This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

POP3 OAuth2 Authentication

  • 6 replies
  • 0 have this problem
  • 1 view
  • Last reply by bsfinkel

more options

I have a problem with Thunderbird 115.11.1 with the POP3 server inbound.att.net. Someone on at at7t forum suggested changing from Userid/password to Secure Mail Key. I had previously set up two Keys with at&t, but AI have never activated them. I looked at one URL, and was able to change the settings for inbound.att.net. But I did not see anywhere to enter one of the Keys that I had generated earlier. When I tried to re-configure outbound.att.net, I did not see a OAuth2 option. I do not need to re-configure outbound at the present time, as I can send mail without a problem. But receiving mail does not work. Here is what I see in the error console log:


mailnews.pop3.246: Connecting to pop://inbound.att.net:995 Pop3Client.jsm:141:18 mailnews.pop3.246: Connected Pop3Client.jsm:295:18 mailnews.pop3.246: S: +OK Hello from jpop-0.1

Pop3Client.jsm:348:18 mailnews.pop3.246: C: CAPA Pop3Client.jsm:508:20 mailnews.pop3.246: S: +OK CAPA list follows

IMPLEMENTATION jpop-0.1

EXPIRE-NEVER

PIPELINING

RESP-CODES

TOP

UIDL

USER

SASL PLAIN XOAUTH2

.

Pop3Client.jsm:348:18 mailnews.pop3.246: Possible auth methods: XOAUTH2 Pop3Client.jsm:597:18 mailnews.pop3.246: Current auth method: XOAUTH2 Pop3Client.jsm:668:18 mailnews.pop3.246: C: AUTH XOAUTH2 Pop3Client.jsm:508:20 mailnews.pop3.246: S: +

Pop3Client.jsm:348:18 uncaught exception: initFromMail failed, hostname: inbound.att.net Prompter.sys.mjs:1231:17 mailnews.pop3.246: NetworkTimeoutError: a Network error occurred Pop3Client.jsm:369:18 mailnews.pop3.246: Connection closed. Pop3Client.jsm:395:18 mailnews.pop3.246: SecurityError info: Pop3Client.jsm:375:20 mailnews.pop3.246: Done with status=2152398862 Pop3Client.jsm:1486:18 mailnews.pop3.247: Connecting to pop://inbound.att.net:587 Pop3Client.jsm:141:18 mailnews.pop3.247: ConnectionRefusedError: a Network error occurred Pop3Client.jsm:369:18 mailnews.pop3.247: SecurityError info: Pop3Client.jsm:375:20 mailnews.pop3.247: Done with status=2152398861 Pop3Client.jsm:1486:18 mailnews.pop3.248: Connecting to pop://inbound.att.net:587 Pop3Client.jsm:141:18 mailnews.pop3.248: ConnectionRefusedError: a Network error occurred Pop3Client.jsm:369:18 mailnews.pop3.248: SecurityError info: Pop3Client.jsm:375:20 mailnews.pop3.248: Done with status=2152398861 Pop3Client.jsm:1486:18 mailnews.pop3.249: Connecting to pop://inbound.att.net:587 Pop3Client.jsm:141:18 mailnews.pop3.249: ConnectionRefusedError: a Network error occurred Pop3Client.jsm:369:18 mailnews.pop3.249: SecurityError info: Pop3Client.jsm:375:20 mailnews.pop3.249: Done with status=2152398861


Here is what I changed: Thunderbird: Account Settings --> Server Setings --> Security Settings --> Authentication Method Normal Pasword -> OAuth2

                                                   Inbound.att.net: Port 995 --> 587
                                                   Connection Security: SSL/TLS --> STARTTLS 
   

What do I have to do to get one of my two Keys into the inbound Thunderbird configuration? Thanks.

