Any new about this project of adding google login with OAuth authentication, it's kinda a must-have now. They put it on Grafana and it's very effective, you can put it in place in litteraly 15 minutes ! I added SAML login with Google Workspace app last year but its stop working for no reason, so I went back to local authentication, and it sucks ?

Best regards, hope it will be available soon !

Testing with this, it seems it is still working but only IF you enable 2fa on the google account...

You can configure an App Password and still use Gmail for notifications:

• https://support.google.com/mail/answer/185833?hl=en
• nicely looking video instruction: https://www.youtube.com/watch?v=uVDq4VOBMNM&ab_channel=SysTools

At least Google hasn't taken away the "app password" functionality, but Microsoft is deprecating that piece of basic auth as well, even for people who have AAD P1/P2 licenses.

Might get fixed when ZBXNEXT-2979 is implemented.

Just wanted to bump this ticket a bit and provide some additional info. Microsoft also disabled most basic authentication options.

Although SMTP is still availabe it is considered a basic insecure type of communication. Microsoft has even gone as far disabeling SMTP by default in all Microsoft tenants not using it. According to Microsoft themselves:

"We're also disabling SMTP AUTH in all tenants in which it's not being used."
https://learn.microsoft.com/en-us/exchange/clients-and-mobile-in-exchange-online/deprecation-of-basic-authentication-exchange-online

I know of quite a few Zabbix users that won't be happy upgrading to a non-LTS for this feature and there seems to be a heavy focus to switch to new Authentication types for security from Google and Microsof. They are both pushing towards oAuth2, as such I feel like 7.0 LTS would be the right place for this feature to be introduced. With 8.0 LTS planned for 2 years away, who knows what will happen with SMTP authentication in that time.

Seems like a risk of possibly introducing a rushed oAuth implementation and better to get it done sooner than later. Hope to see this on the roadmap soon!

Nathan, we have already started working on this, but as much as we'd love to get this done in 7.0, it may not fit. 7.2 seems like a safer bet.

Thanks for the update Alex! 7.0 is already packed with features and I definitely understand.

Fingers crossed that 8.0 LTS would be early enough to not run into any issues with decissions from MS and/or Google. Also with the extended major support from 1 month to 6 months the risk is also a bit less high running a major release like 7.2 so I'm not too worried if it does happen

Well, it has happened. Both Microsoft and Google have decided to switch off password-based authentication (including app passwords) in favour of OAuth2.

So any notifications or reports that used to be sent outh through Office365 or Google web servers, will not work anymore.

Putteneers, can you please provide links? From what I read it seems that Google is not retiring app passwords yet. Exchange is removing basic SMTP AUTH in September, 2025.

Kalimulin of course: https://support.microsoft.com/en-us/office/modern-authentication-methods-now-needed-to-continue-syncing-outlook-email-in-non-microsoft-email-apps-c5d65390-9676-4763-b41f-d7986499a90d contains a timeline, which I've reproduced here for convenience:

Transition Timeline

June 11th, 2024  

• Basic Authentication end of support timeline communicated

End of June 2024 

• Outlook account actively using Basic Authentication contacted via email

September 16th, 2024 

• Basic Authentication no longer available to access any Outlook account

Personal experimentation has confirmed that using SMTP auth isn't working anymore. Now that I'm thinking about it more, the timeline mentions "Outlook account", which I'm not sure is the same as Office365 account.
I'm not that familiar with the Microsoft naming.

For Google, the problem might be me instead of them disabling app passwords. I created a new Google account and after enabling 2FA, there was no option visible to create app passwords.
For other Google accounts I have (which already had app passwords configured some time ago), the option did show up, so I made the assumption that already existing app passwords would still work for a while, but new accounts wouldn't be able to set one up.
I might have made a wrong assumption there.

Putteneers, thanks for the research. As for the Microsoft:

Although SMTP AUTH is available now, we announced Exchange Online will permanently remove support for Basic authentication with Client Submission (SMTP AUTH) in September 2025. We strongly encourage customers to move away from using Basic authentication with SMTP AUTH as soon as possible.

https://learn.microsoft.com/en-us/exchange/clients-and-mobile-in-exchange-online/deprecation-of-basic-authentication-exchange-online

7.2 is coming soon, but SMTP OAuth didn't fit. Aiming for 7.4.