Microsoft Email (Outlook / Hotmail) · Two-Step Verification + App Password

Microsoft personal email (@outlook.com / @hotmail.com / @live.com) is the world's second-largest email service (after Gmail). Connecting it to Laifaxin takes 2 steps:

Step	What	Required
1 Enable two-step verification	Turn on 2FA in your Microsoft account	Yes
2 Generate an app password	After 2FA is on, create a dedicated password for Laifaxin	Yes

When binding, paste the app password into the password field (not your Microsoft login password) — anything else will fail 100% of the time.

Outlook SMTP port is special: 587 + STARTTLS

Unlike most mailboxes that use 465 SSL, Outlook's SMTP uses 587 + STARTTLS.

If your client can't detect this automatically, manually pick STARTTLS encryption + port 587 or sending will fail.

1. Server Settings

Type	Server	Port	Encryption
IMAP (incoming)	`outlook.office365.com`	`993`	SSL
SMTP (outgoing)	`smtp.office365.com`	`587`	STARTTLS

SMTP port differs from other mailboxes

Most mailboxes: 465 + SSL
Outlook: 587 + STARTTLS — important!

If your client defaults to 465, manually change it to 587 and pick STARTTLS encryption.

2. Get the App Password

2.1 Enable two-step verification

Microsoft account · entry point to enable two-step verification: Security settings page with the "Two-step verification" option

Follow the prompts to complete setup → status shows "On":

Microsoft account · two-step verification enabled: status reads "On" and you can move on to generating app passwords

No 2FA = no app password option

Same as Gmail / Yahoo: you must turn on two-step verification first to see the "App passwords" entry.

2.2 Generate the app password

On the same Security page → find the App passwords section → click Create a new app password:

Microsoft account · create app password: find the "App passwords" section under advanced security options and click "Create a new app password"

The system generates the password immediately → copy it right away:

Microsoft account · app password generated: dialog showing the app password (displayed only once) — copy and save it immediately

App password shows only once

You can't see it again after closing the dialog. Immediately save it to a password manager (1Password / Bitwarden).

If lost, you can only generate a new one.

3. Bind in Laifaxin

Go to Laifaxin Email Accounts and add your Microsoft email:

Field	What to fill
Email address	`your@outlook.com` / `@hotmail.com` / `@live.com`
Password	Paste the app password (NOT the login password!)
IMAP server	`outlook.office365.com` · port `993` · SSL
SMTP server	`smtp.office365.com` · port `587` · STARTTLS

Laifaxin binding Microsoft email: password field gets the app password (not the login password) + SMTP port 587 STARTTLS

After a successful bind, status shows Active:

Microsoft email bound successfully: this Outlook/Hotmail account shows "Active" in the email accounts list

After binding, turn on email sync + notifications (see Check New Emails).

Common Pitfalls

Pitfall	Consequence	How to avoid
Using the Microsoft login password	`535 Authentication failed`	Must use the app password (not login password)
Using 465 SSL for SMTP	Sending fails / times out	Switch to 587 + STARTTLS (Outlook's special port)
Looking for app password without 2FA	"App passwords" entry doesn't appear	Must enable 2FA first before generating app passwords
Not saving the app password after generation	Gone forever after closing the dialog	Copy immediately into a password manager
Turning off 2FA	All app passwords instantly invalidated	Don't toggle 2FA casually — turning it off means re-binding every client
Heavy mass sending via Outlook	Rate-limited or temporarily blocked within 24h	Personal mailboxes are 1-on-1 only; use premium channels for bulk
Sharing one app password across clients	Hard to revoke individually	Each client should have its own app password

FAQ

Q1 · What is an "app password"?

An app password is a dedicated password Microsoft generates for apps / devices that don't support two-step verification (including third-party mail clients).

Aspect	Microsoft login password	App password
Use	Sign in to Outlook web / app	Used by third-party clients
Quantity	1	Multiple
Revocation	Change password = all apps disconnect	Can revoke individually without affecting the main account
2FA relation	Main password + 2FA on login	Bypasses 2FA (single long-lived password)
Leak risk	Main account at risk	Only that one app affected

Q2 · What happens if I turn off two-step verification?

