To use Pendo, both your application users and those analyzing or creating guides within Pendo require internet access. If your organization operates in a restricted network environment where access is limited to pre-approved domains through a firewall, VPN, or web filter, you might need to request your network administrators to allow traffic explicitly to Pendo servers.
This article provides guidance on configuring allowlist settings in restricted network environments for seamless access to Pendo.
Allowlist by domains
For outbound traffic (TCP 443 and TCP 80), ensure the following domains are allowed:
- app.pendo.io
- cdn.pendo.io
- content.pendo-internal.pendo.io
- data.pendo.io
- data.pendo-internal.pendo.io
- pendo-io-static.storage.googleapis.com
- pendo-static-YOUR_SUB_ID.storage.googleapis.com
For the last domain above, you must replace YOUR_SUB_ID with your unique subscription ID. You can find your subscription ID in the URL when you're logged into Pendo (e.g., https://app.pendo.io/s/YOUR_SUB_ID/). This applies to all Pendo instances.
If you need help finding your subscription ID or if you require whitelisting by IP address instead of using the fully qualified domain names (FQDNs) mentioned above, contact your Pendo account representative or Technical Support.
CNAME as an alternative
Pendo also offers support for CNAME configuration, allowing you to set up a domain already trusted by your organization as an alias for Pendo domains. To learn more about this configuration, see CNAME for Pendo Engage.