Many years ago I set up my domain so Google would manage my domain's email. Today, possibly because I was accessing from another state, Google decides to suspend the service:
Your organization's Google workspace account has been suspended. Please contact your Google workspace organization administrator to re-activate your organization.
So since I'm the administrator, I try to logon with those credentials, which are correct, but they challenge me, and want me to complete an email loop, but the recovery email is in the locked domain!
There seems to be no way to get this fixed. There's some code they can send me that I'm supposed to put my domain's server to prove I'm legit, but Google controls that...I have nothing on the domain except email. I'm paying Hover as the registrar.
Any way out?
I appreciate "Only Google can help", but there's no path forward. No phone number, no button to "open a ticket", no live chat. If you can't log on as administrator, none of that is available. How would a superuser get through on a problem like this?
There is a page that says:
To get phone, chat, or email support for your legacy free account at xxxxxxx.com, you need to upgrade to Google Workspace.
To continue, switch to an administrator account. This will open the Google Admin console.
https://support.google.com/a
But I can't log in as administrator to upgrade my account so I can get support because when I log in with correct credentials, they send a challenge to an email address that's in the locked domain!
I can't be the only one this happened to, so figure they're just hiding the path to victory so they don't have to answer too many phone calls. This page might be as close as I've gotten: https://support.google.com/a/answer/6335621
When I try to open a support case under my non-admin account, it says
You do not have permission to create support cases.
I found a form to fill out: https://support.google.com/accounts/contact/disabled2
The above form accepts any email address, so you enter any email address that you currently have access to (not one that is locked, obviously).
But matter what I do, they want me to prove my identity by adding something to my domain. I've asked Hover how to do this, but have not received a response yet.
Here's the email Google sent
Your action is required in order for us to assist with your request.
We were unable to verify the DNS ownership of Google Workspace Account sengsational.com. Please follow the instructions below to verify domain ownership.
The following instructions outline the DNS record (CNAME or TXT) to add to your domain settings. Learn more
Via CNAME (preferred):
Label/Host: [eight digit number removed]
Destination/Target: google.com
Time to live (TTL): 3600 seconds / 60 minutes / 1 Hour
For more information on how to create a CNAME record, please refer to the article Add a CNAME record to your domain's DNS records. If you need assistance creating the CNAME record, please contact your hosting provider for support.
You can verify your CNAME record here.
Via TXT:
Label/Host: enter # or leave it blank
Value/Destination: google-gws-recovery-domain-verification=[eight digit number]
Time to live (TTL): 3600 seconds / 60 minutes / 1 Hour
For more information on how to create a TXT record, please refer to the article Verify your domain with a TXT record . If you need assistance creating the TXT record, please contact your hosting provider for support.
You can verify your TXT record here.
Note: Updates to DNS records may take 24-48 hours to propagate across the entire internet.
In order for us to help you with the sign-up process, please follow this link and submit your request.
Best regards,
Google Workspace Support
Key Finding:Contact the company where you have your domain registered to have them manage the DNS records.
Hover is who I pay every year to keep my domain name active. I logged on, opened a chat, pasted-in the email from Google, and they were more than happy to update those records, right there on the spot!
Then, I went back to the email that Google sent me. To complete this authentication loop, there is a button on the page to re-check DNS.
After refreshing the page, I was provided the option to change the password. After I did that, I was logged into the gSuite administrator account, finally!"
They also automatically changed the recovery email to the one I was using that was outside the domain that was locked.
I've hosted multiple websites on Firebase so far but never via Google Domains. Ironically, I never had a problem with other domains registrants but with Google Domains I'm stuck with a "Needs setup" status:
What I have done:
I have already deployed my assets and my website serves on https://mydomain.web.app/
I've verified domain ownership with a TXT record
I've copied the IP addresses provided here:
And added both into the custom resource records in Google Domains:
According to the documentation (and all other related threads I found here on Stackoverflow) now the status of my domain should move to pending. But it does not. I've configured this many days ago so waiting also won't solve it.
Is there anything that I am missing here?
Somehow, after removing and adding the domain again in Firebase (without any changes in Google Domains), it now shows status pending. Solved.
My weather app using the yahoo API worked fine for the last year using OAuth protocol. It suddenly stopped working working yesterday throwing this:
System.Net.WebException: The remote server returned an error: (502)
Bad Gateway.
weather.yahooapis.com also returns
Connection refused Description: Connection refused
Any idea on what the problem could be; if its on my end or an issue with yahoo?
