Which domains do we add to our network's 'Allowed List' to ensure access to Procore?

 

Answer

If your organization utilizes network security rules, firewalls, or proxy servers that restrict internet access. In that case, your IT department must regularly update your network’s allowed list to ensure the Procore platform is fully accessible.

To learn more, see:

Procore Platform Allowed Domains

 Important Note On Maintenance

Last updated August 28, 2025. Procore updates this list as our services evolve. To prevent access problems, ask your IT department to bookmark this page and check it regularly to keep your organization's allowed list up-to-date.

Primary Procore Domain

For the most comprehensive and future-proof configuration, Procore strongly recommends adding a wildcard entry for our primary domain. This single entry will cover the majority of current and future Procore services.

  • .procore.com

Specific Procore & Third-Party Domains

If your network security policies do not permit wildcard entries or if you require a more granular list, please ensure the following domains are explicitly added to your allowed list.

 Note
Domains marked with an asterisk (*) do not require you to add each sub-domain. 
Procore Services:
  • *.procore.com
  • *.cdn.procore.com
  • *.pages.procore.com
  • api.procore.com
  • app.procore.com
  • assets0.procore.com
  • assets1.procore.com
  • assets2.procore.com
  • assets3.procore.com
  • events.procore.com
  • learn.procore.com
  • login.procore.com
  • my.procore.com
  • storage.procore.com
  • support.procore.com
  • us02.procore.com
Required Third-Party and Supporting Services:
  • *.bugsnag.com
  • *.launchdarkly.com
  • *.pendo.io
  • *.salesforceliveagent.com
  • *.uservoice.com
  • a.mtstatic.com
  • bam.nr-data.net
  • by2.uservoice.com
  • c.la4-c2-was.salesforceliveagent.com
  • chat.stream-io-api.com
  • cloudflare.com
  • consent.truste.com
  • d.la4-c2-was.salesforceliveagent.com
  • d3sbxpiag177w8.cloudfront.net
  • files.mtstatic.com
  • fonts.googleapis.com
  • fonts.gstatic.com
  • js-agent.newrelic.com
  • maxcdn.bootstrapcdn.com
  • rs.fullstory.com
  • s3.amazonaws.com
  • sdk.iad-01.braze.com/api/v3/data
  • sdk.iad-05.braze.com/api/v3/data
  • us01-i-prod-estimating-storage.s3.amazonaws.com
  • widget.uservoice.com
  • www.glancecdn.net
  • www.google.com

Network Ports and Protocols

All standard communication with the Procore platform is secured using industry-standard protocols. Real-time features in some applications also use secure web sockets. Please ensure your network allows outbound traffic for the following:

  • Protocol: HTTPS (using TLS)
  • Port: 443 (TCP)
  • Real-time Updates: WebSocket Secure (WSS) protocol, which also operates over port 443.

Procore Email Delivery Allowed List

This list includes domains and dedicated IP addresses used specifically for sending Procore email notifications, reports, and messages.

Email Domains

  • procore.com
  • procoretech.com
  • click.procore.com
  • customer.procore.com
  • fastly.net
  • message.procore.com
  • update.procore.com
  • us02.procoretech.com
  • smtp.sendgrid.net
  • skilljar.com
  • surveys.procore.com

Sending IP Addresses

  • 137.22.225.98
  • 137.22.227.19
  • 137.22.228.37
  • 137.22.228.47
  • 167.89.22.86
  • 167.89.23.21
  • 167.89.24.90
  • 167.89.36.250

See Also