. . "I disabled HTTP plaintext authentication - now users must authenticate via SSL (HTTPS), including for my website's backend, webmail and other web apps." . .