- Configure Mac Email Client For Google App Password Generator
- Best Mac Email Client For Business
- Best Mac Email Client For Yahoo
- Configure Mac Email Client For Google App Password
Gmail Server Rejects Password from Email Client and Mobile Apps If you encountered problem when login into gmail account (using IMAP) from your email clients such as Thunderbird, Live Mail, Apple Mail, Mail apps in iPhone and iPad, and any other email clients or apps; you are not alone.
Wired writer Mat Honan fell victim to a brutal hack over the weekend. Through misplaced ingenuity and a smidgen of social engineering, hackers gained access to his iCloud account and wiped his iPhone, iPad, and Mac drives clean. The actual attack involved breaking into Honan's Amazon account, and then using information found there to break into his iCloud account. Things only got worse from there.
Amazon and Apple clearly need to institute security policy changes to better protect their users. And Honan made mistakes of his own, most notably not backing up his Mac regularly. But the hackers' initial entry point into Honan's digital life was through, of all things, the 'forgot password' functionality offered by Gmail. When they first plunked Honan's email address into that form, Gmail displayed a redacted version of Honan's MobileMe account: m••••n@me.com. Honan has plenty of 'if only's' on his mind, but one biggie—to quote Honan's story for Wired, is this: If he 'had used two-factor authentication for Gmail, everything would have stopped here.'
(Note: Google calls it two-step authentication, but 'two-factor authentication' is just as common a name. We'll use them interchangeably.)
Understand two-step authentication
First, let's clarify what two-step authentication actually means. In Google's case, it works this way: If you enable two-factor authentication, when you next log in to your Gmail account, you'll first proceed as you always do—by providing your username and password. But before you get to your inbox, Google will next demand a separate code.
Of course, you won't know what the code is offhand. Thus, for the second factor of authenticating that you really are who you're claiming to be, Google will send a text message to your phone containing the six-digit code to use. (As we'll discuss later, there are numerous other options for getting a six-digit code.)
Only after you've provided that code do you gain access to your inbox.
On the whole, the process sounds simple. And for simply logging in to your webmail account, it is. But added complexities can crop up, since some apps don't yet support two-factor authentication—like, say, Mail on the Mac or iOS. That makes configuring Google's two-factor authentication a bit more complicated.
Set up Google's two-factor authentication
Go to Google.com and log in. Click on your name or photo at the upper right corner of the main Google homepage, and choose Account. Then choose Security from the navigation options at left. Now you can see the option you're looking for: Click the Edit button along side Two-step Authentication.
At this point, Google will most likely ask you to login again. That's for additional security. Enter your password, and click Sign In.
Next, Google will ask you to provide the phone number of the device you'd like to use. It's understandable if you're hesitant to give out your phone number, but note that Google promises it 'will only use this number for account security.' You can provide a landline or a cell phone number, and you can choose whether Google should send codes to that number as text messages or via a voice call. (Note: You really shouldn't use your Google Voice number, since you could get stuck in a Catch-22 situation where you can't access your Google Voice account to get the code you need to log in to your Google Voice account.)
After you click to proceed, you should receive the text message (or phone call) within a few seconds. Type that code into the webpage and click to continue. At this stage, you're nearly done with the initial setup. Google will want to confirm whether it should 'trust this computer.' That setting is a bit misnamed; essentially, if you leave it enabled, logging in to Google on that Mac with that browser won't add the second step for the next 30 days—unless you delete your browser's cookies.
Fix everything two-step authentication breaks
Now, just when you feel like you're finished, Google throws up a gotcha: Some apps can't support verification codes. If you use a third-party email app to check your Gmail account via POP or IMAP, for example, that app won't be configured to prompt you for the second step code.
Thus, for email apps—and Google Reader-using apps, and Calendar or iCal, and so on—you'll need to configure special, one-off passwords instead. You can generate as many of these so-called application-specific passwords as you'd like. You provide a label (for your own records), like, iPhone Mail, and then Google presents you with a 16-character password. You can never retrieve that password again, but it doesn't matter. Don't bother jotting it down. Copy and paste it (or painstakingly retype it) wherever it needs to go, and then click the Done button.
