Security models

The security of your ArcGIS GeoBIM deployment depends on proper, stringent authentication and authorization of your users. Authentication is the process of verifying the identity of a user, and authorization is the process of verifying that an authenticated user has the permissions to access the requested resource or perform the requested operation. To enforce permissions for secured resources and operations, a user is first authenticated; then their authorization is verified. These terms are defined by your chosen security model.

Security models supported by ArcGIS GeoBIM include the following:

• Built-in auth—this method requires the user to type an ArcGIS organizational username and password. To learn more see configure built-in users and groups.
• SAML—this method supports service provider (SP) initiated organization-specific logins and identity provider (IdP) initiated organization-specific logins. To learn more see configure organization-specific logins using SAML.

Autodesk account

An Autodesk account is required to use ArcGIS GeoBIM. The following are features that require an Autodesk account:

• Creating an account in ArcGIS GeoBIM requires access to the Autodesk Construction Cloud project documents.
• Running the ArcGIS GeoBIM tools requires access to an Autodesk Construction Cloud project to locate documents and issues.

  Note:

  Your Autodesk account requires at least "View + Download" permissions in the Autodesk Construction Cloud project to run the ArcGIS GeoBIM tools with manually uploaded models.

  Your Autodesk account requires at least "Edit" permissions in the Autodesk Construction Cloud project to run the ArcGIS GeoBIM tools on Revit cloud models.

  An Autodesk BIM Collaborate Pro license is required to successfully process workshared cloud models in ArcGIS GeoBIM.

• Viewing documents requires access to the Autodesk Construction Cloud document being viewed.
• Creating issues in ArcGIS GeoBIM requires "create issues" permission in the Autodesk project. To create an issue linked to a document, access to the document in Autodesk Construction Cloud is also required. Learn more about Autodesk issue permissions .

Esri user type

Esri user types provide licensed access to ArcGIS GeoBIM and define which default roles are available. Access to the ArcGIS GeoBIM capability is provided through user types (previously enabled by the user type extension). Access is included in the following user types:

• Contributor
• Mobile Worker
• Creator
• Professional
• Professional Plus

See the User types documentation for the description of each user type.

Esri role

The table below shows the default roles and ArcGIS GeoBIM feature access based on the roles. An Administrator role has full access to all features and functionality regardless of who owns the project or app or the sharing level assigned.

* Not available for projects shared with groups designated as "Shared Update".

** Functionality available with projects or apps that are shared with the user only.

To learn more, see Member roles.