Conflict w/ WooCommerce Shipstation Extension -where can I white list endpoints?

We are experiencing an issue described here: turning off iThemes security clears the issue. https://docs.woocommerce.com/document/shipstation-for-woocommerce

“A conflict with a Security plug-in – Security plugins usually restrict the accessibility of endpoints/URLs on a WP online store. Although orders may be exporting fine, the Security plugin may not be allowing ShipStation to POST shipping information to the server. If you have “Shipped” an Order in ShipStation (created a label or used ‘marked as shipped’), but the order is not being updated to Completed, check to see if the WP site is running a Security plugin. If it is, disable the security plugin and test again. If disabling the plugin resolves the issue, see if it can whitelist your endpoints.”

WooCommerce support sent me this information about endpoints:
“Thank you for contacting WooCommerce support.

The ShipStation plugin accesses the following endpoint: https://domain.com/?wc-api=wc_shipstation
For your site that should be: https://[domain name removed]/?wc-api=wc_shipstation

There are two main requests that are done to this endpoint:

1. A GET request to export orders:
https://domain.com/?wc-api=wc_shipstation&auth_key=ABC&action=export&start_date=07%2F01%2F2016+00%3A00&end_date=07%2F07%2F2016+00%3A00&page=1

2. A POST request to update a shipped order:
https://domain.com/?wc-api=wc_shipstation&auth_key=ABC&action=shipnotify&order_number=123&carrier=UPS&service=UPS&tracking_number=987654321

The following guide explains a bit more about which URL’s are accessed: https://help.shipstation.com/hc/en-us/articles/205928478-ShipStation-Custom-Store-Development-Guide#2a

Cheers,

Michael K – Woo Happiness Engineer”

My question – where in the iThemes security settings can I whitelist the endpoints?

Or has anyone experiencing a similar problem been able to solve it?