If you use more than one Mac, consider going specific with your application-specific password names, like Adium (MBPro) and Adium (MBAir). Because Google lets you revoke any application-specific password at any time, you can log in and revoke access to the apps on your MacBook Air should that get stolen, without giving yourself extra work on your MacBook Pro.
Don't worry that you might be forgetting about an app or three. You'll remember that you need to generate unique application-specific passwords for those as soon as those apps start prompting you to re-enter your password.
Ensure you can always access your account
Once you've configured all the necessary application-specific passwords, there are a few additional important steps to take. Go back to your Google profile, click again on Security, and then click to Edit your Two-step Verification settings. (Surprise! You'll get prompted to confirm your password again.)
Near the top of the screen, look for the Backup Phones setting and click on Add a Phone Number. There, you can set other phones—your home phone, another cell—as backup numbers. That way, if you lose your phone for any reason, you're not locked out of your Google accounts; you can receive your codes on the backup phones instead. (Presumably, once you did log in, you'd immediately go to your settings and change your two-step verification number.)
Once you've set up some backup numbers, find the Printable Backup Codes option and click Show Backup Codes. Doing so generates a list of ten eight-digit verification codes that you can use in situations where you don't have access to your phone, or where your phone has no service.
Each of these codes can be used only once. Google suggests printing out the list and keeping it in your wallet. You might—might!—consider saving the list in Dropbox or somewhere else in the cloud, so that you can always get to it even if you're without your phone or access to your Google account. Obviously, if someone then figures out your Google password and also breaks into your separate cloud account, they could then break all the way into your Google account, too. You can generate a list of ten new backup verification codes whenever you'd like, but doing so invalidates all of your old ones.
Google Authenticator
Instead of relying on text messages or phone calls, you can instead install the free Google Authenticator app. With the app installed, you can generate verification codes even when you have no active network connection. That is, the app can generate codes even when there's no Wi-Fi or cellular signal available for your phone.
First-time setup of the app is a bit confusing. Ignore the login form, and instead tap the Scan Barcode button at the bottom of the screen. (If it's not there, tap the Plus (+) button first.)
Over in your Google Two-Step settings, find the Mobile Application section, and click on iPhone. (There are also apps—and thus links—for Android and Blackberry phones.) Point your phone at the QR code that Google presents on screen, and the app will configure itself for your Google account. Now, when you need a verification code, launch the app, and it will present you with a new one to use.
Security blanket
Two-step authentication is annoying, a bit tedious to set up, and makes more work out of the seemingly simple act of logging in.
Of course, locking your doors or buckling your seatbelt takes a little extra energy, too. We make tradeoffs to ensure our safety, and digital safety is increasingly becoming just as important as physical security. If you rely on Google's services, two-step authentication is probably worth the hassle.
Lex Friedman is a staff writer for Macworld.
Many people within the Linux and open source community shun Google entirely. But for those that do not, Google Apps (including Gmail) is a necessity for business. For those users, there are a few choices for getting to that Google-branded email:
Gmail or Inbox via a desktop web browser
Gmail app or Inbox app via a mobile device
Google-friendly email clients.
It is the last option that I want to focus on. Although a surprising majority of people now use their mobile devices to access the internet and read email, there are still a large cross-section of users that prefer a solid desktop client for communication. But what do you do when your email of choice is Gmail and your desktop of choice is Linux?
You turn to an outstanding email client. If you're unsure which Linux email clients support Gmail, read on and maybe you'll find one that perfectly suits your needs and taste.
NOTE: In order to use any of these clients with Gmail, you must have IMAP enabled from within the Forwarding and POP/IMAP tab of your Gmail account Settings.
Thunderbird
Thunderbird is most often the default email client on Linux distributions. There's a reason for that ─ Thunderbird is feature-rich, easy to use, offers plenty of plugins (including an outstanding Calendar plugin ─ which supports Google Calendar out of the box), and it offers some of the best Gmail support of any open source client. Thunderbird's Gmail support extends to Gmail Labels ─ even allowing you to create Gmail labels (though in Thunderbird, they are still called Folders).
