Get started
Security Center scans your Cloudflare account configuration and identifies potential security risks, misconfigurations, and vulnerabilities across your domains. This guide covers the initial setup.
- A Cloudflare account.
- At least one zone (domain or subdomain) added to your Cloudflare account.
Security Insights scans are enabled by default. The scan reviews your Cloudflare account settings and product configurations across all your domains, then reports any issues it finds as insights — potential security risks, misconfigurations, or vulnerabilities.
Security Insights start scans by default. Security Insights will scan your Cloudflare environment and provide you with a list of detected insights. Refer to How it works to learn more about how Security Insights perform a scan.
The initial scan time depends on the number of IT assets in all the domains of your Cloudflare account. When the scan is complete, the status of the page will change from Scan in Progress to Last scan performed on: <DATE_TIME>.
You can decide to stop a scan, and restart a scan later.
To disable scans:
-
In the Cloudflare dashboard, go to the Security Insights page.
Go to Security insights -
Go to Disable Security Center scans, select Disable scans.
To restart a scan:
-
In the Cloudflare dashboard, go to the Security Insights page.
Go to Security insights -
Select Scan now.
To manually start a scan:
-
In the Cloudflare dashboard, go to the Infrastructure page.
Go to Infrastructure -
Select Scan now.
After you enable Security Insights, Cloudflare performs scans automatically on a recurring schedule based on your plan:
| Plan | Scan frequency | On-demand scans |
|---|---|---|
| Free, Pro, or Business | Every 7 days | Yes |
| Enterprise | Every 3 days | Yes |
For more details, refer to How it works.