All Collections
Magento Open Source and Adobe Commerce
Dynamic content
Edit your dynamic content security settings in Magento Open Source and Adobe Commerce
Edit your dynamic content security settings in Magento Open Source and Adobe Commerce

Learn how to edit your dynamic content security settings and restrict certain IP addresses in your Adobe Commerce account.

Gareth Burroughes avatar
Written by Gareth Burroughes
Updated over a week ago

You can set up and adjust security for your external dynamic content in your Adobe Commerce (previously Magento 2) account by doing the following:

  • Set up a passcode to be sent with GET requests to dynamic content URLs (recommended).

  • Restrict the IP addresses for which external dynamic content URLs will be displayed.

Implementing and adjusting security settings


When you install the Dotdigital for Adobe Commerce connector, we generate a unique passcode that is used to access external dynamic content. By using this passcode you can be sure that basket contents and coupon codes can be viewed only if that passcode is sent with the GET request to the external dynamic content URL, adding security.

Go to STORES > Configuration > Dotdigital > Dynamic Content and select External Dynamic Content URL's.

The passcode field contains the 32 random characters that were generated when you installed the connector.

We recommend that you do not change this password field.

Not seeing the 32 random characters?

If you either use a version of Dotdigital for Magento that is lower than v2.4.5 or you upgrade from a version of Dotdigital for Magento that is lower than v2.4.5, we recommend that you create a random 32 character passcode.

The passcode can include the following characters:

  • Numbers (0-9)

  • Uppercase letters (A-Z)

  • Lowercase letters (a-z)

Dynamic pages IP restriction

In addition to all our URLs requiring the above passcode included, you can also manage the list of requesting IP addresses that these URLs will display for when requested from them.

The Dynamic Pages IP Restriction section is found by going to Stores > Configuration > DOTDIGITAL > Developer.

As a default, we include several IP addresses that Dotdigital sends requests from when sending emails to pull in this content, but for testing purposes, you may want to add your office IP so you can view these URLs directly in your browser. On occasion, this set of IP addresses may change, but we will notify you when this occurs. In the meantime, make sure you allow the list of IP addresses listed in IP addresses used by Dotdigital


When adding an IP address to this list, you need to leave a space after the comma that separates it from the last IP address in the list. Without it, your external dynamic content won't work.

Removing all IPs from this box and selecting Save Config completely disables the IP verification on these pages. This is not recommended, however.

Did this answer your question?