If you are logging into an email account in an email program, it may give you an error even if you know that the password you typed is correct. Email providers sometimes require app specific passwords in order to use those programs.
In this post, we will talk about what these passwords are, how to generate them, and show an example of it in practice.
What exactly is an app specific password?
An app specific password is a randomly generated password that an account provider like Apple or AOL creates to allow the user to log into a third party program more securely. For example if you are using your iCloud account to log into another account, Apple does not want your primary password to be exposed in the secondary account. They may require you to generate an app specific password for that secondary account, so that if the password is exposed, it is only exposed for that account.
Comcast and AOL for example won’t allow your normal password to be used in a program that they determine to be too insecure. They require app specific passwords to use programs like Apple Mail, Outlook, Thunderbird, or other email client handlers.
App specific passwords are not limited to only email accounts, although they are most often used with them. If you don’t know what an email client is check out our blog post All About Email Clients.
App specific passwords only work with one app. So if one is somehow compromised after you used it, it does not expose any other log ins.
How to generate them
We will use AOL as an example for the generation of these passwords.
In order to create one we must first log into our account in a browser.
From there we will click on our name on the top right and go to the Account Security tab.
Scroll down until we see the app specific passwords section.
Once there we will click the option to generate one. It will ask us to name it.
It’s a good idea to name it the app you are putting it into. for this example we will name it “Apple Mail.”
Once generated it will display a large string of letters/numbers. This will be the password you use when signing into something like Apple Mail. There should also be an option to simply copy it so you can then paste it.
Once complete you should be able to hit sign in and you should then have access to all your emails in the program you are in.
Here is a link to AOL’s website fully explaining the functionality.
Other forms of similar protection
Instead of generating app passwords, some companies have settings within their security tab regarding access to third party apps.
For example in order to use a Comcast/Xfinity email address in any third party client, users much check this tab or it simply can not connect.
Common Issues and Troubleshooting
It’s important to keep in mind these methods are often inconsistent. Sometimes the normal password works in the selected client, sometimes only an app generated one does. It seems to be a combination of operating system version and program updates that effect this.
Some companies won’t even let you sign into an email client on an outdated device, as they deem it insecure. Google is a good example of this.
We have also seen some AOL accounts that do require the app password, and some that don’t.
AOL seemingly broke the generation tool at one point leaving some people stuck because their normal password would not work in their chosen app, and they couldn’t generate a an app password.
This all simply means it can be a process of trial and error when logging in. It is a good idea to first log in with normal credentials, and if that fails then try the app specific password.
It’s very important to be sure of your normal password before troubleshooting logging into a third party app. Be sure to test it in a browser if you aren’t sure.
If both the normal password and generated one are failing, there may be an issue within your device that is stopping authentication. Whether it is outdated, the program is outdated, or some other error that doesn’t always seem to have a logical explanation.
Browsers Alternative
It’s also very important to remember that you can always access an account through the browser. These are the native portals for these accounts and generally have better functionality than the catch all email handlers to. Some emails, like GMail and AOL, also have their own specific apps.
Many people come to SDM without access to their email when their email client stops working. We teach them that there is always the option of using the browser. Especially if they are desperate to read or send an email.
If you have questions about app specific passwords, or our services, just call or email. We’re happy to assist you! Feel free to use our contact form to send us a message. Thank you!