The problem is probably on the Yahoo end.
My application broke too. I have temporarily fixed the problem by replacing weather.yahooapis.com to weather-ydn-yql.media.yahoo.com. The endpoint URL which was exposed previously is down today, I found alternative working URL through some google searches (apparently it seems they have updated their android mobile app yesterday which may have broken this, don't know guessing this based on google search results).
Anyhow, Yahoo weather developer document now recommends not to use weather.yahooapis.com and use instead YQL
You can use below URL for as per YQL recommendation instead of
Old URL
http://weather.yahooapis.com/forecastrss?w=2502265
New recommended URL
https://query.yahooapis.com/v1/public/yql?q=select%20*%20from%20weather.forecast%20where%20woeid%3D2502265
Here, parameter w is WOEID.
After following https://developers.google.com/storage/docs/signup step by step, I'm unable to create any buckets.
Expected results:
Follow Guide, activate cloud storage, enter billing information
Reality:
When clicking on the Cloud console, I see "Invalid Credentials"
When I click create new bucket, once again I receive "Invalid Credentials"
I've logged off and on, waited a couple of days, tried different applications, but have not been able to use the cloud service.
Billing Screenshot 1
Billing Screenshot 2
API Enabled Screenshot
Credential Failure Screenshot
I'm currently using the file service which is to be discontinued at some point, so I need to get this working.
The account I'm using with app engine has been working well since the app engine beta many years ago, and I'm still being billed on other applications so I don't see a rhyme or reason why this isn't working properly. I did go ahead and logged out of google, cleared cookies, cache etc and created a fresh account and still received same error message. Tried a couple of different credit cards as well. Using firefox, but did try chrome as well.
Thanks!
2014-03-30 Turned out I needed to use Chrome, unknown why Chrome didn't work on first attempt.
I am trying to send emails from Django using an email configured by Google Apps, my configuration at the settings.py file looks something like this:
EMAIL_HOST = 'smtp.gmail.com'
EMAIL_HOST_USER = 'contact#mydomain.com'
EMAIL_HOST_PASSWORD = 'password'
EMAIL_PORT = 587
EMAIL_USE_TLS = True
When I try to send an email using:
from django.core.mail import send_mail
send_mail("Happy new year", "We wish you the best for 3001",
"contact#mydomain.com", ["someuser#gmail.com"])
I get the following error:
SMTPAuthenticationError:
(535, '5.7.1 Please log in with your web browser and then try again.
Learn more at
5.7.1 https://support.google.com/mail/bin/answer.py?answer=78754 k2sm758604obl.14')
Since I'm working on a remote server with no graphical user interface, I cannot even try to login from the browser.
Just go to
https://accounts.google.com/DisplayUnlockCaptcha
and click "continue". This is going to allow access from other servers.
I've been messing with this for a couple of hours within a cucumber/capybara/selenium test - discovered something stupid which will fix this error for good, guaranteed
The all too familiar error:
Please log in via your web browser: https://support.google.com/mail/accounts/answer/78754 (Failure) (Net::IMAP::NoResponseError)
As it turns out, there are TWO "Allow Less Secure Apps" toggles which need to be changed to allow logins from unknown devices/IMAP.
One here: https://myaccount.google.com/security?pli=1#connectedapps (bottom of the page)
And one here: https://www.google.com/settings/security/lesssecureapps
BOTH OF THESE GODFORSAKEN TOGGLES need to be changed to get rid of this error message.
edit: from user Milothicus (https://stackoverflow.com/users/3538026/milothicus): in myaccount.google.com, under 'Sign-in & Security', select 'Connected apps & sites'. this also has an option to 'Allow less secure apps'. after turning this one on, my server could now send me an automated email.
When I tried to access my account I was sent this email consisting of this link.
https://www.google.com/settings/security/lesssecureapps
You can turn-on then possibly turn-off after you've done testing.
I got the following response from Google Apps support:
You need to turn on your Outbound relay. To do this:
Log into your account at google.com/a/yourdomain.com
Click the Settings tab and then select Email in the left column.
In the Outbound relay section, select Allow users to send mail through an external SMTP when configuring a "from" address hosted
outside your domain.
Click Save changes.