All previously created app passwords are immediately invalidated! Meaning:

Impact	Detail
Laifaxin / Foxmail / Thunderbird etc. all disconnect	You must sign in / re-bind every client
To use third-party clients again	You must re-enable 2FA + regenerate app passwords

→ Don't turn off 2FA — it creates a lot of cleanup work.

Q3 · Can I reuse one app password across clients?

Technically yes, but strongly discouraged. Recommended: generate a separate app password for each client:

Higher security (a leak in one client doesn't affect others)
To revoke one client → simply delete its password
Easier auditing (you can see each app name in your Microsoft account)

Q4 · Why does Outlook SMTP use port 587?

Port	Encryption	Purpose
`25`	None / STARTTLS	Historical standard (often blocked by ISPs)
`465`	SSL/TLS (implicit)	Most mailboxes (QQ / 163 / Gmail also support)
`587`	STARTTLS (explicit upgrade)	Outlook's recommended port

Microsoft pushes 587 because it follows the IETF RFC 6409 "mail submission port" standard — more modern than the legacy 465. Using 465 with Outlook often fails — you must use 587.

Q5 · How many emails can Outlook send per day?

Microsoft's official limit is 300 per day (personal edition), even stricter than Gmail's 500. Don't hit the cap — triggering anti-spam means temporary account suspension.

Recommended ramp-up (warmup strategy):

Phase	Daily volume	Cadence
Week 1 (new bind)	Start at 50	5–10 minute intervals
Weeks 2–4	100–150	Adjust based on replies / bounces
Stable (1 month+)	Max 200	Don't hit the cap — keep a safety margin

→ Never "mass blast" at any stage!

Truly need bulk sending? Use premium channels:

Doesn't touch your Outlook, no risk of ban
¥0.007 per email, system auto-throttles

Q6 · Do I need a VPN to use Outlook?

No. Laifaxin has built-in overseas mail nodes — Outlook traffic goes through Laifaxin servers without a VPN.

Q7 · Is Outlook suitable for foreign trade?

Scenario	Fit	Notes
1-on-1 client follow-up	Highly suitable	Globally recognized, excellent acceptance in Europe/US (second only to Gmail)
Inquiry replies	Suitable	Strong professional feel in business contexts
Bulk cold outreach	Not suitable	Use premium channels, don't tie to Outlook
Multi-touch auto follow-up	Not suitable	Use smart sequence + premium channels

Verdict: Outlook is a top personal-mailbox choice for European/US client development, on par with Gmail.

Learning Tips

Topic	Advice
Safeguard the app password	Store in a password manager (1Password / Bitwarden) — if lost, you can only regenerate
Separate password per client	One for Laifaxin / one for Foxmail / one for Thunderbird — enables precise revocation
Don't turn off 2FA	Turning it off invalidates all app passwords; re-binding is painful
Periodic review	Quarterly visit your Microsoft Account security settings and delete unused app passwords
Pair with Laifaxin features	After binding, try email tracking / templates / smart sequence
Use premium channels for bulk	Heavy mass-sending via Outlook will get you banned — bulk must use premium channels
Outlook is a strong foreign-trade choice	A top-tier international personal mailbox alongside Gmail

Topic	Link	Description
Email account setup	email-account	Binding flow + error code troubleshooting
Common personal mailboxes	100-gerenyouxiang-personal-mailbox	16 mailbox quick-reference table
Google Mail (@gmail.com)	101-guge-gmailyouxiang-google-personal-email	Similar setup (app-specific password)
Yahoo Mail (@yahoo.com)	102-yahu-yahooyouxiang-yahoo-personal-mailbox	App password
Apple iCloud Mail	113-pingguo-icloudyouxiang-apple-personal-email	App-specific password
Check new emails	check-new-emails	Enable sync + notifications after binding
Mass sending	email-mass-sending	Bulk: use premium channels

Having setup issues?

