Gmail (@gmail.com) · 2-Step Verification + App Password

Gmail = Google's personal mailbox (@gmail.com). Binding it to Laifaxin requires 2 mandatory steps:

Step	Content	Required
1️⃣ Enable 2-Step Verification	Turn on 2FA in Gmail backend, bind phone number	✅ Required
2️⃣ Generate App-Specific Password	16-digit standalone password for Laifaxin	✅ Required

→ Fill the password field with the 16-digit app password (NOT your Gmail login password), otherwise it fails 100% of the time.

⚠️ Gmail does not allow direct login passwords

Since 2022, Gmail mandates app-specific passwords for third-party client login. Filling the login password directly → 535 Authentication failed error.

The only alternative is enabling "Less secure app access", which Google has been progressively disabling and is not recommended (high security risk).

1. Server Parameters

Type	Server Address	SSL Port
📥 IMAP (Receive)	`imap.gmail.com`	`993`
📤 SMTP (Send)	`smtp.gmail.com`	`465`

Encryption: SSL / TLS

2. Enable 2-Step Verification

1. Open Google Security Settings

Go directly to Google Security Settings. Once logged in, find 2-Step Verification and click in.

Google Security Settings · 2-Step Verification entry: "How you sign in to Google" section on Security page, "2-Step Verification" option

2. Get Started

Click Get started → enter Google login password to verify identity.

2-Step Verification · Get started button: welcome page primary "Get started" button, launches 2FA setup wizard

3. Enter Phone Number

Enter the phone number to receive verification codes:

2-Step Verification · Phone number entry: fill in phone number + select country code

Select SMS as the receiving method:

2-Step Verification · SMS receiving: choose SMS / voice call to receive code

4. Enter Code + Enable

Enter the SMS code → Next → after verification, click Turn on → 2-Step Verification activated.

2-Step Verification · Successfully enabled: "Turn on" button after verification, completes 2FA setup

3. Generate App-Specific Password

💡 Must enable 2-Step Verification first to see this option

Without 2-Step Verification → "App passwords" entry simply doesn't appear. Complete § 2 above first, then come here.

1. Open App Passwords Page

Go directly to Google App Passwords page.

You can also use the search bar at the top of Security settings — search "app passwords":

App Passwords · Entry: use Security page top search bar to find "app passwords" quickly

2. Create Password

Enter app name (e.g. Laifaxin) → click Create:

App Password · Create: enter app name "Laifaxin" + Create button

3. Copy and Save Immediately

Google generates a 16-digit app-specific password (4 groups, each 4 chars, e.g. abcd efgh ijkl mnop).

App Password · Result: popup shows 16-digit password (4-group format), shown only once — copy and save immediately

⚠️ Password shown only once

Once you close the popup, you can never see this password again. Immediately copy and save to a password manager (1Password / Bitwarden) or a text file.

If lost, your only option is to generate a new password — the original is invalidated.

4. Bind in Laifaxin

Go to Laifaxin Email Account and add Gmail:

Field	Fill With
Email address	`your@gmail.com`
Password	⚠️ Paste the 16-digit app password (remove spaces, NOT the login password!)
IMAP server	`imap.gmail.com` · port `993` · SSL
SMTP server	`smtp.gmail.com` · port `465` · SSL

Laifaxin binding Gmail: password field with 16-digit app password (NOT login password!), other fields per server params table above

After binding succeeds, enable email sync + notifications (see Check New Emails).

📋 Pit-Avoidance Summary

Pit	Consequence	How to Avoid
🔴 Bind with Gmail login password	`535 Authentication failed`	Must use 16-digit app-specific password
🔴 Look for App Passwords without 2-Step Verification	"App passwords" entry doesn't appear	Must enable 2-Step Verification first before generating app password
🔴 Forget to save the generated app password	Closed popup, can never see again	Immediately copy to password manager
🟡 Paste app password with spaces	May fail to recognize	Gmail shows the password in 4 groups with spaces — remove spaces before pasting
🟡 IMAP protocol not enabled	`IMAP not enabled` error	Go to Gmail Settings → Forwarding and POP/IMAP and enable IMAP
🟡 Bulk-send via Gmail	Account suspended / throttled within 24h	Personal mailboxes are for 1-on-1 only; for bulk, use a Quality Channel
🟡 Changed Gmail password / deleted app password	Laifaxin uses stale creds, send fails	Regenerate app password, then re-sync in Laifaxin

❓ FAQ

Q1 · Got "IMAP not enabled" — what do I do?

