Authenticated SMTP (587/TCP)

Steel Contributor

Hi all,

 

For those who are struggling with setting up Authenticated SMTP (SMTP AUTH over 587/TCP) on multifunctionals or webforms (that don't support modern authentication/OAuth) since the deprecation of the legacy authentication protocols this year.

 

Here are the prerequisites:

A user with a mailbox (At least a Exchange Online P1 license)

SMTP AUTH has to be enabled at the user- or tenantlevel

Security defaults has to be turned off

MFA has to be disabled in the per-user MFA portal

The user has to be excluded from the conditional access policy that enforces MFA

 

Please note that App Passwords are history since the deprecation of the legacy authentication protocols.

 

Update 04/15/2024. Please note that Microsoft will remove support for SMTP AUTH in September 2025. The route forward is for developers to replace basic authentication with OAuth.

https://techcommunity.microsoft.com/t5/exchange-team-blog/exchange-online-to-retire-basic-auth-for-c...

4 Replies
Security defaults covers all authentication methods. You’ll need to disable security defaults and enable SMTP auth on the account you’re using to send emails. After this just enable per user mfa on all accounts manually. SMTP auth supports both modern and basic authentication.

https://learn.microsoft.com/en-us/exchange/clients-and-mobile-in-exchange-online/authenticated-clien...

@MathieuVandenHautte 

Yes, security default applied to basic auth for SMTP, you may consider conditional access instead if you would like to keep security default

Please note that Microsoft will remove support for SMTP AUTH in September 2025. The route forward is for developers to replace basic authentication with OAuth.

@MathieuVandenHautte 
I am not sure if any of you know about this, but I am trying to send emails using my personal Outlook account using a curl script. However, the only way I have gotten to work is to generate an app specific password. Is there a way around this, similar to what is being discussed in this thread?
Thanks!