I have a problem with Thunderbird 115.11.1 with the POP3 server inbound.att.net. Someone on at at7t forum suggested changing from Userid/password to Secure Mail Key. I had previously set up two Keys with at&t, but AI have never activated them. I looked at one URL, and was able to change the settings for inbound.att.net. But I did not see anywhere to enter one of the Keys that I had generated earlier. When I tried to re-configure outbound.att.net, I did not see a OAuth2 option. I do not need to re-configure outbound at the present time, as I can send mail without a problem. But receiving mail does not work. Here is what I see in the error console log: ----- mailnews.pop3.246: Connecting to pop://inbound.att.net:995 Pop3Client.jsm:141:18 mailnews.pop3.246: Connected Pop3Client.jsm:295:18 mailnews.pop3.246: S: +OK Hello from jpop-0.1 Pop3Client.jsm:348:18 mailnews.pop3.246: C: CAPA Pop3Client.jsm:508:20 mailnews.pop3.246: S: +OK CAPA list follows IMPLEMENTATION jpop-0.1 EXPIRE-NEVER PIPELINING RESP-CODES TOP UIDL USER SASL PLAIN XOAUTH2 . Pop3Client.jsm:348:18 mailnews.pop3.246: Possible auth methods: XOAUTH2 Pop3Client.jsm:597:18 mailnews.pop3.246: Current auth method: XOAUTH2 Pop3Client.jsm:668:18 mailnews.pop3.246: C: AUTH XOAUTH2 Pop3Client.jsm:508:20 mailnews.pop3.246: S: + Pop3Client.jsm:348:18 uncaught exception: initFromMail failed, hostname: inbound.att.net Prompter.sys.mjs:1231:17 mailnews.pop3.246: NetworkTimeoutError: a Network error occurred Pop3Client.jsm:369:18 mailnews.pop3.246: Connection closed. Pop3Client.jsm:395:18 mailnews.pop3.246: SecurityError info: Pop3Client.jsm:375:20 mailnews.pop3.246: Done with status=2152398862 Pop3Client.jsm:1486:18 mailnews.pop3.247: Connecting to pop://inbound.att.net:587 Pop3Client.jsm:141:18 mailnews.pop3.247: ConnectionRefusedError: a Network error occurred Pop3Client.jsm:369:18 mailnews.pop3.247: SecurityError info: Pop3Client.jsm:375:20 mailnews.pop3.247: Done with status=2152398861 Pop3Client.jsm:1486:18 mailnews.pop3.248: Connecting to pop://inbound.att.net:587 Pop3Client.jsm:141:18 mailnews.pop3.248: ConnectionRefusedError: a Network error occurred Pop3Client.jsm:369:18 mailnews.pop3.248: SecurityError info: Pop3Client.jsm:375:20 mailnews.pop3.248: Done with status=2152398861 Pop3Client.jsm:1486:18 mailnews.pop3.249: Connecting to pop://inbound.att.net:587 Pop3Client.jsm:141:18 mailnews.pop3.249: ConnectionRefusedError: a Network error occurred Pop3Client.jsm:369:18 mailnews.pop3.249: SecurityError info: Pop3Client.jsm:375:20 mailnews.pop3.249: Done with status=2152398861 ----- Here is what I changed: Thunderbird: Account Settings --> Server Setings --> Security Settings --> Authentication Method Normal Pasword -> OAuth2 Inbound.att.net: Port 995 --> 587 Connection Security: SSL/TLS --> STARTTLS What do I have to do to get one of my two Keys into the inbound Thunderbird configuration? Thanks.

Modified by bsfinkel

Chosen solution

I solved the problem (with the assistance of Gene Smith) by generating a new Mailkey and using it as a "normal" password. I had assumed that Mailkeys were used only with OAuth2 authentication. I had not tried one of my two 2020-generated Mailkeys as a "normal" password.

Another problem was at&t phone support(Online chat connects to some AI machine that only has canned answers). I was on the pho0ne for one hour earlier this week, and the techs would not acknowledge a problem. As I could read e-mail via the web, there was NO e-mail problem. And the techs would not acknowledge that inbound.att.net is an at&t mail server.

Read this answer in context 👍 0

All Replies (6)

more options

https://support.mozilla.org/en-US/kb/password-manager-remember-delete-change-tb

Mailkeys are a direct replacement for your password in this process, so delete anything associated with the account in the password manager and enter the key (ctrl+V works if there is no right click menu for paste) when prompted.) when asked for your password and it should work, although I have a feeling generating a new key may well cancel older ones. But I really have no experience with ATT's rather contrived processes as I am not a customer.

What I do know is you can set up an ATT account in Thunderbird by using all the settings for a Yahoo mail account and simply substitute your ATT email address as the user name to access your mail. It also allows access to oAuth authentication which is actually the preferred method, just ATT never got around to doing their part in creating the Oauth environment, other that write inane support documents suggesting you use it.

Helpful?

more options

I reverted some changes: I went back to port 995 and SSL/TLS. I had misread the documentation at https://support.mozilla.org/en-US/kb/microsoft-oauth-authentication-and-thunderbird-202 . I kept OAuth2. Now the Error Console has these lines:


mailnews.pop3.289: Connecting to pop://inbound.att.net:995 Pop3Client.jsm:141:18 mailnews.pop3.289: Connected Pop3Client.jsm:295:18 mailnews.pop3.289: S: +OK Hello from jpop-0.1

Pop3Client.jsm:348:18 mailnews.pop3.289: C: CAPA Pop3Client.jsm:508:20 mailnews.pop3.289: S: +OK CAPA list follows

IMPLEMENTATION jpop-0.1

EXPIRE-NEVER

PIPELINING

RESP-CODES

TOP

UIDL

USER

SASL PLAIN XOAUTH2

.

Pop3Client.jsm:348:18 mailnews.pop3.289: Possible auth methods: XOAUTH2 Pop3Client.jsm:597:18 mailnews.pop3.289: Current auth method: XOAUTH2 Pop3Client.jsm:668:18 mailnews.pop3.289: C: AUTH XOAUTH2 Pop3Client.jsm:508:20 mailnews.pop3.289: S: +

Pop3Client.jsm:348:18 uncaught exception: initFromMail failed, hostname: inbound.att.net


I looked at the password URL you provided, but I am not sure what I have to change for my inbound POP3 server. Do I delete the password? Do I edit it and paste one of the Keys I had previously generated? As outbound e-mail is working fine, I prefer not to change any settings for the outbound.att.net server. Thanks.

