Skip to main content

Qlik

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Suggest an Idea

Vote for your favorite Qlik product ideas and add your own suggestions.

Announcements
Qlik Connect 2024! Seize endless possibilities! LEARN MORE

Implement advanced SMTP authentication options for alerts and subscriptions in Qlik Cloud

Daniele_Purrone
Support
Support
‎2022-03-07 08:34 AM

Implement advanced SMTP authentication options for alerts and subscriptions in Qlik Cloud

In October 2022, Microsoft will discourage using Basic SMTP authentication for Exchange Online in October 2022.
While it will be possible to re-enable it back, even on a per-user basis, IT admins and security officers might want to follow the recommendation (quote: "you still should move away from using Basic and SMTP AUTH though if you can, as it does leave you exposed") and disable Basic SMTP auth completely.
Other email providers will surely consider disabling Basic SMTP auth as well, making it impossible to use their email services with Qlik Cloud.

Recently, even Google announced that they will stop supporting "less secure applications", so Gmail users won't be able to use basic smtp.

Qlik Cloud at the moment only supports basic SMTP auth for alerts and subscriptions.
While Qlik is discussing internally how to better address this, this idea will help push the necessary changes so that more secure authentication processes are implemented in the product.

Daniele - Principal Technical Support Engineer & SaaS Support Coordinator at Qlik
If a post helps to resolve your issue, please accept it as a Solution.
Status: Closed - Archived Submitted by Support on ‎2022-03-07 08:34 AM
5,054 Views
6 Comments
Jeffrey_Goldberg
Employee
Employee
‎2022-04-26 12:05 PM

Hi @Daniele_Purrone , 

You are correct, we have been doing research and discussing it. As you point out, both Google and Microsoft want customers to move away from using basic authentication for many of their services. In both Google and Microsoft's cases they are not disabling SMTP Auth if it has been used previously, and they are providing switches to turn it on where it's been turned off due to inactivity or non-use.

Here are some links:

Google: https://support.google.com/accounts/answer/6010255#zippy=%2Cif-less-secure-app-access-is-on-for-your...

Microsoft: https://techcommunity.microsoft.com/t5/exchange-team-blog/basic-authentication-and-exchange-online-s...

 

There is another reason why Google and Microsoft want you to move away from using GMail and Exchange online as an SMTP relay...it costs them a lot to support it and they are not intended to be used as bulk email solutions (what SMTP auth is intended to support). Both services have some restrictive rate limiting in play for their cloud services that make the quality of service for supporting OAuth2 credentials on GMail and Exchange for alerting and subscriptions not a suitable option for Qlik to implement. It would transfer the problem from being an authorization issue to a bulk mail timing issue.

Both Google and Microsoft recommend using a bulk mail service purpose built to send out messages at scale. Notable options are Sendgrid, Mailchimp, and Mailgun. I posted more about this in response to Steve Dark's post on LinkedIn here: https://www.linkedin.com/posts/stevedark_google-smtp-and-imap-to-break-in-qlik-apps-activity-6924324...

So... what's Qlik going to do about it? Well, for now the current configuration works and will continue to work if you're using Google Workspace or Exchange Online. That said, I do highly recommend using a service like Sendgrid (they have a 100 emails per day free plan) which you can still use with userid and password by obtaining an API key. Another option is to use Qlik Application Automation because we have connectors for Sendgrid and Mailchimp available today.

We are investigating OAuth2 as an authorization scheme for SMTP from bulk mail solutions like I mentioned above. We have no plans to support individual email accounts tied to corporate email providers through OAuth2. These vendors are making it clear that bulk email is a misuse of their service.

 

Status changed to: Open - Collecting Feedback
deepakfacs
Luminary
Luminary
‎2022-11-24 12:35 AM

Hi @Daniele_Purrone , 

 

Modern Auth is a must for LaHC ( Land and Housing ) Sydney too, we have been waiting for this functionality for almost a year now . As our Sec team, clearly said no for basic auth. Please prioritize with the Dev team, without this we cannot use Subscription & Alerts to Email.

-Deepak

Daniele_Purrone
Support
Support
‎2022-11-29 12:23 AM

Thanks for the feedback @deepakfacs !
Please, refer to @Jeffrey_Goldberg comment up above, and check with your Sec team if it's ok for them to go via a third-party bulk emailing system, as this is Qlik's current plan on this matter.

Spartan27215
Partner - Creator
Partner - Creator
‎2022-12-15 09:25 AM

Using Send Grid, while it may work requires the stuff to be base 64 encoded which requires (if you are using Qlik Cloud) exporting a file to an external FTP server, encoding it, then re-importing it to send with Send Grid. Really NOT an acceptable solution. So the sooner the better. As it stands today automation email does not work for us. 

Meghann_MacDonald
Employee
Employee
‎2023-08-02 11:36 AM

From now on, please track this idea from the Ideation portal. 

Link to new idea

Meghann

NOTE: Upon clicking this link 2 tabs may open - please feel free to close the one with a login page. If you only see 1 tab with the login page, please try clicking this link first: Authenticate me! then try the link above again. Ensure pop-up blocker is off.

Ideation
Explorer II
Explorer II
‎2023-08-02 11:36 AM
 
Status changed to: Closed - Archived
Subscribe by Topic