Thunderbird also supports Google two-step authentication (which I highly recommend employing). One thing you will notice with Thunderbird and Gmail is that Thunderbird does not archive Gmail as it does with a standard account. Instead, Thunderbird archives email in the All Mail folder. In fact, the Archive Options button is disabled for Gmail (so you cannot define the frequency of archiving).
To add a Gmail account to Thunderbird, do the following:
Open Thunderbird
Click Edit > Account Settings
From the Account Actions drop-down (bottom left corner), select Add Mail Account
Enter your GMail account information (Figure 1, above.)
Click Continue
Select IMAP
Click DONE.
If you have two-step authentication setup for Gmail, you must visit your Google Account and set up an app password for Thunderbird. Once you've generated that 16 character password, use it for your Gmail password in Thunderbird.
Geary
Configure Mac Email Client For Google App Password Generator
Geary is a great little email client developed by Yorba for the GNOME desktop. Geary removes much of the bells and whistles to create a very simple and elegant desktop email client that offers built-in Gmail support. Of all the clients available, Geary makes working with GMail as close to the web-browser experience as you'll find.
Although Geary isn't as feature rich as Thunderbird, with it you'll enjoy: email in conversational layout, full-featured HTML composer, keyword search, desktop notifications, and conversation labels. Geary can be found in most default Linux repositories (it is not installed by default).
Once installed, account setup for Geary is incredibly quick. On first run (Figure 2), you will be prompted to select the service (choose Gmail from the Service drop-down), enter your name, email address, and password (If you use two-step authentication, you will have to create an app password as you would with Thunderbird), and finally click Add. The Geary main window will finally appear and your Gmail Inbox will instantly populate. The best thing about Geary is its simplicity, speed, and user-friendly interface.
Claws Mail
Claws Mail is the email client for power users. With this particular take on email you can do just about anything you want (it's almost astounding in its configurability). Along with that power comes a bit more of a learning curve. In fact, even the setup of your Gmail account isn't nearly as user-friendly as with the other clients. You will have to manually enter the IMAP server address (imap.gmail.com ─ Figure 3) as well as the SMTP address (smtp.gmail.com). Select Use SSL to connect to receiving server and enable SMTP authentication.
NOTE: Claws Mail also requires an app password if you have two-step authentication enabled.
Once you've set up the account through the simple setup wizard, if you find Claws Mail cannot connect to the Gmail server, open up the account settings (Configuration > Edit accounts select the Gmail account and click Edit) and then check your configuration against these settings:
Basic section
Personal information: Fill this out as you need it.
Server section
Server for receiving: imap.gmail.com
SMTP Server: smtp.gmail.com
User ID: Your gmail address
Password: Your gmail password
NOTE: In order to use any of these clients with Gmail, you must have IMAP enabled from within the Forwarding and POP/IMAP tab of your Gmail account Settings.
Thunderbird
Thunderbird is most often the default email client on Linux distributions. There's a reason for that ─ Thunderbird is feature-rich, easy to use, offers plenty of plugins (including an outstanding Calendar plugin ─ which supports Google Calendar out of the box), and it offers some of the best Gmail support of any open source client. Thunderbird's Gmail support extends to Gmail Labels ─ even allowing you to create Gmail labels (though in Thunderbird, they are still called Folders).
Thunderbird also supports Google two-step authentication (which I highly recommend employing). One thing you will notice with Thunderbird and Gmail is that Thunderbird does not archive Gmail as it does with a standard account. Instead, Thunderbird archives email in the All Mail folder. In fact, the Archive Options button is disabled for Gmail (so you cannot define the frequency of archiving).
To add a Gmail account to Thunderbird, do the following:
Open Thunderbird
Click Edit > Account Settings
From the Account Actions drop-down (bottom left corner), select Add Mail Account
Enter your GMail account information (Figure 1, above.)