They also provided a help link: http://support.google.com/a/bin/answer.py?hl=en&answer=176054
After turning on Outbound relay and using the proxy to login to the webmail one more time (thanks to #DaniloBargen and #joshcartme) the issue was resolved. I've read the link explaining what the Outbound relay is and I'm not really sure why would I need it (I don't believe I'm using an external SMTP server).
Since I'm not really sure this is what solved the issue I won't mark the response as accepted until I get some confirmation.
Set up an ssh tunnel to the server in question so that you could, from your home computer, log in to the gmail web client using the server's IP. You probably need to tunnel port 80 and port 443, maybe just 443. After logging in through the web client the problem should go away according to knowledge base article listed in the SMTPAuthenticationError.
Here's an example of how to set up the tunnel:
http://www.noah.org/wiki/SSH_tunnel#simple_port_forwarding_.28SSH_tunneling.29
Option #1 (this worked for me):
After getting the error Please log in with your web browser and then try again. Learn more etc. when trying to send email from my web application, I logged in to the email via browser from my local computer.
After I logged in, there was a yellow notification bar on top which asking me if I want to allow external application access my mail. I confirmed this and Google asked me to log in to the account from the application within the next 10 mins. This will white-list the application.
Option #2:
If Option #1doesn't work for you, try this: http://www.rocketideas.com/2012/05/gmail-error-password-not-accepted-from-server-solved/
etusm provided two locations to turn on less secure apps:
One here: https://myaccount.google.com/security?pli=1#connectedapps
(bottom of the page)
And one here: https://www.google.com/settings/security/lesssecureapps
both were turned on, but my headless server still couldn't send me an email. based on JohnPang's google+ recommendation, i found a third location where i had to allow access to less secure apps:
in myaccount.google.com, under 'Sign-in & Security', select 'Connected apps & sites'. this also has an option to 'Allow less secure apps'. after turning this one on, my server could now send me an automated email.
I found the solution at: https://support.google.com/accounts/answer/185833?hl=en and finally https://security.google.com/settings/security/apppasswords
If you are testing your project on a local machine, you should go to the latter link, and enable "Access for less secure apps".
Do you have two factor authentication enabled for the apps account ? Then you might need to use an application specific password for that application.
All of the above doesn't help in my case (weird). But this link might help you:
https://security.google.com/settings/security/activity
You can access it via Google Plus
Open Google+
Select "Security" from the top
Under "Recent activity" click "View all events"
You will see a list of "Unusual Activity"
It shows "Application / device sign-in attempt (prevented) Singapore" as I'm using AWS from Singapore
Click on "Change" > "Yes, that was me!"
Retry again. Done!
As of now (look at my post date) there is only one "Allow less secure apps" toggle in the Gmail account admin UI:
https://myaccount.google.com/u/0/security#connectedapps
It'll work from your local computer (Mac or PC) after that.
To allow access from Amazon EC2 (and I suspect other Cloud-located hosts), there is yet another flag to set in Google's never ending battle with spammers:
https://accounts.google.com/b/0/DisplayUnlockCaptcha
Recently, I have found that this issue can be resolved by confirming that the activity has originated from a request I initiated, by visiting Google Account
I had to confirm, under Security Events, that the suspicious activity was in-fact me, even though the originating server from where the request came from was cloud hosted, and therefore over 1000 km away. After clicking this step, and setting less secure apps, I was able to use getmail to retrieve my mail, over ssl using either imap or pop.
Just want to highlight Danilo Bargen's comment:
An easier way to connect to the other network using tunnels is to use a dynamic tunnel (ssh -D 6789 remotehost) and then to set localhost:6789 as SOCKS5-Proxy in Firefox. Then you are basically in the remote network with your browser and localhost is the remote host
Also I want to add that SOCKS Proxy method also works with Chrome. As a result you can log in with your local web browser as if you are on a server.
change your settings at https://www.google.com/settings/security/lesssecureapps so that your account is no longer protected by modern security standards.
This is occuring due to some apps are marked as less secure apps by google. So to use those apps, you need to give access for those apps. to do that follow http://www.codematrics.com/your-imap-server-wants-to-alert-you-to-the-following-please-login-via-your-web-browser-gmail/
Hope this will solve your issue.
In my case, when i tried to login to the google account via web, it asked me for a captcha. I entered the captcha and then the automation worked.