Response header resolution - Office 365 add-inResponse header resolution ESG integration with Microsoft Office 365 add-in activation for Microsoft Word browser version. If the HTTP Response Headers records are not configured correctly, you may encounter the above error while trying to access the add-in in browser. Resolution: Configure values of the response headers mentioned below correctly with all the parent domains of the ESG integration with Microsoft Office 365 add-in, including the <iframe> tags which embeds the add-in. Response header 1: Content-Security-Policy in the application scope of ESG integration with Microsoft Office 365 Response header 2: Content-Security-Policy in the application scope of ServiceNow Add-Ins for Microsoft Office. Example of values to be added in the response headers: The above image lists the parent frames for add-in in this picker. Here, {"baseFrameName":...} is the add-in frame based on the Domain (esgemptest2.service-now.com) of the page. The parent domain to this frame within the page is WebApplicationFrame - https://usc-word-edit.officeapps.live.com There are no more parents to this Frame other than the top-level Domain URL of the SharePoint or box etc., site URL, which in ServiceNow scenario is https://servicenow-my.sharepoint.com . If these two URLs (https://usc-word-edit.officeapps.live.com, https://servicenow-my.sharepoint.com) are added to the above records, then is enabled successfully. To get these values follow the following steps(These steps can only be followed when add-in is opened in browser):- 1.Navigate to ServiceNow Reporting in word document (White spacing) -> Right click open Inspect element(Keyboard shortcut to open devTools in Microsoft word - "option + command + j") 2.Click on -> Clear console3.Click on -> Pick an element from the dev tools4.Hover over ServiceNow Reporting and click on the white space. Go to console tab-> You will see something as baseFrameName -> Use these two value in response headers(Screenshot attached).