Question

Email (Microsoft is eliminating Basic Authentication for the Exchange Online SMTP Service to send Email.)

0

Microsoft is eliminating Basic Authentication for the Exchange Online SMTP Service (smtp.office365.com) to improve security and ensure better compliance with modern authentication standards*. This includes the client App Password, which Microsoft considers a form of Basic Authentication. If you want to continue to use the Office 365 Exchange Online SMTP server to send email, you must switch OAuth authentication to send mail. Can you help me out, how I can do that to avoid the restriction of basic auth.

asked 2026-01-12

Sudhanshu Dhyani

3 answers

Robert Price · Answer 1 · 2026-01-12

Hi Sudhanshu,

The Email Connector module supports OAuth. The documentation provides instructions on how to do this.

https://docs.mendix.com/appstore/modules/email-connector/#oauth-config-details

I hope this helps. Good luck!

Ahmet Kudu · Answer 2 · 2026-01-12

Hi,

Microsoft documents this exact requirement here.

Exchange Online SMTP can still be used, but only with OAuth 2.0 (XOAUTH2).

Gowtham Ramesh · Answer 3 · 2026-02-09

hi,

Yes Microsoft has disabled Basic Authentication for Office 365 SMTP, so username/password (including App Passwords) will no longer work for sending email through smtp.office365.com. Basic auth is deprecated and blocked to improve security.

Correct, supported way in Mendix

Use the Email Connector module from the Mendix Marketplace, which supports OAuth 2.0 (Microsoft Entra ID) for SMTP and other protocols — this gives you modern authentication instead of basic credentials.

Steps:

Install the Email Connector module (Marketplace).
Register an app in Azure Active Directory (Microsoft Entra ID).
- Assign Mail.Send permissions.
- Grant admin consent.
In the Mendix Email Connector UI, configure OAuth 2.0 for the email account:
- Enter your Tenant ID, Client ID, Client Secret, etc.
- Choose OAuth flow (Authorization Code or Client Credentials).
Use the connector’s SUB_SendEmail microflow to send mail.

This setup uses OAuth 2.0 tokens, not SMTP passwords, and complies with Microsoft’s new requirements.

Alternative (more direct API approach)

If you want to avoid SMTP entirely, you can send email using the Microsoft Graph API (/sendMail) via a connector or REST calls with OAuth. Many teams build this approach using the Microsoft Graph Connector or custom Graph integrations.