Onboarding
The first time you sign in, BestDefense walks you through a short guided setup that gets your organization ready to scan. You can complete it in one sitting or skip ahead and finish later.
What onboarding sets up
Section titled “What onboarding sets up”- Your organization — its name and a few optional details like industry and company size. The organization owns your targets, reports, members, and billing.
- Your first site — the URL of a web application or API you want to scan, and its type.
- Domain verification — proof that you control the target’s domain.
Verifying domain ownership
Section titled “Verifying domain ownership”Before BestDefense scans a target, you verify that you own its domain by adding
a DNS TXT record that the app gives you. This prevents anyone from
pointing scans at domains they don’t control.
- Add the
TXTrecord at your DNS provider, then return and verify. - DNS changes typically propagate in 5–15 minutes, sometimes longer.
- You can choose Verify later and keep setting things up; the site stays in a pending state until verification succeeds.
Skipping and finishing later
Section titled “Skipping and finishing later”You can skip onboarding entirely. If your setup is incomplete, the dashboard shows a reminder banner with a link back to finish. You can dismiss the banner once you’re done.
After onboarding
Section titled “After onboarding”Once your organization exists and a target is verified, head to the Quickstart to run your first scan, or connect a version-control integration so you can use AI remediation right away.