Why you can trust ZDNET
:ZDNET independently tests and researches products to bring you our best recommendations and advice. When you buy through our links, we may earn a commission.Our process
'ZDNET Recommends': What exactly does it mean?
ZDNET's recommendations are based on many hours of testing, research, and comparison shopping. We gather data from the best available sources, including vendor and retailer listings as well as other relevant and independent reviews sites. And we pore over customer reviews to find out what matters to real people who already own and use the products and services we’re assessing.
When you click through from our site to a retailer and buy a product or service, we may earn affiliate commissions. This helps support our work, but does not affect what we cover or how, and it does not affect the price you pay. Neither ZDNET nor the author are compensated for these independent reviews. Indeed, we follow strict guidelines that ensure our editorial content is never influenced by advertisers.
ZDNET's editorial team writes on behalf of you, our reader. Our goal is to deliver the most accurate information and the most knowledgeable advice possible in order to help you make smarter buying decisions on tech gear and a wide array of products and services. Our editors thoroughly review and fact-check every article to ensure that our content meets the highest standards. If we have made an error or published misleading information, we will correct or clarify the article. If you see inaccuracies in our content, please report the mistake via this form.
Gmail is one of the most widely used email services on the planet. With millions of users and hundreds (or thousands) of third-party apps and services that are available to connect with Gmail, Google had to come up with a reliable method of securing those accounts. The first (most widely-used) part of that security comes by way of two-factor authentication (2FA), which should be considered a must-use for anyone who works with a Google account.
The problem with 2FA is that third-party apps aren't always set up to authenticate with the added layer of security. That means if you have 2FA enabled for your Google account, connecting a third-party application or service won't work with the standard username/password combination.
So Google created a feature to get around this problem called App Passwords.
An app password is a password that is generated so that a third-party app can connect to your Gmail account. You then use it instead of your Google account password when using that app. It really is that simple. And for anyone who's added 2FA to their Google accounts (which you most certainly should), the App Passwords feature is a necessity for connecting third-party apps and services.
I'm going to show you how to use the App Passwords feature to generate an app password for Gmail. Just remember, this is only required if you have 2FA enabled for your Google account and if you need to connect a third-party app or service to Gmail. If you're not in that situation, you don't need to do this.
Creating an app password for Gmail
What you'll need: To create an app password, you'll need a valid Gmail account. I'll assume you do have 2FA enabled and are looking to connect an app to Gmail.
1. Log in to your Google account
The first thing to do is open a web browser and log in to your Google account.
At the bottom of the page, you should see two drop-downs, one titled "Select app" and the other "Select device." Click the "Select app" drop-down and choose Other. You will then be prompted to name the app password. I would suggest naming the app password for the app or service you'll use it for. After naming the app password, click GENERATE.
4. Copy your new app password
After you click GENERATE, a new pop-up window will appear giving your new app password. Copy that password so you can use it for the third-party app or service you want to connect to Gmail. Once you have the password copied, click DONE.
It's very important to understand that these app passwords can only be viewed once. After clicking DONE, you won't be able to view the password again, which is why it's important to copy the password and use it immediately. I would suggest not clicking DONE until you know the app password works for the app or service you want to connect to your Gmail.
If you disconnect an app or service from Gmail, you should also delete the app password by clicking the associated trash can icon in the App Passwords listing. It's always better to be safe than sorry.
And that's all there is to creating a Gmail app password. If you don't already have 2FA enabled for Gmail, I would highly recommend you do so.