INBOUNDEMAILPASSWORD - Detailed description

Overview

Parameters:INBOUNDEMAILPASSWORD
Category: Custom
Default value: String.Empty
Product: eTASK.Other (Custom)

What does this parameter do?

INBOUNDEMAILPASSWORD stores the encrypted password for accessing the incoming email inbox. This parameter is used in conjunction with INBOUNDEMAILUSER to retrieve emails from configured incoming mailboxes. The password is stored encrypted in the database and automatically decrypted when used.

What is this parameter used for?

• Authentication with the email inbox for incoming emails

• Retrieving emails from configured inboxes via timer jobs

• Connection to Exchange servers or Outlook 365 for email processing

• Automatic email processing in the eTASK system

• Secure storage of email credentials

Technical Details (for Administrators)

Format: Text string (encrypted password in Base64 format)
Default value: String.Empty (empty)

Valid values:

• Encrypted password in Base64 format

• Empty (String.Empty) if no email retrieval is configured

Important notes:

• The password is stored encrypted in the database

• It is entered via the “Change Password” button in the form

Interaction with other parameters:

• INBOUNDEMAILUSER: The associated username for email access

• EWSURL: The URL of the Exchange Web Services for mail retrieval

• AZURETENANTID / AZURECLIENTID: For Outlook 365 authentication

When should you change this value?

Set the value (enter the encrypted password) if:

• An incoming email mailbox needs to be configured for automatic mail retrieval

• The email account password has been changed for security reasons

• A new mailbox is being set up for email processing

• The previous login credentials no longer work

• A migration to a new email system is taking place

Leave this field blank (String.Empty) if:

• No automatic email retrieval is required

• The email functionality is not used

• Only outgoing emails are to be sent

Important Notes

1. Dependency on timer jobs
   The parameter is used by timer jobs that regularly check the mailbox. Incorrect login credentials can lead to repeated login attempts.

Security

Does changing this parameter affect security?

Yes, this parameter is highly relevant to security, as it enables access to email mailboxes.

Positive aspects:

• Password is stored encrypted in the database

• Automatic decryption only occurs with a valid format

• No plaintext storage of email passwords

Note:

• If compromised, emails in the configured mailbox can be read

• Failed authentication attempts may result in the email account being locked

• Regular password rotation is recommended

Data protection assessment:

• Access to email mailboxes may involve personal data

• Encryption complies with GDPR requirements for the protection of access data

• Logging of access events should be enabled

• Changes should be documented

Recommendation: Use dedicated email accounts for automatic email retrieval with minimal permissions. Change the password regularly and document all changes. Restrict access to the system configuration to authorized administrators.

Practical example

Initial situation: Your company wants to automatically capture incoming invoices via email in the eTASK system. A dedicated mailbox "service@ihr-unternehmen.de" has been set up for this purpose.

Configuration:

1. On the configuration page, uncheck the “Password” box

2. Re-check the box

3. Enter a new password

After the change:

• The timer job connects to the mailbox service@ihr-unternehmen.de

• The password is automatically decrypted for authentication

• New emails are retrieved and processed in the system

• Invoices are delivered to the eTASK.Property-Management inbox

• Automated processing runs without manual intervention

Result: The email-based ticket inbox works automatically. Service requests are imported directly from the mailbox into eTASK, which shortens processing time and eliminates manual data entry.

Recommended setting

For standard installations:String.Empty(empty, no email retrieval configured)

Reason:

• Email inbox processing is optional

• Requires additional configuration of mailbox and timer jobs

• Not every installation requires automatic email retrieval

Exceptions (email retrieval required):

• Configure INBOUNDEMAILUSER and EWSURL in parallel

• Assign a new password

• Test the connection before going live

• Implement regular password rotation

note592f9bff-9e24-4e80-ac61-c55d7b6fb32b

Tip: Use dedicated service accounts with minimal permissions for email retrieval. Document the process so that the correct steps are known when passwords are changed. Monitor the timer job logs for authentication errors.

Tip: Use dedicated service accounts with minimal permissions for email retrieval. Document the process so that the correct steps are known in case of password changes. Monitor the timer job logs for authentication errors.