New Gmail password rules go into effect on September 30th
SOPA Image/LightRocket (via Getty Images)
Millions of Gmail users will face new password rules designed to make the world’s most popular free email service more secure when they go to work on Monday, September 30th. Google will no longer support access to Gmail account data from apps that are considered less secure, third parties, and even devices whose login is only protected by a username and password. Here’s what you need to know:
Goodbye Google Sync, goodbye less secure app support (for Gmail users)
If the news that Google is undertaking a major overhaul of password security across the board comes as a surprise, you haven’t been paying attention yet. From introducing passkeys to Chrome web browser users for Windows, macOS, Linux, and Android users to post-quantum encryption to prevent attacks, Google has been hard at work on security all month. Regarding this particular Gmail password security update, Google has been actively working on it for 12 months since announcing it a year ago. To eliminate the outdated username and password login method and reduce the risk of security breaches for Gmail users, Google is requiring all Google Workspace customers to: You are requesting that you log in with a more secure type of access. . The access method is OAuth. You can learn more about OAuth in this article that warns you about upcoming changes. The new Gmail app access password rules apply to all Google Workspace accounts, and CalDAV, CardDAV, IMAP, POP, and Google Sync no longer support password-based login credentials.
Gmail is becoming more secure for millions of people
Google/Davie Winder
Which Gmail users are affected by the new app password expiration?
New security rules about accessing Gmail data from less secure apps apply to all customers using the Google Workspace suite of tools. In fact, the settings for less secure apps have already been removed from the Google Workspace admin console to ease the transition by disabling adding new accounts using this method. Individual Gmail account holders are not affected, but as Google notes, “IMAP access is always enabled via OAuth, and current connections will be disabled.” You will no longer be able to switch between the Internet Mail Access Protocol known as IMAP. will be affected. ” However, if you are a non-administrator of a Google Workspace Gmail account, there are some steps Google recommends to avoid receiving the “Incorrect username and password” error message.
If you’re using Outlook 2016 or earlier, you need to migrate to Microsoft 365 or Outlook for Windows or Mac. If you’re using Thunderbird or another email client, you’ll need to re-add your Google account and configure it to use IMAP with OAuth. If you use email on iOS or macOS, you must enable OAuth using the Sign in with Google option. This requires deleting and re-adding the account.
