Hi All, With outlook you can enable the 2FA option. When you want login underwater a request is send to you and you need to enter the correct number. Is there a way to enable this on the mailserver running on Debain? Or with a regular 6 numbers 2FA? Greets
Are you talking about outlook.com webmail or outlook the application? And you don't specify which mailserver and/or webmail your Debian server is running. I guess Dovecot and Roundcube? Several 2FA plugins exist for Roundcube to secure your webmail. For Dovecot on an ISPC server I don't think there are any. Unless you reroute authentication between Dovecot and MySQL/MariaDB through some 2FA solution yourself. But why would you want to? Having to enter a 2FA code every time on every send/receive action, wether it is a mailclient like outlook or webmail, isn't very practical.
Sorry, it's a ISPC install with Postfix and Dovecot. I like the idea that you can add a email account into your email applications and have a one time extra control to give the right number or 2FA number before its add to you client.
There is no implementation for 2FA within the smtp/imap/pop protocol, so the answer to your question is no. What google and other big companies use in cases of 3rd party clients is OAuth, but it is not a straighforward process and includes a complete custom server setup without thinking to much about it. To make mail accounts more secure, require a strong and unique password.
