| Header Name | Header Data |
|---|---|
| HTTP status code | 200 |
| Access-Control-Allow-Origin | *.ameritas.com |
| Content-Security-Policy | default-src 'self' *.ameritas.com; connect-src 'self' *.ameritas.com *.cookiepro.com *.siteimprove.com *.googleapis.com adservice.google.com ameritas.tfaforms.net us-east-1-otel.formassembly.com analytics.formassembly.com analytics.audioeye.com analytics.google.com analytics.twitter.com d3hb14vkzrxvla.cloudfront.net www.facebook.com marvel-b1-cdn.bc0a.com *.analytics.google.com siteintercept.qualtrics.com stats.g.doubleclick.net t.co *.google-analytics.com www.google.com yoast.com my.yoast.com cdn.linkedin.oribi.io *.ads.linkedin.com *.siteimprove.com *.siteimproveanalytics.com *.siteimprove.net *.siteimproveanalytics.io *.amazonaws.com *.amazoncognito.com; font-src 'self' data: fonts.gstatic.com wsv3cdn.audioeye.com; form-action 'self' ameritas.tfaforms.net us-east-1-otel.formassembly.com ameritas.co1.qualtrics.com; frame-src 'self' *.ameritas.com ameritas.co1.qualtrics.com wsv3cdn.audioeye.com www.google.com www.googletagmanager.com www.youtube.com *.siteimprove.com *.siteimprove.net d.doubleclick.net td.doubleclick.net; img-src 'self' data: *.ameritas.com *.audioeye.com *.ads.linkedin.com *.qualtrics.com secure.gravatar.com *.siteimproveanalytics.io *.w.org *.b0e8.com ameritas.tfaforms.net us-east-1-otel.formassembly.com *.analytics.google.com analytics.google.com analytics.twitter.com cookie-cdn.cookiepro.com gateway.zscalerone.net googleads.g.doubleclick.net i.ytimg.com marvel-b1-cdn.bc0a.com marvel-processor.bc0a.com p.adsymptotic.com stats.g.doubleclick.net t.co translate.google.com www.facebook.com *.google-analytics.com www.google.com www.googletagmanager.com www.gstatic.com www.linkedin.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' blob: data: *.ameritas.com *.audioeye.com *.cookiepro.com *.siteintercept.qualtrics.com ameritas.tfaforms.net us-east-1-otel.formassembly.com beacon-v2.helpscout.net cdn.jsdelivr.net *.b0e8.com cdn.siteimprove.net connect.facebook.net gateway.zscalerone.net maps.googleapis.com marvel-b2-cdn.bc0a.com siteimproveanalytics.com siteintercept.qualtrics.com snap.licdn.com static.ads-twitter.com visualsponline.azurewebsites.net *.google-analytics.com www.google.com www.googleadservices.com www.googletagmanager.com www.gstatic.com www.youtube.com ajax.googleapis.com cdn.jsdelivr.net/npm/codemirror *.siteimprove.com *.siteimproveanalytics.com *.siteimprove.net *.siteimproveanalytics.io id.siteimprove.com id.eu.siteimprove.com sso2.siteimprove.com my2.siteimprove.com help.siteimprove.com cdn.siteimprove.net api.siteimprove.com contentassistant.eu.siteimprove.com; style-src 'self' 'unsafe-inline' *.ameritas.com ameritas.tfaforms.net us-east-1-otel.formassembly.com fonts.googleapis.com translate.googleapis.com wsv3cdn.audioeye.com cdn.jsdelivr.net; media-src 'self' data:; |
| Permissions-Policy | accelerometer=(),browsing-topics=(),camera=(),fullscreen=(self),geolocation=(),microphone=(),payment=(),sync-xhr=(self) |
| X-Xss-Protection | 1; mode=block |
| Content-Type | text/html; charset=UTF-8 |
| Connection | keep-alive |
| Server | Server |
| Strict-Transport-Security | max-age=63072000; includeSubDomains |
| X-Frame-Options | sameorigin |
| Vary | Accept-Encoding |
| Date | Fri, 11 Apr 2025 09:30:53 GMT |
| Referrer-Policy | strict-origin-when-cross-origin |
| X-Correlation-Id | 1cB-7c9A-rCvi |
| Link | <https://www.ameritas.com/wp-json/>; rel="https://api.w.org/" |
| X-Content-Type-Options | nosniff |
By using SecurityHeaders.info, you can quickly identify missing or misconfigured headers and take steps to secure your website, improving both security and user confidence.
This tool is widely used by developers, security professionals, and organizations to ensure their websites adhere to best practices in web security.
We also have another analytic tool that is used for identifying popularity metrics, general information about the business, finding similar products and competitors, and much more.
Watch it now at TrustRadar