is that Duo does not work with IMAP.

The really bad news is that Microsoft Office 365 is dropping support for
IMAP later this year (2021).

Sources:
https://hdkb.clemson.edu/phpkb/article.php?id=690 also says that IMAP does
not work with Duo + 365 ("POP/IMAP and SMTP only clients" are "Not
Supported".)

"In order to require Duo, a significant change in the authentication
configuration must be made. One of the results of this change is that IMAP
will no longer work for Office 365. Therefore, the IMAP protocol will be
disabled in Office 365 on May 20, 2019.Mar 27, 2019"
https://blog.smu.edu/itconnect/2019/03/27/imap-discontinued-summer-2019-improved-mail-security/

https://it.hms.harvard.edu/news/two-factor-authentication-o365 seems to
suggest that only Outlook and Mail.app (iOS and Mac) will work. Generic
IMAP will not work with Duo + 365.
(It also says "Additionally, Microsoft is discontinuing support for POP and
IMAP with O365 in October 2020" which was later changed to "until the
second half of 2021".)

Deferred end of support date for Basic Authentication in Exchange Online
https://developer.microsoft.com/en-us/office/blogs/deferred-end-of-support-date-for-basic-authentication-in-exchange-online/



On Fri, May 21, 2021 at 5:14 PM Roger Bohn via mailmate <
mailmate at lists.freron.com> wrote:

> Hi everyone,
> My employer @UCSD.edu has just announced mandatory 2 factor authentication
> login for email, using Duo.
> We run Microsoft Office 365 Exchange. I access via IMAP. The university
> wants us to access via a web browser, but afaik very few actually do.
>
> Does anyone have experience with Duo authentication for MailMate? For
> example, will I have to authenticate via Duo each time MM wants to retrieve
> mail? That’s impractical, obviously. My “other university,” Stanford, also
> uses Duo heavily but so far not for email.
>
> Comment: With many applications, Duo can be activated for a week at a
> time. With Safari, however, that no longer works because Apple has locked
> it down too far.
>
> Thanks for any advice. Oddly, I could not find discussion of any
> two-factor authentication in the manual.
> Roger
>
> *Given recent events such as the UCOP data breach and the ransomware
> attack at Scripps Health, effective Tuesday, May 25, at 1:00 p.m. PDT, all
> access to UC San Diego email will require the use of two-step login (Duo)
> as part of our continued security enhancements.*
>
> On 3 May 2021, at 6:43, Pete Resnick wrote:
>
> Saw this in the release notes for Test Build 5800:
>
>    - Changed: By default, MailMate no longer uses the format=flowed
>    standard. For now, it can be enabled using MmFormatFlowedEnabled if
>    needed/preferred.
>
> Why the change? There should be more format=flowed in the world, not less,
> IMO.
>
> pr
>
> --
> Pete Resnick
> https://urldefense.com/v3/__https://www.episteme.net/__;!!Mih3wA!VpYBCZO1BmAek6xg95VG1tUOz1VTEN3C2yViWctEn872CK2kvowmw9uEUJhuAw$
> All connections to the world are tenuous at best
> ------------------------------
>
> mailmate mailing list
> mailmate at lists.freron.com
>
> https://urldefense.com/v3/__https://lists.freron.com/listinfo/mailmate__;!!Mih3wA!VpYBCZO1BmAek6xg95VG1tUOz1VTEN3C2yViWctEn872CK2kvowmw9sGFusCpw$
>
> _______________________________________________
> mailmate mailing list
> mailmate at lists.freron.com
> https://lists.freron.com/listinfo/mailmate
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freron.com/pipermail/mailmate/attachments/20210521/b18ad3d6/attachment-0001.htm>