Jun 06 2017 08:11 AM
I am trying to embed a website into SharePoint using the embed webpart. However I'm receiving the message "Embedding content from this website isn't allowed, but your admin can change this setting. They will need to add 'iafc.maps.arcgis.com' to the list of sites that are allowed". I have enabled scripting but I am not able to see the "HTML Field Security" option to allow this site to be embedded. So I don't know what I'm missing. Any suggestions?
Jun 07 2017 03:26 AM - edited Jun 07 2017 03:27 AM
Enabling the scripting option on tenant-level might take 24hours before its effect is visible. Just wait a bit longer and try again, it should work.
Jun 07 2017 09:02 AM
It turns out it was a setting within Groups. Even with scripting turned on HTML field security was not visable as an option. I had to run a PowerShell to get HTML Field Security to appear so I could add the websites needed to be embedded.
Sep 22 2018 12:04 AM
Hi There,
Here are some details -
*Issue Encountered* - While adding iframe to sharepoint
*Error* - embedding content from this website isn't allowed, but your admin can change this setting.
*Steps flowed* -
Requested admin rights from Sys Admin
Added site in HTM field security and Allowed custom Script in SharePoint settings
Still facing the problem?
Here is the solution -
The setting HTM field security is also at the site level.
Download and Login to Share point power shell and connect using a command -
Connect-SPOService -Url https://tanentname-admin.sharepoint.com -credential youremail@domainname.com
5. The window will pop up asking your credentials and then you will be connected
6. Once it is connected check site URL where you are working -
Command get-ositspe will show all site URLs
7. Change Setting using sharepoint power shell using below command -
set-sposite -identity ___SiteURL -DenyAddAndCustomizePages 0
If you are not the owner of the site you want to host iframe to use below command to be the owner first after connecting using power shell and then follow steps -
set-sposite -identity SITE URL -owner youremail@domain.com
- You got to be the owner of the share point site in order to change HTM field security or else this option will not be visible.
Jan 08 2021 01:45 AM
@SAURAV PANT Thank you, this pointed me in the right direction. I had changed the Sites collection HTML Field Security setting but missed the Site Level HTML Field Security setting. For good measure I also enabled Custom scripts. I did not run any of the PowerShell scripts you suggested but just used the settings gear. I had to click around a bit to find the correct settings. I had to use three different methods.
After that I tested with an iframe embedded object with script tags and it worked.
Thank you!