PM-50814-19-201516
A best practice to prevent malicious embedding of site content is to add the frame-ancestors directive to the HTTP response header of the site’s Content Security Policy (CSP). The policy restricts which URLs can embed site content using HTML elements , <iframe>,
The recommended header “frame-ancestors” is configured, for the ADM console WEB site, for the repserver site for compatibility with older version agents, it is not implemented in this version.