Views:

Applies to Product - Power Pages


What’s happening?
Customers are experiencing difficulties accessing their production Power Pages sites. Additionally, there are reports of spam attacks targeting the Contact Us page, leading to an influx of unauthorized login attempts.
 

Reason:

  • The production Power Pages site may have configuration issues or security settings that allow unauthorized access.
  • The Contact Us page is vulnerable to spam attacks, potentially due to inadequate security measures.

 

Resolution:

  1. For access issues with the Power Pages site:
  2. Navigate to the website and append “/_services/about” to the URL to access cache clearing options.
  3. Ensure that the user has a web role assigned with all site access permissions.
  4. Clear the cache and configuration, then synchronize the website to check if the issue persists.
  5. For spam attacks on the Contact Us page:
  6. Implement a captcha on the form to mitigate spam submissions.
  7. Review the site's security settings, specifically:
    • Content Security Policy
    • HTTP/X-Content-Type-Options setup
  8. Collaborate with the development team to address any security warnings identified during a portal scan.
  9. Refer to documentation on portal security setup for further guidance.