Click Continue
Select IMAP
Click DONE.
If you have two-step authentication setup for Gmail, you must visit your Google Account and set up an app password for Thunderbird. Once you've generated that 16 character password, use it for your Gmail password in Thunderbird.
Geary
Configure Mac Email Client For Google App Password Generator
Geary is a great little email client developed by Yorba for the GNOME desktop. Geary removes much of the bells and whistles to create a very simple and elegant desktop email client that offers built-in Gmail support. Of all the clients available, Geary makes working with GMail as close to the web-browser experience as you'll find.
Although Geary isn't as feature rich as Thunderbird, with it you'll enjoy: email in conversational layout, full-featured HTML composer, keyword search, desktop notifications, and conversation labels. Geary can be found in most default Linux repositories (it is not installed by default).
Once installed, account setup for Geary is incredibly quick. On first run (Figure 2), you will be prompted to select the service (choose Gmail from the Service drop-down), enter your name, email address, and password (If you use two-step authentication, you will have to create an app password as you would with Thunderbird), and finally click Add. The Geary main window will finally appear and your Gmail Inbox will instantly populate. The best thing about Geary is its simplicity, speed, and user-friendly interface.
Claws Mail
Claws Mail is the email client for power users. With this particular take on email you can do just about anything you want (it's almost astounding in its configurability). Along with that power comes a bit more of a learning curve. In fact, even the setup of your Gmail account isn't nearly as user-friendly as with the other clients. You will have to manually enter the IMAP server address (imap.gmail.com ─ Figure 3) as well as the SMTP address (smtp.gmail.com). Select Use SSL to connect to receiving server and enable SMTP authentication.
NOTE: Claws Mail also requires an app password if you have two-step authentication enabled.
Once you've set up the account through the simple setup wizard, if you find Claws Mail cannot connect to the Gmail server, open up the account settings (Configuration > Edit accounts select the Gmail account and click Edit) and then check your configuration against these settings:
Basic section
Personal information: Fill this out as you need it.
Server section
Server for receiving: imap.gmail.com
SMTP Server: smtp.gmail.com
User ID: Your gmail address
Password: Your gmail password
Receive section
Authentication method: LOGIN
Send section
SMTP Authentication: Enable this
User ID: Your gmail address
Password: Your gmail password
SSL section
Use SSL for IMAP4 connection: Enable this
Don't use SSL (under SMTP section): Enable this
Advanced section
SMTP Port: 465
IMAP Port: 993
Surprisingly enough, Claws Mail still manages to be incredibly lightweight and fast ─ even with the vast amount of configuration options available.
Evolution
Evolution is a much-maligned, but still very powerful and useful email/calendar/groupware client. Evolution has probably the most extensive Gmail support of all the Linux desktop email clients (including contacts and multiple calendar support). Evolution offers a very simple setup and includes email, calendar, contacts, tasks, and memos. Once you've synced your Gmail account, you can begin adding your Google calendars (these have to be manually added). There is one caveat with adding your Google calendars to Evolution. You might assume the calendar type would need to be Gmail. Because of a bug, this will not work. Instead, you must select the CalDAV and then use a URL in the form of:
Best Mac Email Client For Business
//www.google.com/calendar/dav/
This e-mail address is being protected from spambots. You need JavaScript enabled to view it
/events'>https://www.google.com/calendar/dav/
This e-mail address is being protected from spambots. You need JavaScript enabled to view it
/events
Where YOURUSERNAME is your gmail user name.
Once you enter that, fill out the rest of the information and then click Find Calendars (Figure 4). You will then be prompted for your Gmail credentials (remember, if you use two-step authentication, you'll have to use an app password).
Best Mac Email Client For Yahoo
If you're looking for a more business-friendly groupware client, one that can easily connect to Gmail, Evolution is your tool.
Configure Mac Email Client For Google App Password
There is no reason you have to be relegated to only a web browser when using Linux and Gmail. Each of these clients has plenty to offer ─ whether you are a novice or a power user. Give one of them a try and see if it can wean you from the web browser.
