Issue with App Password and TOTP Login in EasyRepro #1448
Description
Description:
I tested authentication in EasyRepro with the following approaches in our Dynamics 365 environment:
-
App Password
- I enabled an App Password for my account and attempted to use it with EasyRepro.
- When entering the App Password, the system returned an “incorrect password” error.
- After investigation, I confirmed this happens because App Passwords only work with legacy Office 365 authentication (basic auth), which is deprecated and disabled in most tenants.
- Our tenant enforces modern authentication (OAuth + MFA), so App Passwords are no longer accepted by Dynamics 365.
-
TOTP (Authenticator code)
- I tested using a TOTP secret in code to generate runtime 6-digit codes.
- Result: Login still prompted for push notification approval, as expected.
- Root cause: Our tenant enforces strong MFA policies, where push notifications override TOTP as the primary factor. Even if a TOTP code is generated, push approval is still required.
Impact:
- App Password and TOTP cannot be used for automated login in our environment.
- We currently can only run EasyRepro via interactive login with MFA or via Client ID + Secret (if supported in newer EasyRepro versions).
Request:
- Guidance on best practices for automated login in tenants enforcing modern MFA policies.
- Confirmation if EasyRepro supports Client ID + Secret login in a version compatible with our setup.