Create a CSP (Content-Security-Policy) rule for security purposes.
EU are negotiating with their IT insurance provider and they have asked us to put in a CSP (content security policy) rule.
EU would like to add Content-Security-Policy headers for Exchange 2016 for /owa
|Steps to Reproduce:|
|Cause:||Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross-Site Scripting (XSS) and data injection attacks.
These attacks are used for everything from data theft, to site defacement, to malware distribution.
You can create a CSP rule to mitigate potential malicious requests:
Once the rule has been created you can apply it to the desired VS.