Customized classic pages may be blocked by CSP restriction (KB5033720)

Support

Hello,

Select a different account.

You have multiple accounts

Choose the account you want to sign in with.

SharePoint Server Subscription Edition SharePoint Server 2019 SharePoint Server 2016 More...Less

Symptoms

To enhance security, the Content Security Policy (CSP) restriction is added to all classic pages. If you have a customized classic page that contains customized domain content, the page may be blocked by the CSP restriction.

Resolution

Note: Make sure that the content of your customized domain is safe before you follow the instructions to unblock it.

To fix this issue, farm administrators can run the following commands to add the customized domain to the AllowIframeAppAuthorizePageDomains list:

add-pssnapin * $f=get-spfarm $f.AddGenericAllowedListValue("AllowIframeAppAuthorizePageDomains","<customized domain>") $f.update()

After you run the commands, the customized domain will be included in the CSP's allowed domain list.

SUBSCRIBE RSS FEEDS

Need more help?

Want more options?

Discover Community

Explore subscription benefits, browse training courses, learn how to secure your device, and more.

Microsoft 365 subscription benefits

Microsoft 365 training

Microsoft security

Accessibility center

Communities help you ask and answer questions, give feedback, and hear from experts with rich knowledge.

Ask the Microsoft Community

Microsoft Tech Community

Windows Insiders

Microsoft 365 Insiders

Customized classic pages may be blocked by CSP restriction (KB5033720)

Symptoms

Resolution

Need more help?

Want more options?

Was this information helpful?

Thank you for your feedback!