[Request] Modification to allow Email Fetching Via OAuth or OpenIDConnect: Page 2

[Request] Modification to allow Email Fetching Via OAuth or OpenIDConnect

nesretep

ntozier Does this also apply to Google's transition? The article you cited only applies to Microsoft.

ntozier

Yes. It is essentially the same thing, both are disabling legacy authentication and only allowing oauth2.

nesretep

ntozier I know they are doing the same thing (disabling legacy auth), but did they also extend the deadline?

rmartingar

nesretep Ì was told in October that nowadays there's no deadline for Google Gmail. When they finally stablish a deadline I supose that there we'll be some months more till they disable legacy auth.

Alamiah

Any update on the Topic of OAtuth 2 to allow email fetching from Gmail, As the deadline on 15th Feb 2021 is nearing

KevinTheJedi

@Alamiah

We are still working on implementing OAuth2.0 support. As for the deadline in February, Google posted this update:

As a result, we are suspending the LSA turn-off until further notice. All previously announced timeframes no longer apply. Please be reassured that when we restart the turn-off timelines, you will still have a 12 month window from that start date to review and complete your migration.

Cheers.

Alamiah

KevinTheJedi Thanks for the update 😃
Even i had a chat with Google Support personnel yesterday
As per Google Support regarding the shutting down of Less Secure Apps
"Less Secure Apps, I'd say that this is not going to happen as of now even though you may have received an email stating otherwise"
"The reason behind basically is because of Covid-19 that it was extended"
Note:- It can be implemented at any time, I request osTicket Developers to be prepared and does not let the ship sink, keep it floating by developing oAuth2 for osTicket

ntozier

Looks like your request is granted:

KevinTheJedi We are still working on implementing OAuth2.0 support.

greg2000

Is there any update on this planned change to allow oAuth? I just received notice from our organization that they are going to disable Basic Authentication at the end of May, 2021. Even if Microsoft and Google extend their deadlines, I'm sure there are other organizations, like mine, that are trying to stay of the stated deadlines.

Microsoft has announced plans to disable Basic Authentication for Exchange Online for all tenants in 2021. To prepare for this change, [omitted] will require modern authentication for ALL applications, including those previously granted exceptions, by May 31, 2021.

Your application must use modern authentication to connect to Exchange Online by June 1, 2021, or it will no longer work.

zacksiga

Any Update on this OAuth 2.0, Because of office 365 Email account does not work

KevinTheJedi

@zacksiga

Still in progress but in the final stages of development. Below is a post by a community member on how they got osTicket working with Office365 (with forced modern auth) in the meantime:

https://github.com/osTicket/osTicket/issues/5390#issuecomment-811305717

Cheers.

Samtown

Was this new feature include in the latest release of osticket that came out on the 28th of July ? My organisation started having issues with fetching new emails from Microsoft 365 email accounts last night as Microsoft disabled basic auth on my tenant.

ntozier

This feature is still in development at this time.

abeermuh

Have this feature added in latest version 1.15.4?

ntozier

You can read about what features, bugs fixes, enhancements, and security fixes are included in each release in the Release Notes.

abeermuh

I cannot see oauth added in it, but I can see 2FA, will that work for the same? If yes, how? I tried to explore but could not found the option.

ntozier

The 2FA::Authenticator plugin adds functionality that allows Agents to use an Authenticator application for the choice on their phone for 2FA.

source:
https://docs.osticket.com/en/latest/Plugins/Two%20Factor%20Authentication.html

abeermuh

Basically we have integrated shared mail boxes with OSTicket to fetch the emails , and we need to enable MFA on those mailboxes which cannot be possible with legacy authentication option. How can this be achieved?

ntozier

Perhaps scrolling up on the thread that you replied to might help?
https://forum.osticket.com/d/94499-request-modification-to-allow-email-fetching-via-oauth-or-openidconnect/38

mscd

Hello ntozier,

sorry for getting "off-topic" here ... I read the (already closed) thread

https://forum.osticket.com/d/91696-ldap-authentication-and-lookup-plug-in-sending-unencrypted-credentials/13

and I have some related questions/problem in thread

https://forum.osticket.com/d/100062-ldap-plugin-with-tls-enabled-no-encryption

Is it possible to get encryption working in conjunction with osTicket-LDAP-plugin and a ActiveDirectory-LDAP-server? At the moment all (captured) traffic is plain text, although the TLS-option in the plugin is enabled.

Sorry for cross-posting and best regards,
mscd

« Previous Page Next Page »