Gmail's IMAP protocol is enabled by default, but some accounts require manual enabling. Steps:

Step	Action
1️⃣	Go to Gmail Settings → Forwarding and POP/IMAP
2️⃣	Under "IMAP access" select Enable IMAP
3️⃣	Click Save Changes

❌ Strongly discouraged. Even if technically possible via "Less secure app access" (which Google has been progressively disabling), it's not recommended:

Dimension	App-specific Password	Login Password
Security	✅ Compromise doesn't affect main account	⚠️ Compromise = main account at risk
Invalidation control	✅ Laifaxin's password can be invalidated alone	⚠️ Change main password = all apps need reconnection
Google policy	✅ Officially recommended	⚠️ Deprecated

Q3 · Can the 16-digit app password be reused?

Yes. The same app password can be bound to multiple clients (e.g. Laifaxin + Foxmail). But we recommend generating one per client:

Higher security (a compromise of one client doesn't affect others)
Laifaxin's password leaked → delete it alone on the App Passwords page, other clients unaffected

Q4 · Do I need a VPN to send/receive Gmail?

❌ No. Laifaxin has built-in overseas email nodes — Gmail send/receive goes through Laifaxin's servers, no VPN needed for users.

Q5 · How many emails can Gmail send per day?

⚠️ Gmail's official cap is 500/day, but we strongly discourage hitting the cap — sudden high volume triggers Google's anti-spam system, easily leading to temporary suspension (24-48h) or permanent restriction.

👉 Recommended pacing (warming strategy):

Stage	Daily Volume	Pacing
🐣 Week 1 (newly bound)	Start at 50	5-10 min between sends, mimic human behavior
🐤 Weeks 2-4	100-200	Adjust based on reply / bounce rate
🦅 Stable phase (1 month+)	Max 300	Not recommended to exceed, leave a safety margin

→ Never "bulk send" at any stage! Bulk = same content sent en masse in short time = 100% triggers risk control.

🚀 For real bulk sending, use a Quality Channel:

✅ Doesn't bind your Gmail, no risk of suspension
✅ ¥0.007 per email, far cheaper than losing your Gmail main account
✅ System auto-throttles + random template variations + multi-account rotation, anti-spam systems can't catch it

Q6 · Lost my app password — what now?

You can't recover the original password (Google only displays it once). Steps:

Step	Action
1️⃣	Go to App Passwords page delete old password
2️⃣	Generate new password
3️⃣	In Laifaxin Email Account update password + re-verify save

💡 Learning Tips

Stage	Tip
🔐 Safeguard the app password	Use a password manager (1Password / Bitwarden); if lost, only regeneration works
📋 One password per client	1 for Laifaxin, 1 for Foxmail — delete a single one if leaked, others unaffected
🔄 Quarterly review	Go to App Passwords page and delete apps you no longer use
⚙️ Pair with Laifaxin advanced features	Once bound, play with Email Tracking / Templates / Smart Follow-up
🚀 Bulk-send via Quality Channel	Heavy bulk via Gmail will get suspended — always use a Quality Channel (doesn't bind your mailbox)
🆘 Check docs on error	Codes like `535` / `IMAP not enabled` — see email-account error-code troubleshooting

Topic	Link	Description
📨 Email Account Configuration	email-account	Binding flow + error code troubleshooting table
🏢 Google Business Mail	201-guge-qiyeyouxiang-google-business-mail	Google Workspace (company domain)
📮 Personal Mailboxes	100-gerenyouxiang-personal-mailbox	16 Major Mailboxes Quick Reference
📬 Check New Emails	check-new-emails	After binding, enable sync + notifications
🚀 Email Mass Sending	email-mass-sending	Bulk send via Quality Channel (doesn't bind Gmail)
📊 Email Tracking	email-tracking	See whether Gmail-sent emails got opened

📱 Issues with configuration?

