Minimalist Gmail App Password graphic featuring Google logo and Google account graphics

How to Create an App Password for Gmail

Last updated on | 14 replies

If you use 2-Step Verification on your Google Account and are encountering a “password incorrect” error when trying to access Gmail, an App Password may resolve the issue. An App Password is a 16‑digit passcode that grants an app or device restricted access to your Google Account without revealing your personal password or providing full account access.

How to Create a Gmail App Password

Note: Google now requires that you enable 2-Step Verification before you can set up an App Password.

Visit your Google App Passwords page. You may be prompted to sign in to your Google Account.

Note: If you see the message “The setting that you are looking for is not available for your account.” then you should first enable 2-Step Verification.

On the App Passwords page, enter an App Name (for example, “Gmail” or “My Email App”) and click Create. The app name helps you remember which device or application is using the password.

Google App Passwords page showing where to enter an App Name

Your Gmail App Password should now be displayed.

Screenshot of your newly generated Gmail App Password

After clicking done, the App Password code will not be displayed again. If you ever lose your App Password, simply generate a new one by repeating these steps.

Why Use an App Password?

Using an App Password is a smart security measure. It ensures that even if an individual app or device is compromised, your primary Google Account remains protected. App Passwords offer a way to limit access, allowing you to revoke access to a specific app without affecting your overall account security.

Managing Your App Passwords

You can view, manage, or revoke your App Passwords at any time by revisiting the Google App Passwords page. Regularly reviewing your list of App Passwords is a good practice to ensure that only trusted devices and applications have access to your account.

Troubleshooting Common Issues

If you encounter any issues when using your App Password, consider the following troubleshooting steps:

  • Enable 2-Step Verification: Ensure that 2-Step Verification is enabled on your account, as App Passwords require this setting.
  • Copy the Entire Code: Double-check that you have copied the full 16‑digit code accurately.
  • Generate a New Password: If your App Password stops working or you suspect it may be compromised, generate a new one.
  • Consult Google Support: For additional help, refer to Google Account Help for the latest troubleshooting tips.

Following these steps can help you quickly resolve any issues and maintain a secure connection for your Gmail applications.

By using App Passwords, you add an extra layer of security to your account while ensuring that your apps and devices continue to operate seamlessly. Remember to periodically review your App Passwords and update them as needed for enhanced security.

Let me know if this helped. Follow me on Twitter, Facebook and YouTube, or 🍊 buy me a smoothie.

14 replies

Leave a reply

Your email address will not be published. Required fields are marked *

  1. where do I find the generater to make the password?
    I was hacked and now I can’t get into my g-mail with out doing a account restore.
    all I need is the program to make the password.
    Thanks
    Bon

  2. Do you know if there’s a limit as to how many app passwords can be created for an email account? I don’t see anything in Google’s documentation.

  3. brilliant! The authorization step at the end is the bit I was missing, just followed the link and it now works. Thank you! Very happy!

  4. I can say this DOES work. Do not use the spaces generated in password. These spaces are iD10 spaces (sorry) for error proof entering.

    BUT!!

    My issue is to differentiate 3 separate app passwords for 3 separate apps for the same gmail email account that all land to the said account looking as if it came from the same entity…..What I Need Is an App Specific AppPassword to differentiate its’ origin.

    Can you please help with that?

  5. On some rare occasions, I want my Python app on a Raspberry Pi to send me a message using my GMail account as the SMTP service. This works currently, except that Google automatically disables the app’s access to GMail after a certain time. If I do not “catch” this event, and manually restore the app’s permissions, then I do not receive these rare but important messages from my Raspberry Pi.

    Google has implied that configuring one’s account to use 2FA will also enable one to generate an app password. Google further implies that this app password will avoid the problem I describe in the first paragraph, but this is a rather vague assurance because it’s stated here that the app will get “restricted access“. Google has also been known to terminate services and features for various reasons. All of this uncertainty leads me to wonder if I’m merely an unknowing participant in an experiment, or if this 2FA and app password will solve my current problem.

    And so I have some questions:

    Is the use case I described in the first paragraph one that would be allowed under Google’s definition of “restricted access“?
    Are the 2FA and “app password” services ones that are likely to be somewhat durable elements in Google’s efforts toward security?
    If I change my GMail account to use 2FA, and subsequently decide that it doesn’t suit me, can I revert to the current userid & password scheme I have now?

    Thanks for your time.

    1. Hi Séamus,

      I assume you have you done this step? Allow less secure apps to access your Gmail account.

      I’m not surprised if Google is blocking the RasPi periodically if you are using your main Google Account password to authorise SMTP. Google login security isn’t as lax as it once was.

      You should try setting up 2FA and then give your RaspPi an app password, which should relax Google’s login security for the RaspPi. Personally I use Postfix to access Gmail SMTP without issues: How to configure Postfix to use Gmail SMTP on Ubuntu

      The whole point of an app password is that it restricts access to your Google account so if your app password is ever compromised, your entire Google account cannot be hijacked.

      And, yes, you can disable 2Fa and revert back to the old method if needed.

  6. then app password created ???. Even When i login using email and app generated password, still got incorrect password. Where should i use it ?? or should i change password with it??. I didnt understand after this processs