Sometimes, you might not be able to use file upload and API endpoints as verification methods.
Who qualifies for manual scan target verification?
In exceptional cases, where you cannot verify the project with file upload or API endpoints, Veracode offers the possibility of a manual scan verification. This feature is usually available only for users of the Professional and Enterprise subscription plans, but we might also review specific cases for other subscription plans.
What do you need to do?
- Select Verify Scan Target to request the manual verification section before starting your Full Scan.
- Select Contact Customer Support. A pre-generated email containing the necessary information to verify the scan target opens. If needed, you can add more details to the email, but do not remove any pre-included data.
Veracode cannot verify a scan target without a written confirmation that you are authorized to run an invasive scan on that application (ownership rights). Therefore, you must include the generated Scan ID and the Scan URL in your request.
How long does it take?
In contrast to the other verification methods that automatically start the scan, the manual verification process is longer. It might take up to two working days, so delays in your scan could occur.