Helpful?

more options

I deleted the saved password for inbound.att.net, and I am not sure how/where to cut-and-paste one of the two Keys I had generated. The last Error Console has these lines:


mailnews.pop3.370: Connecting to pop://inbound.att.net:995 Pop3Client.jsm:141:18

mailnews.pop3.370: Connected Pop3Client.jsm:295:18 mailnews.pop3.370: S: +OK Hello from jpop-0.1

Pop3Client.jsm:348:18 mailnews.pop3.370: C: CAPA Pop3Client.jsm:508:20 mailnews.pop3.370: S: +OK CAPA list follows

IMPLEMENTATION jpop-0.1

EXPIRE-NEVER

PIPELINING

RESP-CODES

TOP

UIDL

USER

SASL PLAIN XOAUTH2

.

Pop3Client.jsm:348:18 mailnews.pop3.370: Possible auth methods: XOAUTH2 Pop3Client.jsm:597:18 mailnews.pop3.370: Current auth method: XOAUTH2 Pop3Client.jsm:668:18 mailnews.pop3.370: C: AUTH XOAUTH2 Pop3Client.jsm:508:20 mailnews.pop3.370: S: +

Pop3Client.jsm:348:18 uncaught exception: initFromMail failed, hostname: inbound.att.net mailnews.pop3.370: NetworkTimeoutError: a Network error occurred Pop3Client.jsm:369:18 mailnews.pop3.370: Connection closed. Pop3Client.jsm:395:18 mailnews.pop3.370: SecurityError info: Pop3Client.jsm:375:20 mailnews.pop3.370: Done with status=2152398862 Pop3Client.jsm:1486:18 Error in parsing value for ‘width’. Declaration dropped.


Helpful?

more options

Chosen Solution

I solved the problem (with the assistance of Gene Smith) by generating a new Mailkey and using it as a "normal" password. I had assumed that Mailkeys were used only with OAuth2 authentication. I had not tried one of my two 2020-generated Mailkeys as a "normal" password.

Another problem was at&t phone support(Online chat connects to some AI machine that only has canned answers). I was on the pho0ne for one hour earlier this week, and the techs would not acknowledge a problem. As I could read e-mail via the web, there was NO e-mail problem. And the techs would not acknowledge that inbound.att.net is an at&t mail server.

Helpful?

more options

bsfinkel said

I solved the problem (with the assistance of Gene Smith) by generating a new Mailkey and using it as a "normal" password. I had assumed that Mailkeys were used only with OAuth2 authentication. I had not tried one of my two 2020-generated Mailkeys as a "normal" password.

Back in my first post I told you mailkeys were a direct replacement for your password. Perhaps you missed it. https://support.mozilla.org/en-US/questions/1450241#answer-1657971

Another problem was at&t phone support(Online chat connects to some AI machine that only has canned answers). I was on the pho0ne for one hour earlier this week, and the techs would not acknowledge a problem. As I could read e-mail via the web, there was NO e-mail problem.

That is actually included in their terms of service. You pay them essentially for very little that they actually guarantee.

2.2.3 Data Service: If your rate plan includes data, subject to the limitations in this Agreement, you will be able to browse the internet and access wireless services, content and apps, including those that enable sending and receiving of emails, use of GPS navigation, streaming of video, and other customary mobile internet-enabled capabilities (“Data Service”). Services provided via the Data Service may be provided by AT&T or its affiliates, assignees, successors, or by third parties subject to service-specific terms and conditions.

No mention of how you get the service, just that you do. Webmail is their definition of delivering that service.

There is a lot of marketing guff but little substance to their support. But that does not necessarily mean it is an AI. They have employed script readers to answer their support phones for decades that I know of. If they have replaced them with a brain dead AI, I would see that as no real change. The support was only ever any good at taking your credit card or upgrading your service.

And the techs would not acknowledge that inbound.att.net is an at&t mail server.

It is not, it resolves to any-jpop.mail.gm0.yahoodns.net

That is it is a yahoo server and mail is actually a service offered under contract to ATT by Yahoo and has been for a long time now. By default ATT really know nothing about their mail offering because they do not supply it, only offer links to it. Yahoo offer no support because their contract does not include that.

What I do think is you should really set up your account in Thunderbird as a Yahoo one with settings for the relevant Yahoo mail account type. IMAP, POP or SMTP and simply substitute your ATT email address as the user name. This allows access to Yahoos preferred authentication method of oAuth. Something ATT have suggested folk use, but have failed to undertake their end of the process to allow for years. Their support documents even blame those that can not use it for their failure to complete the server side requirement of having a client secret to use.

I suggest this because dealing with the vagaries of Yahoo is hard enough, without doing it through the filter of ATT.

Helpful?

more options

Thanks for the reply.

Helpful?

Ask a question

You must log in to your account to reply to posts. Please start a new question, if you do not have an account yet.