Urgent communication

Deprecation of Basic Authentication in Exchange Online Affects KnowledgeSync On-Premise.

Deprecation of Basic Authentication in Exchange Online Affects KnowledgeSync On-Premise.

If you currently use Email Alerts or Email Response System of KnowledgeSync v10.04.01 and earlier, please read the following important information.

To avoid interruption to your Sage Alerts, Workflow email alerts and email response system events, you might need to take action prior to October 1, 2022.

Effective  October 1, 2022, Microsoft is changing the security options of Office 365. This change will deprecate use of Basic Authentication for all Office 365 tenants. This change may prevent KnowledgeSync (10.04.01 and earlier) from authenticating with your Office 365 account. The communication from Microsoft can be found here.

As of September 1, 2022 though, Microsoft revisited their policy and indicated that they will NOT disable SMTP Authentication (SMTP Auth) at this time. Therefore, SMTP-based KnowledgeSync email alerts will remain operational for the moment.

Regardless of upcoming deadlines, Microsoft and other industry experts recommend migrating to a modern OAuth2-based authentication for email access where possible. To this end, KnowledgeSync is releasing an upgrade (v10.5) that will allow the use of OAuth2-based authentication for email alerts and email response system.

How does this impact my instance of KnowledgeSync?

Any Office 365 account configured as a sender email account with outbound/inbound SMTP/POP/IMAP email settings in KnowledgeSync could be impacted. To avoid disruption, you must change email providers, make changes to your Office 365 tenant account, or upgrade to KnowledgeSync 10.5.

What happens after October 1, 2022?

Microsoft will deprecate the use of basic authentication for all protocols other than SMTP. If you use the Email Response System (ERS) feature in KnowledgeSync, you will not be able to monitor inbound emails into your Office 365 email account, after October 1st, unless you take action.

How long will SMTP Auth based email alerts continue to work with my Office 365 email account?

Microsoft has not indicated a timeline for disabling SMTP Auth. KnowledgeSync will release a more secure OAuth based email authentication with our upcoming 10.5 release. If you are concerned about the security of SMTP Auth, you should upgrade to the 10.5 release when it becomes available.

What options do I have to continue using KnowledgeSync Email Response System (ERS)?

  • You can upgrade to KnowledgeSync v10.5 coming in early September 2022.
  • You can use other email service providers who support basic auth. Providers such as Gmail, Yahoo, etc., or anything other than Office 365.
  • You can proactively opt-out of disabling basic auth for POP or IMAP, based on your version of Sage Alerts of Workflow, before October 1st.
    • If you are on version 9 or v8.x, KnowledgeSync uses POP protocol for ERS. If you are on v10.x, KnowledgeSync uses IMAP protocol for ERS.
    • After October 1st, if POP or IMAP is disabled on your Office 365 tenant, you can request it be to re-enabled.

Documented workarounds and product updates will be available and communicated to customers by September 15th.

Read this if you use a Gmail sender account for your email alerts:

Google will no longer support the use of third-party apps or devices which ask you to sign into your Google Account using only your username and password on May 30th, 2022. If you are using a Gmail SMTP server setup for your KnowledgeSync Email sender account (Admin > Services > Email Accounts), Google will require you to turn on 2-Step Verification and use the associated App Password.

Please see the Google links below for setup details and to avoid disruption of email alerts in KnowledgeSync.

Less secure apps & your Google Account - Google Account Help

Turn on 2-Step Verification - Computer - Google Account Help

Sign in with App Passwords - Google Account Help