Have a Question?
< All Topics

Generating app passwords for Email Verification


An app password is a unique password generated by a service provider, which is an alternative way to secure your account. By using an app password, you avoid having to enter the verification code each time you log in to that particular app or device. It provides a workaround to enable 2FA protection even for applications that lack direct support for the standard verification code process.

It’s important to note that app passwords are typically intended for single-use and are usually associated with specific apps or devices. They are separate from your regular account password and are generated on the service provider’s website or in your account settings. If you suspect that an app password has been compromised or that you no longer need it, you can revoke or delete it through your account settings and generate a new one if necessary.

Where do I use the app password in Su Social?

You will need the app password if you are looking to automate email verification for your Instagram accounts in Su Social or to handle email confirmation when creating new Instagram accounts. The app password will be used in lieu of the regular email account password.

Email Validation tab

Enter the email address, app password, email server (if necessary), and port, then click on Test IMAP/POP3. If it returns that IMAP/POP3 settings are Valid, then Su Social can use this information to email verify accounts using the option from Social Profiles > Actions on Selected Profiles and Automatic Email Verification from Settings > Social Platforms > Instagram.

IG Create Accounts

The same thing applies; enter the email address, app password, and email server (if necessary), then click on TEST EMAIL. If it returns with Email is Valid, then Su Social can handle the email confirmation on your behalf.

Google accounts

Google requires you to set up 2-Step Verification first before you can generate app passwords.  Go to https://myaccount.google.com/security and sign in with your Google credentials. You will then see that 2-Step Verification is off, so click on the arrow.

The next page will have a brief explanation of why 2SV is important. Click Get Started.

In some cases, you may be asked to enter your password again.

Enter your phone number and choose whether to get the code by text or call. Click NEXT.

Type the code you received, and click NEXT.

Select TURN ON.

You will be routed to the Security menu again, but you’ll see this time that 2SV has been switched on. Click on the 2SV option again.

Scroll down and select App Passwords.

Click on Select app and select others.

‚ÄčType in the app name and choose and choose GENERATE.

The App Password is the 16-character code in the yellow bar on the pop-up window, copy the password

and use that password in Su Social in the email password field.

Yahoo accounts

Go to your Yahoo Account Security page and click on Generate app password.

The next pop-up has a brief explanation of why app passwords are needed. Click on Get Started.

Enter the app name; we’ll, of course, use Su Social; then select Generate password.

Copy the app password before you click on DONE.

You may then use that app password in Su Social in the email password field.

Rediffmail accounts

Open your Rediffmail account, and click on Settings > Account Info. You need to enable POP/SMTP access first to get a valid response when setting up Email Validation.

Just toggle the switch to enable POP/SMTP Access.

Once it’s enabled, Rediffmail will suggest that you set up a secure password.

Click on Settings > Account Info again and select Secure Password this time.

It will tell you if you have any existing secure passwords. Click on Generate Password.

Copy the secure password that shows on the screen.

Paste the secure password on the Email Validation tab and click on Test IMAP/POP3.

Mail.ru accounts

Mail.ru is a Russia-based email provider. You may translate the webpage to English or your preferred language to navigate the options more easily.

Same as Rediffmail, you need to enable POP/SMTP access first to get a valid response when setting up Email Validation. Go to https://e.mail.ru/settings/ and navigate to the Safety tab then select External Services.

Toggle the switch to enable access for IMAP, POP, and SMTP.

Go back to the Safety tab and select Passwords for external applications.

There’s a brief reminder of what an external app password is. Click Add.

Enter the app name where you’ll use the app password then click Continue.

You may be asked to enter your email account password for security purposes as well as a captcha. Click Continue.

Copy the external app password created.

Enter it on the password field on the Email Validation tab and use imap.mail.ru for the IMAP/POP3 server (since it doesn’t show valid at times if you test without this server).


For Outlook/Hotmail, there’s no app password needed, but you need to enable POP access first.

  1. Login to your account at https://outlook.live.com/mail/0/ and click on the gear icon at the top-right corner.
  2. Go to the Mail option.
  3. Navigate to Sync email.
  4. Under POP and IMAP, toggle the switch to let devices and apps use POP.
  5. Save your settings.

After that, you need to input outlook.office365.com on the IMAP/POP3 server field before you click on TEST IMAP/POP3.


In today’s digital age, generating app passwords is crucial for enhancing online security. With the increasing reliance on online services, app passwords provide an additional layer of protection, safeguarding user accounts from unauthorized access and potential hacking. These randomly generated and distinct passwords enable separate access levels for different applications such as Su Social, allowing users to maintain control over security permissions and easily revoke access if needed. By generating app passwords, individuals can actively protect their online presence, mitigate cyber threats, and ensure peace of mind when accessing various services and applications.

Table of Contents