password security – PSMail.net support pages

PSMail2FA vs. Device Password: Which One Do You Need?

PSMail offers two separate password systems, each designed for a different purpose. While both help keep your account secure, using the right one in the right context is important. Here’s a quick guide to help you understand the difference and avoid confusion.

Device Password

Purpose: Used for email apps like Outlook, Apple Mail, or Thunderbird.

What it is:

A separate, app-specific password that allows email clients to access your PSMail account without needing 2FA.
It’s not your main password and should only be used in email programs that don’t support modern authentication.
Each device (laptop, desktop, iPad) all should have their own unique passwords.

Use it when:

Setting up PSMail on email clients (Outlook, Thunderbird, iOS/Android Mail apps).
Configuring devices or applications that require direct mail server access.

More info: Device Password Setup

PSMail2FA (Two-Factor Authentication)

Purpose: Protects your web-based login to PSMail (e.g., https://mail.psmail.net)

What it is:

PSMail2FA adds an extra layer of security when you log in through a browser.
You can choose:
- Push Notification (ZeroPass): Approve login from your mobile device.
- One-Time Password (OTP): Use a time-based code from an authenticator app.

Use it when:

Logging in at mail.psmail.net via a browser.
Accessing webmail or PSMail account settings online.

More info: ZeroPass Push Authentication

Quick Summary

Scenario	Use This
Setting up an email app (like Outlook)	Device Password
Logging in through a web browser	PSMail2FA (Push/OTP)

Keep both secure, and don’t mix them up. If you ever receive an error logging in, double-check that you’re using the right password for the right place.

Have questions? Contact PSMail support for help

ZeroPass – PSMail Mobile Apps

In the ongoing effort to reduce the risk of password usage, PSMail apps now support also ZeroPass our password less technology that is built using FIDO2 technology. If your phone supports this secure way of authentication you will be prompted to enable and use the Security Key (Android) or PassKey (iPhone) as a place to securely store your private key. Follow along to learn how to use this.

ZeroPass – Browser Login

PSMail’s ZeroPass technology works to provide you passwordless access to your account. This is done using the latest FIDO2 authentication framework. If your device supports a FIDO2 enabled browser , you can register the device to login without having to enter your password. The best available local authenticators – such as Biometric or local hardware keys (USB) – can safely store a private key that can be registered and used for passwordless login. Follow along to learn how

Device Password

PSMail supports a capability known ass “Device Password” or “App Password” for securing your account. The problem with password is that a single password is typically used for your account across multiple devices and multiple. This single password can possibly be guessed with scanning attempts by Botnets (a collection of compromised computers).

What is a software token and how do I use it?

A software token is a type of Two Factor Authentication (2FA) that provides additional security for your account by requiring both your password and a random token number for access. The random token number is dependant on a private key file that is generated for you.* The token number changes every 15 minutes, making it impossible for others to eavesdrop and/or guess your access information.

Continue reading What is a software token and how do I use it?

What is virtual keypad login?

Virtual keypad is a technology used by PSMail for subscribers who need to access their account from a public place or using a public computer. Many such situations, such as at an Internet cafe’ or airport, expose you to keystroke loggers and software password sniffers that can collect your password as you type it, thus compromising your secure email account. Continue reading What is virtual keypad login?

What is a One Time Password and how do I use it?

A one time password (OTP) is a password that is only valid for a single login session or transaction. This article explains their uses and how to generate one.

Continue reading What is a One Time Password and how do I use it?

Strong Passwords

PSMail Quick Tip: Poor passwords are the weakest link in your security. To have the best password, it’s best to think of it not as a password but as a passphrase. A good passphrase is easy to remember but it is also long and contains a mixture of letters, numbers, and/or special characters that make it difficult for anyone to guess. Also, keep in mind that a long passphrase you can remember is better than a short, complex password that you will forget or have to jot down on paper (where it can be lost or stolen).

Continue reading Strong Passwords

Don’t Save Passwords

PSMail Quick Tip: Although it’s convenient to have your computer remember your login and password for various websites, it’s a security risk. At PSMail, we recommend that you always decline that shortcut – especially on secure sites.