Scroll to the bottom of this page, scan the customer-service WeChat QR (already in the footer) for 1-on-1 help — instant response during business hours, first thing next morning otherwise.

About Microsoft Mail (Outlook / Hotmail)

What is Microsoft Mail?

Microsoft Mail is the free personal email service from Microsoft, the world's second-largest provider (after Gmail), with over 400 million global users. It has a wide install base among European/US users and integrates deeply with Office / Skype / OneDrive.

Main Microsoft Mail suffixes:

Suffix	Launched	Status
`@hotmail.com`	1996 (oldest)	Still active (many legacy users)
`@outlook.com`	2012 (rebrand)	Primary suffix
`@live.com`	2007 (short-lived)	Still active

→ All share the same backend (outlook.office365.com); setup is identical.

Why does Outlook SMTP use 587 + STARTTLS?

Microsoft follows the IETF RFC 6409 mail submission standard:

Port	Encryption	Trait	Microsoft recommends
`25`	None / STARTTLS	Legacy port, often ISP-blocked	No
`465`	SSL/TLS (implicit)	Older mailbox standard	No
`587`	STARTTLS (explicit upgrade)	Modern submission standard	Yes

STARTTLS vs SSL/TLS:

SSL/TLS: encrypts at connection time (implicit)
STARTTLS: starts plaintext, upgrades to encrypted (explicit)

Technically STARTTLS is more flexible (compatible with older clients), but easy to misconfigure. Microsoft mandates 587 + STARTTLS.

Why does Outlook require an app password?

Microsoft security policy:

Microsoft is phasing out basic authentication (direct main-password sign-in for third-party clients) in favor of modern auth (OAuth 2.0 / app passwords)
Third-party SMTP/IMAP sign-in for personal Outlook must use an app password (paired with 2FA)

→ You can no longer use the main password directly for SMTP/IMAP.

Is Outlook good for foreign trade?

1-on-1 follow-up / inquiry replies Highly suitable (top international choice alongside Gmail):

Strength	Detail
High international recognition	One of the best-known international mailboxes for European/US customers
Business feel	`@outlook.com` looks more business-like than Gmail
Strong deliverability	Anti-spam reputation is solid
Microsoft 365 ecosystem	Integrates with Office / Teams / OneDrive

Bulk cold outreach Not suitable:

Similar to Gmail, 300/day cap
Mass sending risks bans
Premium channels are more professional

Foreign-trade verdict:

1-on-1 precision follow-up → Outlook + Gmail both top choices
European/US B2B → Outlook is far more professional than domestic Chinese mailboxes
Bulk cold outreach → use premium channels
Top-tier B2B → custom-domain enterprise mailbox (Microsoft 365 Business is also a fine option)

Laifaxin's built-in overseas mail nodes · hassle-free Outlook access from China

Since Outlook servers are overseas, direct connections from China are occasionally unstable. Laifaxin has built-in overseas mail nodes:

Outlook traffic goes through Laifaxin servers
No VPN needed
Receive latency under 1 minute (recommended sync interval: 3–5 minutes)

Permalink: https://laifa.xin/youxiang/108-weiruan-outlookyouxiang-microsoft-personal-email

1. Server Settings​

2. Get the App Password​

2.1 Enable two-step verification​

2.2 Generate the app password​

3. Bind in Laifaxin​

Common Pitfalls​

FAQ​

Q1 · What is an "app password"?​

Q2 · What happens if I turn off two-step verification?​

Q3 · Can I reuse one app password across clients?​

Q4 · Why does Outlook SMTP use port 587?​

Q5 · How many emails can Outlook send per day?​

Q6 · Do I need a VPN to use Outlook?​

Q7 · Is Outlook suitable for foreign trade?​

Learning Tips​

Related Features​

About Microsoft Mail (Outlook / Hotmail)​

What is Microsoft Mail?​

Why does Outlook SMTP use 587 + STARTTLS?​

Why does Outlook require an app password?​

Is Outlook good for foreign trade?​

Laifaxin's built-in overseas mail nodes · hassle-free Outlook access from China​