Scroll to the bottom of this page, scan the support WeChat QR (in footer) for one-on-one help — immediate response during work hours, replies first thing next morning if after hours.

📖 About Gmail (@gmail.com)

What is Gmail?

Gmail is the free email service launched by Google in 2004. As of today, it has over 1.8 billion monthly active users globally — one of the most widely used mailboxes in the world. Gmail provides 15 GB free storage (shared with Google Drive), supports multi-device sync, powerful anti-spam filtering, smart categorization (Promotions / Social / Updates), and more.

Personal Gmail vs Google Workspace (Business)

Dimension	👤 Personal Gmail (@gmail.com)	🏢 Google Workspace (company domain)
Email suffix	`@gmail.com`	`@yourcompany.com`
Price	Free	Paid (monthly per user)
Storage	15 GB (shared with Drive)	30 GB - 5 TB (by plan)
Professionalism	Personal-grade	Enterprise-grade, B2B foreign-trade recommended
Admin console	None	Yes (manage all employee mailboxes in domain)
Custom domain	❌	✅
Configuration	This article	See Google Business Mail

Why does Gmail require app-specific passwords?

Google security policy evolution:

2014: Google introduced "Less secure app access" toggle — main password can log in third-party clients
May 2022: Google officially disabled this toggle, mandating OAuth 2.0 or app-specific passwords for third-party clients
Since 2024: all new accounts and most old accounts no longer support less secure apps

→ Now, binding Gmail to any third-party client (Laifaxin / Foxmail / Thunderbird, etc.) requires 2-Step Verification + an app-specific password.

Is Gmail suitable for foreign-trade development?

1-on-1 follow-up / inquiry replies ✅ Suitable (high international acceptance) Bulk cold emails ⚠️ High risk:

Risk	Description
Send volume limits	Gmail's official cap is 500/day, but strongly discouraged from hitting cap: Week 1 start at 50 → gradually scale to max 300 in stable phase; bulk not recommended — high volume of identical content quickly gets suspended
Domain reputation	Heavy bulk → triggers anti-spam rules → domain on spam list
Account risk	High volume in short time → Google suspects compromise → temporary suspension

Foreign-trade verdict:

🤝 Light precise follow-up → Gmail works
🚀 Heavy cold email → use a Quality Channel (doesn't bind Gmail, no risk of suspension)

Laifaxin's built-in overseas email nodes · Gmail access from China made easy

Due to network conditions, direct Gmail connections from China are often unstable. Laifaxin has built-in overseas email nodes:

✅ Gmail send/receive goes through Laifaxin servers
✅ No need for users to use VPN
✅ Receive latency < 1 minute (sync interval recommended 3-5 min)

🔗 Permalink: https://laifa.xin/youxiang/101-guge-gmailyouxiang-google-personal-email

1. Server Parameters​

2. Enable 2-Step Verification​

1. Open Google Security Settings​

2. Get Started​

3. Enter Phone Number​

4. Enter Code + Enable​

3. Generate App-Specific Password​

1. Open App Passwords Page​

2. Create Password​

3. Copy and Save Immediately​

4. Bind in Laifaxin​

📋 Pit-Avoidance Summary​

❓ FAQ​

Q1 · Got "IMAP not enabled" — what do I do?​

Q2 · Can I skip the app password and just use my Gmail login password?​

Q3 · Can the 16-digit app password be reused?​

Q4 · Do I need a VPN to send/receive Gmail?​

Q5 · How many emails can Gmail send per day?​

Q6 · Lost my app password — what now?​

💡 Learning Tips​

📚 Related Features​

📖 About Gmail (@gmail.com)​

What is Gmail?​

Personal Gmail vs Google Workspace (Business)​

Why does Gmail require app-specific passwords?​

Is Gmail suitable for foreign-trade development?​

Laifaxin's built-in overseas email nodes · Gmail access from China made easy​