Cloudflare
What we sync
- Zones (domains) with status and plan level
- DNS records — we alert on unexpected changes
- SSL certificates — expiry and coverage
- WAF rules — active custom rules list
- Page rules — active redirect and caching rules
- Workers — deployed Workers scripts
Required permissions
You can use either a Global API Key (full access) or a scoped API Token (recommended).
Recommended: Scoped API Token
- Log in to dash.cloudflare.com (opens in a new tab)
- Go to My Profile → API Tokens → Create Token
- Select Create Custom Token
- Add permissions:
| Resource | Permission |
|---|---|
| Zone → Zone | Read |
| Zone → DNS | Read |
| Zone → SSL and Certificates | Read |
| Zone → Firewall Services | Read |
| Account → Account Settings | Read |
- Under Zone Resources, select All zones (or specific zones)
- Click Continue to Summary → Create Token
- Copy the token
Alternative: Global API Key
Found at My Profile → API Tokens → Global API Key → View. Requires entering your Cloudflare account email alongside the key.
⚠️
Global API Keys have full account access. Scoped tokens are strongly preferred for security.
Add the integration
Go to SecureCheap → Integrations → + Add → Cloudflare.
Enter credentials
- If using a scoped token: paste the token in the API Token field
- If using a Global API Key: fill both API Key and Account Email fields
Connect
Click Connect. We verify the credentials and sync your zones within 10 seconds.
What to expect after connecting
- All your Cloudflare zones appear in Resources → Domains
- DNS records are synced and changes are alerted within 5 minutes
- SSL grades are computed and tracked continuously
- Any WAF rule changes trigger an audit log entry