Most agencies get every site under PowerSEC by the end of one work session.
Who this guide is for: Agencies and teams managing multiple WordPress sites you own or are authorized to administer. Bulk onboarding is intended for your own client sites — not third-party sites.
Step 1 — Generate an install token
Open Dashboard → Settings → Install Tokens and click New Install Token. Give it a name like "agency-batch-may". Copy the token — it looks like psec_install_xxxxxxxx.
Or use the CLI:
psec install-tokens create --name "agency-batch-may"
Note: Install tokens (
psec_install_...) are for connecting WordPress sites. They are different from API keys (psec_live_...) which are used for the CLI and API scripts.
Step 2 — Install the plugin on each site
Download the plugin ZIP from Dashboard → Settings → Install Tokens → Download Plugin and install it on each WordPress site:
# WP-CLI
wp plugin install /path/to/powersec-latest.zip --activate
# Or use the WP admin: Plugins → Add New → Upload Plugin
When the plugin activates, open PowerSEC → Connect in the WP admin and paste your install token. The plugin registers with Central automatically.
Step 3 — Watch sites come online
Within 30–90 seconds of activation, each site appears in your dashboard. Check progress:
psec sites list
Step 4 — Apply your standard settings
From the Central dashboard, use the Sites page bulk-action controls to apply scan schedules, alert channels, and firewall settings to all newly connected sites.
# Check each site's status from the CLI
psec sites status yourdomain.com
psec scan run yourdomain.com
psec alerts list --site <site-id>
That's it. 50 sites, one afternoon, fully protected.