ISVforce Guide

Welcome to the ISVforce Guide
ISVforce Quick Start
Grow Your AppExchange Business
Design and Build Your Solution
Package and Test Your Solution
Pass the AppExchange Security Review
Publish Your Solution on AppExchange
What Is the AppExchange?
Business Plans for AppExchange Listings
Submit a Due Diligence and Compliance Certification
Publish on AppExchange
Connect a Packaging Organization to AppExchange
Create or Edit Your Provider Profile
Create or Edit an AppExchange Listing
Add a Business Plan to an AppExchange Listing
Make Your AppExchange Listing Effective
Choose an Installation Option
Register Your Package and Choose License Settings
Complete the Security Review Cycle
Required Materials for Security Review Submission
Security Review and AppExchange Listing Fees
Update Your Credit Card Information
Submit Your Solution for Security Review
Act on Security Review Results
Periodic Reviews
Email Notifications
Work with AppExchange Leads
Analytics Reports for Publishers
Update the Package in an AppExchange Listing
AppExchange FAQ
Sell on AppExchange with Checkout
Monitor Performance with Analytics for AppExchange Partners
Manage Orders
Manage Licenses
Manage Features
Provide a Free Trial of Your Solution
Support Your AppExchange Customers
Update Your Solution
Appendices
Glossary
PDF

Newer Version Available

This content describes an older version of this product. View Latest

Submit Your Solution for Security Review

Use the security review wizard on the Partner Community website to submit your solution for security review. The wizard collects your solution, scan reports, false positives and user documentation, and applicable fees.

User Permissions Needed
To access the Salesforce Partner Community Publishing Console: Manage Listings

Before you submit your solution for security review, make sure that you:

  • Receive Salesforce approval of your business plan.
  • Have a partner recruitment representative confirm that your solution is enrolled in the AppExchange Partner Program, and that you have a distribution agreement.
  • Create your AppExchange solution listing in the Partner Community Publishing Console.
  • Configure a Developer Edition test environment with your solution installed. We use the environment to test your solution.
  • Certify that your solution is Lightning Ready. All new solutions submitted for security review must be Lightning Ready.
  1. Log in to the Salesforce Partner Community.
  2. Navigate to your solution listing in the Publishing Console.
    1. Click the Publishing tab.
    2. Click your solution’s tile and view your business plan summary page.
  3. Verify that your business plan is approved.
  4. If your plan is approved, click the App tab.
  5. Provide solution details.
    1. Select the type of solution, either one that only includes a package or one that uses the Salesforce API and doesn’t include a package.
    2. If your solution includes a package, link the package to your listing. Click Select Package, then find and select the managed package version that you plan to list.

      If you can’t find the package to associate with your listing, check that the packaging org is connected to your Partner Community account. You can connect your packaging org to your Partner Community account on the Organizations tab of the Publishing Console.

    3. Indicate how customers install your solution and which Salesforce editions and languages your solution supports.
    4. Optionally identify the features that your solution supports.
    5. If your solution has other requirements, such as browser or operating system versions, enter the details in Additional Requirements.
  6. Save your changes.
  7. To launch the security review wizard, click Start Review.
    The wizard guides you through the options and settings that require your input, based on the type of solution that you submit.
  8. On Step 4 - Components and Step 5 - Test Environments, specify the components, technologies, and services that your solution requires or optionally include. If your solution connects to external endpoints, list the resources that aren’t hosted on the Salesforce platform.
    1. Select the option for an offering including a web application or web service. The offering requires or optionally includes a web application or web service.
    2. Enter the external endpoints information, including login credentials.
  9. On Step 8 - Payment, select an option for Pricing of Offering.
    1. If you plan to sell your solution on AppExchange, select Paid and enter payment information.
    2. If you plan to distribute your offering for free, select Free. We don’t charge fees for solutions that are distributed for free on AppExchange.
  10. Click Submit.

If anything is missing from your submission, the security review team contacts you. When everything is in place, we send you an email confirming that your submission is complete and your solution is in line for a security review. The initial security review of your solution lasts 4–6 weeks. You can expect to receive a report from us soon after the review is completed.

Schedule a technical office hours appointment right when you receive your confirmation email. Visit the Partner Security Portal and choose a date 4–6 weeks away. If your solution doesn’t pass, you have an appointment booked.

Tip