Skip to content

How to: Configuring Linux Evolution Mail Client for Duo MFA

Updated  by john.underwood
  • PDF
  • Print
  • Email
  • Copy To Clipboard
  • Collapse All Expand All


The Linux Evolution Mail client supports Office 365 with Duo multi-factor authentication (MFA) with the evolution-ews plugin (v3.27.91 and above).

Minimal testing have been done with this.


  Install the Evolution package.  Open a terminal window and execute the following commands as root:

apt-get update

apt-get install evolution evolution-ews


  Launch Evolution

If this is the first time, you will be presented with the Add Account wizard.

If Evolution Mail is already configured, click File -> New -> Email Account to open the wizard


  Click Next on the Welcom screen.

When prompted "to restore from backup", make sure "Restore from a backup" is unchecked.

Click Next.


  Enter your name and email address in the Required Information fields.

Uncheck "Look up mail server details based on the entered email address"

Click Next.

Enter Full Name and Email Address


  From the Server Type drop-down box, select Exchange Web Services.

Select Exchange Web Services


  In the Username box, enter your NDUS credentials (

In the Host URL box, enter

From the Authentication drop-down box, select OAuth2 (Office365)

Select OAuth2 (Office365)


  If OAuth2 (Office365) is not listed, click "Check for Support Types" then select OAuth2 (Office365)

 Check for Support Types


  Check the check box for Override Office365 OAuth2 settings

In the Tenant box, enter ec37a091-b9a6-47e5-98d0-903d4a419203

In the Application ID box, enter b3c77d81-4b17-43b9-a183-9d41f8db73be

 Override Office365 OAuth2

 Click Finish


  Click Apply to save  your settings.


  If you do not get a pop-up window with the NDUS login prompt, the Evolution process might be frozen.

Open a terminal window and enter

sudo pkill evolution

Relaunch Evolution

If you receive an error stating thatt another Evoltuion process is already running, reboot your computer, and launch Evolution.


  Enter your NDUS username and password.

NDUS Credentials

  Select the MFA option that you want to use.

DUO Prompt

NOTE:  You do not need to check "Remember me for 60 days," Evolution will remember your login and you will not be prompted to re-authenticate until the OAuth token expires.  If you change your password, you will be required to re-authenticate.