Web page/iFrame within Teams is unable to connect to your ServiceNow instance

Fu · ‎03-11-2022

Background:

When installing specific plugins for Teams, ServiceNow creates HTTP response headers to address Cross-Origin Resource Sharing (CORS) between Microsoft and ServiceNow, however, these headers don't apply to all pages. As a result, some pages like a link to a KB article or an incident record will not be able to display within Teams. To address this, we'll create a new response header to give permission to teams.microsoft.com for all ServiceNow pages.

Known Issue:

Use a custom portal instead of Employee Center and/or installed "Conversational Integration with Microsoft Teams" v3.0.6

Note: To change Employee Center to a custom portal, change the value for sn_now_teams.portal.suffix in sys_properties.list.

Solution:

On your ServiceNow instance, elevate your admin role to "security_admin".
Make sure you are in Global scope.
Go to sys_response_header.list
Click on "New" button.
Fill out the following:
Applies to: All Pages
Name: Content-Security-Policy
Value: frame-ancestors 'self' teams.microsoft.com *.teams.microsoft.com

After creating HTTP Response Header:

hurm · ‎10-20-2022

Did you implement this functionality in SN?
I want use iFrame too in Service Now

amirathsouhouin · ‎01-29-2024

Hello! How do you find the value for the https response header

Josh R · ‎11-19-2024

Still useful today for a fresh install. Thank you!

Charlotte Pakes · ‎02-12-2025

Thank you! Been stuck on this with ServiceNow support for months, and you've helped this Case move forward a step. Any advice on why the SSO authentication would then fail? The popup is now at least displaying something but is not authenticating despite being setup.

jonathanjim · ‎02-13-2025

@Fu Did you upload a new manifest for this to work?