Why Web Viewer 2.0 Blocks Some Links

May 22, 2026 ยท Noam R

A browser window with a lock symbol

Web Viewer 2.0 loads websites inside PowerPoint and Excel. When it cannot show a page, the block usually comes from the website's embed settings, not from the URL text itself.

For example, a dashboard URL can open in a normal browser tab while the dashboard still tells browsers not to show it inside embedded viewers.

If you do not control the website

If another company, bank, dashboard vendor, school system, or software product owns the page, you usually cannot fix it yourself. The website owner has to decide whether they allow their page to appear inside embedded viewers.

If you control the website

Ask the person who manages your website headers to check the page's embed policy. The most common setting is the Content-Security-Policy directive that browsers call frame-ancestors. That directive lists which sites can embed the page.

For Web Viewer 2.0, the page should allow the Web Viewer production host: https://1990quebec.com

A working policy can look like this:

Content-Security-Policy: frame-ancestors 'self' https://1990quebec.com;

If your policy already includes Microsoft domains, you may still need to add the exact Web Viewer production host. For example, this is close but incomplete: 

Content-Security-Policy: frame-ancestors 'self' https://*.office.com https://*.microsoft365.com;

Add https://1990quebec.com to the same list:

Content-Security-Policy: frame-ancestors 'self' https://*.office.com https://*.microsoft365.com https://1990quebec.com;

Other settings that can block a page

Older sites may use X-Frame-Options. If a page sends X-Frame-Options: DENY or X-Frame-Options: SAMEORIGIN, browsers will not allow Web Viewer to display it.

Web Viewer also requires HTTPS. If a URL redirects to an HTTP page, Web Viewer blocks it.

Quick checklist

Need help?

Still stuck? Contact Web Viewer support with the URL, and we can help identify the blocking header.