telljcl Posted September 23, 2014 Posted September 23, 2014 (edited) Maybe this is something to do with Google security, but all of a sudden I can't send emails from ISY. Haven't changed anything, password the same etc... Tried re-entering pw on ISY. Can access gmail just fine from web. Is this happening to anyone else? EDIT: Nevermind - you have to enable "access for less secure devices" on security settings. I changed it for something else. Guess I have to change it back. Edited September 23, 2014 by telljcl
Michel Kohanim Posted September 23, 2014 Posted September 23, 2014 Hi telljcl, If you have PRO, you can configure ISY for more secure settings such as TLS1.2 etc.: http://wiki.universal-devices.com/index.php?title=Main_Page#Network_Security With kind regards, Michel
telljcl Posted September 24, 2014 Author Posted September 24, 2014 Thanks Michel. I do have a PRO, but am not sure (even after reading link) how to change email server authentication / login security. I only see TLS checkbox (admin console). I see the server / client TLS 1.2 etc... in the dashboard, but does that affect email? I couldn't get it to work with googles "more secure" setting. I ended up just using another gmail account where I don't care about the security and then I can leave the google sign in at less-secure. I would like to know how to configure this though, if it's possible. Thanks.
Michel Kohanim Posted September 24, 2014 Posted September 24, 2014 Hi telljcl, Yes, changes to TLS1.2 and Medium (or high) strength on HTTPS Client settings are global and will definitely impact gmail/tls. With kind regards, Michel
junkycosmos Posted September 26, 2014 Posted September 26, 2014 (edited) OK me too. Looks like my ISY stopped being able to use GMAIL to send outbound mails yesterday 9/24 after 8:30pm cst. I have been using "smtp.gmail.com" for years on ISY. Now when I try testing I get an error "Mail server DNS error" and "TCP client error". I can DNS resolve smpt.gmail.com by other clients on same LAN as ISY so I am at a loss here. Per prior poster I did just check the Google setting and mine is still at "allow less secure apps" https://support.google.com/accounts/answer/6010255?hl=en Edited September 26, 2014 by junkycosmos
junkycosmos Posted September 26, 2014 Posted September 26, 2014 (edited) Well I restarted my router and it appears to have cleared the issue. ISY is again emailing just fine Edited September 26, 2014 by junkycosmos
telljcl Posted September 26, 2014 Author Posted September 26, 2014 Hi telljcl, Yes, changes to TLS1.2 and Medium (or high) strength on HTTPS Client settings are global and will definitely impact gmail/tls. With kind regards, Michel Thanks - So the "TLS" checkbox in the email settings of the admin console doesn't matter - only whatever is set in the "dashboard"? I couldn't get gmail to work on its "more secure" option with any options enabled in the "Dashboard", so I had to leave those alone and use the basic security (in the admin console - TLS checked - port 587) and turn off (in google account security) "enhanced security". I'd like to be able to enable the higher security in this google account if possible - perhaps you can indicate what the ISY settings (in "dashboard" and "admin console") should be to make this work correctly? Thanks!
Michel Kohanim Posted September 26, 2014 Posted September 26, 2014 Hi telljcl, The TLS checkbox in SMTP settings does matter: it basically tells ISY to use TLS to negotiate with the server. Now, this said, ISY uses the parameters in HTTPS Client settings in the dashboard to negotiate a ciphersuite with the server. Have you looked at your Error Log? What error are you getting? With kind regards, Michel
MWareman Posted September 26, 2014 Posted September 26, 2014 I think 'high security' in the google console is two factor security.... Nothing to do with SSL or TLS. When you enable 2fa in your google console, your regular google password will not work for SMTP. That by design. To use SMTP authentication, you'll need to generate an 'application specific password' to use with the ISY, and use that password in the ISY to authenticate (along with your gmail address). Michael.
Teken Posted September 26, 2014 Posted September 26, 2014 (edited) Why does the new site continue to double up replies??? I think 'high security' in the google console is two factor security.... Nothing to do with SSL or TLS. When you enable 2fa in your google console, your regular google password will not work for SMTP. That by design. To use SMTP authentication, you'll need to generate an 'application specific password' to use with the ISY, and use that password in the ISY to authenticate (along with your gmail address). Michael. I don't recall the ISY supporting 2fa? Edited September 26, 2014 by Teken
MWareman Posted September 27, 2014 Posted September 27, 2014 I don't recall the ISY supporting 2fa?It doesn't. Google have provided the ability to generate 'application specific' passwords that are stronger and random - for those devices that still need to authenticate but cannot do 2fa. ISY is such a device. If you use 2fa on a gmail account, you need to obtain an app password for the ISY to use to send email.
Recommended Posts