Google to restricts access to IMAP, SMTP, POP to OAuth this year

As part of our commitment to user safety, Google Workspace will no longer support the sign-in method for third-party apps or devices that require users to share their Google username and password. This antiquated sign-in method, known as Less Secure Apps (LSAs), puts users at an additional risk since it requires sharing Google Account credentials with third-party apps and devices that can make it easier for bad actors to gain unauthorized access to your account. 

Instead, you’ll need to use the option to Sign-In with Google, which is a safer and more secure way to sync your email to other apps. Sign-in with Google leverages industry standard and more secure OAuth method of authentication already used by the vast majority of third-party apps and devices.

↫ Google Workspace Updates

What this means is that “all third-party apps that require password-only access to Gmail, Google Calendar, Contacts via protocols such as CalDAV, CardDAV, IMAP, SMTP, and POP” will no longer work. Crucial to note, however, is that App Passwords will continue to work, which is good news, because without App Passwords, older IMAP email clients without OAuth support, such as the ones often used on legacy or minor operating systems, would cease to work with Gmail.


  1. 2024-01-19 10:14 pm
    • 2024-01-20 5:00 am
      • 2024-01-20 8:16 am
        • 2024-01-20 10:06 am
          • 2024-01-20 12:25 pm
        • 2024-01-20 2:16 pm
    • 2024-01-20 10:04 am
  2. 2024-01-20 2:05 am
    • 2024-01-21 3:04 pm
  3. 2024-01-21 3:03 pm
  4. 2024-01-21 3:11 pm
  5. 2024-02-01 4:04 am