ÃÛ¶¹ÊÓƵ

From the Commerce home page, sign in to your Commerce/Magento account.

Review and accept the terms for using the Security scan tool.

• In the left panel, choose ³§±ð³¦³Ü°ù¾±³Ù²âÌý³§³¦²¹²Ô.
• Click Go to ³§±ð³¦³Ü°ù¾±³Ù²âÌý³§³¦²¹²Ô.
• Read the Terms and Conditions.
• Click Agree to continue.

On the Monitored Websites page, click +Add Site.

If you have multiple sites with different domains, configure a separate scan for each domain.

{width="600" modal="regular"}

To verify your ownership of the site domain by adding a confirmation code, do one of the following:

Commerce storefront:

• Enter the Site URL and Site Name.

• Click ³Ò±ð²Ô±ð°ù²¹³Ù±ðÌý°ä´Ç²Ô´Ú¾±°ù³¾²¹³Ù¾±´Ç²ÔÌý°ä´Ç»å±ð.

• Click Copy to copy your confirmation code to the clipboard.

  {width="400" modal="regular"}

• Log in to the Admin of your store as a user with full administrator privileges and do the following:

  • In the Admin sidebar, go to Content > Design > Configuration.

  • Find your site in the list, and click Edit.

  • Expand the ±á°Õ²Ñ³¢Ìý±á±ð²¹»å section.

  • Scroll down to Scripts and Style Sheets and click in the text box at the end of any existing code and paste the confirmation code into the text box.

    {width="600" modal="regular"}

  • When complete, click Save Configuration.

PWA storefront:

• Enter the Site URL and Site Name.

• For Confirmation Code, choose the META Tag option and then click Generate Code.

• Click Copy to copy the generated confirmation code META Tag to the clipboard.

  {width="400" modal="regular"}

• Go to the PWA Studio storefront project directory and do the following:

  • Under the PWA Studio project directory, go to packages > venia-concept > template.html.

  • Add the copied confirmation code (the generated META Tag) to the HTML head and save the changes.

    {width="600" modal="regular"}

  • Go back to the PWA Studio CLI, and use yarn to install project dependencies and run the project build command.

    code language-sh
    yarn install && yarn build

  • In your Cloud project, create a pwa folder and copy the content inside your storefront project’s dist folder.

    code language-sh
    mkdir pwa && cp -r <path to your storefront project>/dist/* pwa

  • Use the Git CLI tool to stage, commit, and push these changes to your Cloud project.

    code language-sh
    git add . && git commit -m "Added storefront file bundles" && git push origin

    After the build process completes, the changes will be deployed to your PWA store front.

Return to the Security Scan page in your Commerce account, and click Verify Confirmation Code to establish ownership of the domain.

After a successful confirmation, configure the Set Automatic Security Scan options for one of the following types:

Scan Weekly (recommended):

• Choose the Week Day, Time, and Time Zone that the scan is to take place each week.

• By default, the scan is scheduled to begin each week at midnight Saturday, UTC, and continue through early Sunday.

  {width="500" modal="regular"}

Scan Daily:

• Choose the Time, and Time Zone that the scan is to take place each day.

• By default, the scan is scheduled to begin each day at midnight, UTC.

  {width="500" modal="regular"}

Enter the Email Address where you want to receive notifications of completed scans and security updates.

{width="400" modal="regular"}

When complete, click Submit.

After the ownership of the domain is verified, the site appears in the Monitored Websites list of your Commerce account.

If you have multiple websites with different domains, repeat this process to set up a security scan for each.