Skip to content

I suggest you...

← Feature Suggestions

Secure Plesk mail servers with Modern authentication

Microsoft is retiring Basic Authentication soon, which means servers that do not use Modern Authentication (OAuth, 2FA, MFA, etc.) will not be able to use its mail client Outlook.

I suggest you add an option to secure Plesk's mail servers with Modern Authentication, for example by integrating it with third party apps such as Google Authenticator, Microsoft Authenticator, Duo, Okta, etc..

24 votes

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

Plesk Tech Support shared this idea  ·   ·  Report…  ·  Admin →
How important is this to you?

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • kolchose commented  ·   ·  Report

    I agree with Naohito Fukuhara and Rihards Simanovics
    Security has more priority than votes.

  • Rihards Simanovics commented  ·   ·  Report

    I came across the mailcow not long ago and kept tabs on their progress, apparently they have implemented in the nightly builds of the dockarized version an ability to link it up with LDAP and... omg hold on... just yesterday they moved everything from the nightly builds to stable... Haha here I go rebuilding the mail server, lol. thank highest I'm not yet too deep into configuring the server I built yesterday, here is the blog with the changes I am talking about: https://mailcow.email/posts/2025/release-2025-03/

    This is the important part:
    ```
    New Feature

    mailcow now supports external Identity Providers for authentication.
    This is optional — administrators can configure an external identity provider, which can be used alongside the SQL database for authentication.
    You can even configure which authentication source a specific user should use.

    Currently supported Identity Providers:

    Keycloak – Documentation
    LDAP/AD – Documentation
    Generic OIDC – Documentation
    ```

  • Naohito Fukuhara commented  ·   ·  Report

    I believe this request should be implemented proactively regardless of the number of votes.

  • Rihards Simanovics commented  ·   ·  Report

    Security shouldn't be based on popularity that is a wrong approach to take, while I am not pushing for an immediate all-hands-on-deck, it would help if Plesk could prioritise security features that protect users or enhance robustness of the system.

Feature Suggestions: Mail

Categories

Feedback and Knowledge Base

(thinking…)