SMTP config to Gmail failing

[Hammertime]

I can send email from the server using Powershell script. I cannot set up Prestashop SMTP email to work with the same credentials.

PrestaShop version: 1.7.8.2

Server information: Windows NT build 19043 (Windows 10) AMD64

Server software version: Apache/2.4.51 (Win64) OpenSSL/1.1.1l PHP/7.4.26  (WAMP)

Site has SSL certificate applied and working. https://emitremmah.com/Prestashop/

 

Gmail security is set to less secure app enabled.

error message with TLS\586 and SSL\465
"Error: Please check your configuration

Failed to authenticate on SMTP server with username "[email protected]" using 3 possible authenticators. Authenticator LOGIN returned Expected response code 235 but got code "535", with message "535-5.7.8 Username and Password not accepted. Learn more at 535 5.7.8 https://support.google.com/mail/?p=BadCredentials v15sm3007704pfu.203 - gsmtp ". Authenticator PLAIN returned Expected response code 235 but got code "535", with message "535-5.7.8 Username and Password not accepted. Learn more at 535 5.7.8 https://support.google.com/mail/?p=BadCredentials v15sm3007704pfu.203 - gsmtp ". Authenticator XOAUTH2 returned Expected response code 250 but got code "535", with message "535-5.7.8 Username and Password not accepted. Learn more at 535 5.7.8 https://support.google.com/mail/?p=BadCredentials v15sm3007704pfu.203 - gsmtp "."

 

SSL\586

"Error: Please check your configuration

Connection could not be established with host smtp.gmail.com :stream_socket_client(): SSL operation failed with code 1. OpenSSL Error messages: error:1408F10B:SSL routines:ssl3_get_record:wrong version number"

TLS\465

"Error: Please check your configuration

Expected response code 220 but got an empty response"

Not sure where I need to go to from here. I found a thread about needing to open TLS\SSL port on server  which referred to some php dll files which are not anywhere to be found. ssleay.dll and another one. That thread was from 2018 so I am assuming php has moved on to to other dll's with openssl now being used.

This is the current stumbling block to going live. Small site hosted inhouse, as not expected to get but a few visitors per week.

TIA, Bernard

[Hammertime]

The httpd-ssl.conf file reads as which seems to indicate it is using older protocols and I assume to be about the web server and not the email service.

##
##  SSL Global Context
##
##  All SSL configuration in this context applies both to
##  the main server and all SSL-enabled virtual hosts.
##

#   SSL Cipher Suite:
#   List the ciphers that the client is permitted to negotiate,
#   and that httpd will negotiate as the client of a proxied server.
#   See the OpenSSL documentation for a complete list of ciphers, and
#   ensure these follow appropriate best practices for this deployment.
#   httpd 2.2.30, 2.4.13 and later force-disable aNULL, eNULL and EXP ciphers,
#   while OpenSSL disabled these by default in 0.9.8zf/1.0.0r/1.0.1m/1.0.2a.
SSLCipherSuite HIGH:MEDIUM:!MD5:!RC4:!3DES
SSLProxyCipherSuite HIGH:MEDIUM:!MD5:!RC4:!3DES

#  By the end of 2016, only TLSv1.2 ciphers should remain in use.
#  Older ciphers should be disallowed as soon as possible, while the
#  kRSA ciphers do not offer forward secrecy.  These changes inhibit
#  older clients (such as IE6 SP2 or IE8 on Windows XP, or other legacy
#  non-browser tooling) from successfully connecting.  
#
#  To restrict mod_ssl to use only TLSv1.2 ciphers, and disable
#  those protocols which do not support forward secrecy, replace
#  the SSLCipherSuite and SSLProxyCipherSuite directives above with
#  the following two directives, as soon as practical.
# SSLCipherSuite HIGH:MEDIUM:!SSLv3:!kRSA
# SSLProxyCipherSuite HIGH:MEDIUM:!SSLv3:!kRSA

#   User agents such as web browsers are not configured for the user's
#   own preference of either security or performance, therefore this
#   must be the prerogative of the web server administrator who manages
#   cpu load versus confidentiality, so enforce the server's cipher order.
SSLHonorCipherOrder on 

#   SSL Protocol support:
#   List the protocol versions which clients are allowed to connect with.
#   Disable SSLv3 by default (cf. RFC 7525 3.1.1).  TLSv1 (1.0) should be
#   disabled as quickly as practical.  By the end of 2016, only the TLSv1.2
#   protocol or later should remain in use.
SSLProtocol all -SSLv3
SSLProxyProtocol all -SSLv3
 

[Hammertime]

Quote

 

Resolved.
I created a new account in Gmail for the shop. Then set as images attached:

[Snakes]

Hi, this thing can work now, but on May 30, 2022, this setting will no longer be available.

 

Check: https://support.google.com/accounts/answer/6010255?authuser=1&p=less-secure-apps&hl=en&authuser=1&visit_id=637825205551880174-3504405925&rd=1

Any ideas on how to workaround this potential problem in the near future?

[Snakes]

Hi guys. I managed to change the settings from SMTP to PHP (check image). It's working fine apparently, but the issue that I'm getting right now is that some emails that are supposed to be sent and seen in the "Sent" folder of Gmail, aren't there.

 

I See the New Order Email and the emails from the contact form: Customer Support and Webmaster contact.

I don't see anymore, Order Confirmation, Cancel Order email, Order Preparation, etc...

If I check the platform, they were supposed to be sent:

Any ideas?

Thanks in advance.
Regards.-

 

 

 

Edited April 27, 2022 by Snakes (see edit history)