Prevent Unauthenticated Access to Virtual Agent Embedded Web Client
Learn how to configure the sn_va_web_client_app_embed table to block unauthenticated users from accessing embedded web clients.
The UI page, sn_va_web_client_app_embed, which is an embedded web client for Virtual Agent, contains the access control lists (ACLs) marked true in the sys_public table out of the box. It has been confirmed that there are use cases where public accessibility is needed however this is not a standard to set it to default publicly accessible.
If the embedded web client is not needed for unauthenticated users, open the sn_va_web_client_app_embed record (sys_id 04b1905473222300e985658b4cf6a7ef) in the Public Pages [sys_public] table and deselect the Active field to deactivate the page.
More information
| Attribute | Description |
|---|---|
| Configuration name | sn_va_web_client_app_embed |
| Configuration type | UI Page(sys_ui_page_list.do) |
| Data type | table |
| Recommended value | The sn_va_web_client_app_embed public page [sys_public] (sys_id 04b1905473222300e985658b4cf6a7ef) does not exist or is not active. |
| Default value | Not available (this is a table value) |
| Category | Access control |
| Security risk |
|
| Dependencies and prerequisites | None |