Knowledgebase: PaperCut > Administration
Basic Authentication Access for Office 365 and G-Suite Email accounts
on 18 September 2021 12:57 AM

What’s this about?

Both Microsoft and Google are improving security for users by disabling older and less secure methods of authentication (‘Basic Authentication’ and ‘Less Secure Access’ respectively) for their cloud offerings.

What is Microsoft changing?

There’s an announcement from Microsoft available, about Exchange Online Deprecating Basic Authentication.

Please note that due to COVID-19 they have also released an April 2020 Update about their plans, delaying any definite cut-off date:

“In response to the COVID-19 crisis and knowing that priorities have changed for many of our customers we have decided to postpone disabling Basic Authentication in Exchange Online for those tenants still actively using it until the second half of 2021. We will provide a more precise date when we have a better understanding of the impact of the situation. We will continue to disable Basic Authentication for newly created tenants by default and begin to disable Basic Authentication in tenants that have no recorded usage starting October 2020.”

“This change only affects commercial M365 at this time, not our consumer service users. It impacts Exchange ActiveSync (EAS), IMAP, POP, and Remote PowerShell.

Microsoft are taking a gently-gently approach too. From their article:

“Please note this change does not affect SMTP AUTH – we will continue supporting Basic Authentication for the time being. There is a huge number of devices and appliances that use SMTP for sending mail, and so we’re not including SMTP in this change – though we are working on ways to further secure SMTP AUTH and we’ll share more on that in due course.” See their ‘Improving Security Together’ article for more information.

What is Google changing?

Please note that due to COVID-19, Google has announced that this will be delayed until further notice.

There’s an annnouncement from Google available, about Turning off less secure app access to G Suite accounts.

What does this impact with PaperCut?

  • Email to Print: will be impacted
  • Email notifications (under Options → Notifications → SMTP Server Options): will be impacted if using gmail for SMTP.
  • Scan to Email: will be impacted if using gmail for SMTP.
  • Scan to OneDrive, Scan to Google Drive: will not be impacted - we already use OAuth2.0.
  • Google Single Sign on (see here for what that is): will not be impacted.

What is the plan?

We have been working with Google and Microsoft on their changes, including identifying their recommended approach for apps such as PaperCut, and we’re looking to include changes in a future release.