Topic: Multiple passwords / add app password token for SMTP, IMAP and POP3
==== REQUIRED BASIC INFO OF YOUR IREDMAIL SERVER ====
- iRedMail version (check /etc/iredmail-release): 1.3.2
- Deployed with iRedMail Easy or the downloadable installer? downloadable
- Linux/BSD distribution name and version: CentOS 7
- Store mail accounts in which backend (LDAP/MySQL/PGSQL): LDAP
- Web server (Apache or Nginx): Nginx
- Manage mail accounts with iRedAdmin-Pro? Yes
- [IMPORTANT] Related original log or error message is required if you're experiencing an issue.
Hello Zhang and everybody : )
Here is a feature that would be very interesting for us and probably many people. Multiple passwords or app passwords (as Nextcloud has it). It would provide better overview over connected clients (devices) and management over them. Also better security as we would be able to have 1 password per connected client and would be able to disconnect specific ones.
Our case scenario is this: We set up 1 password per device (desktop, mobile, server apps) and tag them so we know which device has the password (App password name in Nextcloud).
Then we can setup 2FA for the web apps and users can have their normal passwords (because we will generate 32-64 character passwords for devices and copy-paste when creating accounts).
So this would allow us to setup 2FA for web access(because users tend to use weak passwords) and still use strong passwords for the devices.
Now I know that it's not really that easy to implement this, because of different backends, so maybe put in in TODO.
And I don't know if I put it in the right part of the forum, would this only be a feature of iRedAdmin-Pro or iRedMail general? I think that because this would have to be done in the backend core, the most changes would be in iRedMail.
Similar was already requested here:
https://forum.iredmail.org/topic15545-l … words.html
Can maybe you guys reading this and would want this implemented write if this is interesting idea or would we do this some other way? Thank you guys!
Thank you very much Zhang for everything!
----Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team.