UNTRUSTED CLIENT ACCESS
Untrusted Client Access rule helps to track the domains being accessed from the client side, trying to prevent attacks that cause clients to call insecure third party urls
All those client side third party calls, that can be done in different ways (link, image, script, iframe, ajax or css) are tracked by Hdiv and the information is sent to the web console. In the web console all third party domains being used from the client side are gathered, so that a whitelist of valid domains can be created based on that information. Later if any illegal domain is called from the client side Hdiv could monitor or block this call.
How to solve it
Activate untrusted client access protection