What is Multi-Factor Authentication (MFA)?
Multi-Factor Authentication (MFA) is a security process that requires users to provide two or more factors to access a system, network, or application.
Why do I need MFA?
MFA provides an additional layer of security to protect your account and personal information from unauthorized access.
How to enable MFA for your Graphisoft ID?
Multi-Factor Authentication can be enabled on a user level. To do so, follow these steps:
- Login with your Graphisoft ID and go to your Personal profile page.
- Click on Login / Edit, then Multi-Factor Authentication / Change.
(You can reach the MFA configuration page directly with this link too: https://id.graphisoft.com/user/configure/totp) - Scan the QR code or use the manual configuration key and follow the instructions in your authenticator app.
- Enter two consecutive authentication codes, then click Activate to enable MFA for your Graphisoft ID.
How to disable MFA for a Graphisoft ID?
Multi-Factor Authentication can be disabled on a user level. To do so, follow these steps:
- Login with your Graphisoft ID and go to your Personal profile page.
- Click on Login / Edit, then Multi-Factor Authentication / Change.
(You can reach the MFA configuration page directly with this link too: https://id.graphisoft.com/user/configure/totp) - Enter an authentication code and click Deactivate to disable MFA for your Graphisoft ID.
- After the deactivation of MFA, you are informed by e-mail.
- Remove the account from your authenticator app. (If you want to reactivate it, you must re-register the account in the authenticator app.)
Multi-Factor Authentication can also be disabled by the Administrator and Contract Manager. To do so, please follow these steps:
- Login with the Administrator’s/Contract Manager’s Graphisoft ID and go to the Members overview on the Company Management Portal.
- The Members overview provides information about the users, including their MFA status.
- Search the user, open the dropdown menu in the MFA column and select Deactivate.
- Confirm the deactivation of MFA for this user by clicking Deactivate in the following dialog.
- The Administrator/Contract Manager does not need an authentication code to disable MFA for users.
- After the deactivation of MFA, the user is informed by e-mail.
- Remove the account from the user’s authenticator app after MFA was deactivated. (If they want to reactivate it, they must re-register the account in the authenticator app)
What if I lost the device with my authenticator app?
The Administrator, Contract Manager or Graphisoft Support can help deactivate/disable MFA.
What happens if you provide the wrong authentication code?
If the provided authentication code is wrong three times in a row, there is a time restriction of a few seconds in which you cannot login. Each additional failed attempt to authenticate will double the amount of time you have to wait before the next attempt.
What happens when you turn on the Legacy Authentication method on BIMcloud SaaS with cloud licensing?
If the Legacy Authentication method is enabled on BIMcloud SaaS, older Archicad versions (Archicad 22 to 26) can access BIMcloud, but later versions (Archicad 27 and higher) still use the Modern Authentication method with MFA.
MFA is not compatible with applications using the Legacy Authentication method, only with those using the Modern Authentication method.
Why does an “Incorrect login name or password” error appear with older Archicad versions, when MFA is enabled and the Legacy Authentication method is active on BIMcloud SaaS?
MFA is not compatible with applications using the Legacy Authentication method. To use Archicad 26 and older versions with BIMcloud SaaS, you have to disable MFA.
Is it also possible to provide the authentication code by e-mail or telephone?
No. Only authenticator apps are supported.