Navigating Google’s 2025 Security Update: Essential Steps for GoldMine CRM Users to Maintain Gmail Integration
February 13, 2025
Google recently announced a critical security update taking effect in March 2025, which will restrict third-party applications like GoldMine CRM from accessing Gmail via basic username/password authentication. Instead, all connections must use the more secure OAuth 2.0 protocol. This change is part of Google’s broader effort to combat phishing, unauthorized access, and data breaches by retiring “less secure apps” (LSAs). For GoldMine users, this means proactive steps are required to ensure uninterrupted email functionality within the CRM.
Why Is Google Enforcing OAuth 2.0?
OAuth 2.0 is an industry-standard authorization framework that replaces the outdated practice of sharing passwords with third-party apps. Unlike basic authentication, OAuth 2.0:
- Eliminates password sharing: Users grant access via secure tokens, reducing the risk of credential theft.
- Granular permissions: Apps like GoldMine only receive access to specific scopes (e.g., sending emails, reading contacts) rather than full account control.
- Short-lived tokens: Tokens expire automatically, limiting exposure if compromised.
- Compliance: Aligns with modern security standards demanded by enterprises and regulatory bodies.
Google’s deadline means that after March 2025, apps using basic authentication (POP3/IMAP with passwords) will no longer connect to Gmail. Failure to switch to OAuth 2.0 will result in email sync failures, disrupted workflows, and missed communications in GoldMine.
How to Switch to OAuth 2.0 in GoldMine
For most users, upgrading to OAuth 2.0 is straightforward:
1. Navigate to Email Settings:
- Open GoldMine and go to Tools → Options → Email.
- Under the Getting Mail section, select OAuth2 from the dropdown menu.
- Choose Google or Office 365 Work/School, depending on your email provider.
2. Authenticate with Google:
- Click Connect. A browser window will open, prompting you to log into your Google account.
- Grant permissions for GoldMine to access your email (e.g., “View and send emails”).
3. Verify Configuration:
- Test sending/receiving emails within GoldMine to confirm the setup works.
What If OAuth 2.0 Isn’t Available?
If your GoldMine version only shows POP3 or IMAP options, you’re likely running an older release (pre-2020). To resolve this:
1. Upgrade GoldMine:
- Versions 2020.1 and newer natively support OAuth 2.0. Contact Wizard Systems to schedule an upgrade.
- Check your current version under Help → About GoldMine.
2. Temporary Workaround:
- For older versions, Google allows generating app passwords (if 2-Step Verification is enabled). However, this is a stopgap solution and not recommended long-term, as app passwords will also be phased out.
Why Upgrade GoldMine?
Beyond OAuth 2.0 compliance, newer GoldMine versions offer:
- Enhanced security features like MFA integration.
- Improved email tracking and synchronization.
- Compatibility with modern APIs and third-party tools.
- Critical bug fixes and performance optimizations.
Need more help? Contact Wizard Systems support for more help!