Skip to main content
Procore

MFA: Standard Procore (Users) - Early Enrollment in MFA

  1. Last updated
  2. Save as PDF
 Procore MFA: Regional availability for SMS Verification

Procore supports Authenticator apps everywhere. SMS Verfication is only available in these countries Show/Hide Details  

SMS Verification is available in these countries.

  • Note: SMS Verification for Procore Pay (Payees) is limited to the United States.

  • US
  • Canada
  • Mexico
  • UK
  • Ireland
  • France
  • Germany
  • Spain
  • Italy
  • Australia
  • New Zealand
  • Singapore
  • Hong Kong

 

 Strengthen Your Security: Procore MFA

Multi-Factor Authentication (MFA)—also referred to as Two-Factor Authentication (2FA)—is being rolled out to limited Procore commercial accounts. While MFA is mandatory for Procore Pay users, MFA is available on a limited basis to commercial accounts to provide our clients an extra layer of security. To enable MFA for your organization, ask your Procore Administrator to contact your Procore point of contact.

To provide an additional layer of protection for your company’s Procore project data, your Procore Administrator can enable Multi-Factor Authentication (MFA) and set a mandatory enforcement deadline. This creates an early enrollment period—a flexible window of time that allows you to set up your security method at your own pace before it becomes a requirement. To avoid potential access delays once your company's enforcement deadline hits, you can enroll in MFA early.

Once enrolled in MFA, the login process requires a combination of:

  • Something You Know: Your standard Procore Email and Password.
  • Something You Have: A unique code generated by an Authenticator app or sent by SMS text message (standard carrier messaging and data rates may apply) to your registered mobile device.
 Important

Keep your verification code private. Procore generates a unique code just for you. Never share it with anyone. Procore employees will never ask for it.

Prerequisites

  • You must be in your company's early enrollment period (MFA is enabled and your company's enforcement deadline is in the future).
  • Pick a Verification Method before you enroll. If you choose an Authenticator app, first install a third-party TOTP Authenticator app (like Google or Microsoft Authenticator) on your mobile device. Procore MFA is compatible with most standard TOTP Authenticator apps. Contact your Procore Administrator or refer to your preferred software vendor for installation instructions.

Steps

Enroll in MFA Before the Enforcement Deadline

To enroll in MFA early, use these steps to set up your preferred verification method for the first time.

  1. Go to the Procore web application at: https://login.procore.com .
  2. Go to your Account & Profile avatar and click My Profile Settings.
  3. Click the Password & Security tab.
  4. Under Two-Factor Authentication (2FA), choose your preferred verification method:
    • To enroll in MFA with an Authenticator AppShow/Hide      
      • Follow these steps to enroll in MFA with an Authenticator app:

        • Click Add Authenticator App.

        • Enter your account's current password.

        • Open the Authenticator app on your mobile device.

        • Use the Authenticator app's camera to scan the QR code on the Secure your Account page.

        • Enter the 6-digit code from your authenticator app and click Continue.

    • To enroll in MFA with SMS verificationShow/Hide      

      • Follow these steps to enroll in MFA with SMS verification:

        • Click Add Phone Number.

        • Enter your account's current password.

        • Complete the Select Your Country Code and Enter Your Phone Number fields.

        • Click Send Text Message

        • Enter the 6-digit code sent to your phone and click Continue

  1. Copy or download your new recovery code and secure it in a safe place.
 Warning

Be sure to save your recovery code in a location that is securely accessible from another device. If your MFA device is lost or damaged, you will need your recovery code to set up MFA on a new device. Each recovery code can be used only once. After a recovery code is used, you will have the option to save a new recovery code.