KNOWLEDGE BASE

Error "This content cannot be displayed in a frame" in Dashboards Published to Tableau Server 9.1


Published: 23 Sep 2015
Last Modified Date: 27 Oct 2015

Issue

After upgrading the Tableau Server to 9.1, published dashboards no longer load in iframes and the following error might occur:

This content cannot be displayed in a frame
To help protect the security of information you enter into this website, the publisher of this content does not allow it to be displayed in a frame

Environment

Tableau Server

Resolution

Step 1

Check proxy settings for 'X-Frame-Options'. If this setting specifies 'Deny' or 'SameOrigin', iframes will not display, resulting in the above error for embedded views.

Step 2

Disable Clickjack protection.

Note: See the Clickjack Protection article linked below for additional information on Clickjacking and potential security concerns before modifying this setting.
  1. On the computer running Tableau Server, open the command prompt as an administrator.
  2. Navigate to the Tableau Server bin directory:
    cd "C:\Program Files\Tableau\Tableau Server\<version>\bin"
  3. Run the following commands, in order:
    tabadmin stop
    tabadmin set wgserver.clickjack_defense.enabled false
    tabadmin config
    tabadmin start



 

Cause

X-Frame-Options header is set to 'Deny' or 'SameOrigin', either by proxy settings or by having clickjack protection enabled for Tableau Server. Clickjack protection in Tableau Server will specify 'SameOrigin'; proxy settings could specify either setting.
  • DENY means the page cannot be displayed in a frame, regardless of the site attempting to do so.
  • SAMEORIGIN means the page can only be displayed in a frame on the same origin as the page itself
 

Additional Information

New installations of Tableau Server versions 9.1 and later will always have clickjack protection enabled unless explicitly disabled.

Clickjacking
Did this article resolve the issue?