This article explains how to enable custom scripts for any SharePoint site. Different instructions apply to SharePoint Online, and on-premises scenarios (SharePoint 2013, 2016 and probably 2019).
Different solutions resolve the issue for different target sites:
- Modern SharePoint Team Sites (attached to Office Groups)
- SharePoint MySites
- Personal OneDrive sites
- Any SharePoint site collection created based on self-service site creation
- SharePoint Online tenant root site collection
- Any Classic SharePoint site collection
Errors and causes
Most typically I run into this when trying to insert a script web part with custom JavaScript into a site, that has NoScript enabled. That’s annoying – since script webparts are incredibly useful!
However, that is the default setting on quite a few different sites – note that Microsoft explains it this way.
By default, script is allowed on sites that admins create. It is not allowed on OneDrive, on sites users create themselves, and on the root site for your organization.
Microsoft continues:
If SharePoint Online was set up for your organization before 2015, your custom script settings might still be set to “Not Configured” even though in the SharePoint admin center they appear to be set to prevent users from running custom script. In this case, users won’t be able to copy items between SharePoint sites and between OneDrive and SharePoint. On the settings page of the SharePoint admin center, click OK to accept the custom script settings as they appear and enable cross-site copying.
Other situations when this might come up, is when uploading sandboxed solutions, or any of the following file types:
- .asmx
- .ascx
- .aspx
- .htc
- .jar
- .master
- .swf
- .xap
- .xsf
These are all files that could potentially include scripts – JavaScript, Java, ActionScript, C# – so Microsoft prefers to block or restrich them on a lot of sites. For more info about this functionality, check out this KB page by Microsoft.
You could also run into this error on your webpart pages:
How to get around the issue then? See below for the solutions I’ve found so far!
Solution(s)
This article explains a few different options on how to fix the issue depending on your environment, and the type of the site collection.
Enable custom scripts tenant-wide
Applies to: SharePoint Online
- SharePoint MySites
- Personal OneDrive sites
- Any SharePoint site collection created based on self-service site creation
Navigate to your O365 SharePoint admin portal, and click “settings”. A bit further down you’ll see these options – make sure they’re set to “Allow”:
This change will come into action in the next 24 hours.
However, if you don’t have 24 hours to wait, see the next solution.
Enable custom scripts using PowerShell
Applies to: SharePoint Online
- Modern SharePoint Team Sites (attached to Office Groups)
- Modern SharePoint Communication sites (after 08/2017)
- SharePoint MySites
- Personal OneDrive sites
- Any SharePoint site collection created based on self-service site creation
- SharePoint Online tenant root site collection
- Any Classic SharePoint site collection
Below, you can see an example of the PowerShell script required for this change.
Connect-SPOService -Url https://<tenant>-admin.sharepoint.com -credential admin@<tenant>.onmicrosoft.com Set-SPOSite -Identity https://<tenant>.sharepoint.com/... -DenyAddAndCustomizePages 0
Unlike the switch on tenant admin site, this change should be practically instant.
However, if you want to apply this change to On-Premises environments, you might want to check out the following solution…
Enable custom scripts using SharePoint Patterns and Practices (PnP) PowerShell
Applies to: SharePoint Online | SharePoint 2013 | SharePoint 2016
# For On-Premises, replace "Online" in the library name with 2013 or 2016 Import-Module -Name SharePointPnPPowerShellOnline -DisableNameChecking $DenyAddAndCustomizePagesStatusEnum = [Microsoft.Online.SharePoint.TenantAdministration.DenyAddAndCustomizePagesStatus] Connect-PnPOnline -Url 'https://<private>-admin.sharepoint.com/' -Credentials (Get-Credentials) $context = Get-PnPContext $site = Get-PnPTenantSite -Detailed -Url 'https://<private>.sharepoint.com/' $site.DenyAddAndCustomizePages = $DenyAddAndCustomizePagesStatusEnum::Disabled $site.Update() $context.ExecuteQuery() Get-PnPTenantSite -Detailed -Url 'https://<private>.sharepoint.com/' | select url,DenyAddAndCustomizePages Disconnect-PnPOnline
This script should be almost instant as well – we’re talking about a delay of 30 seconds or so, so quite an improvement over the switch on tenant admin site!
For a pretty good documentation about the whole NoScript stuff, check out this page:
Antti K. Koskela
Latest posts by Antti K. Koskela (see all)
- Thanks for coming to my session at SPS New England 10/20 ! - October 20, 2018
- Speaking at SPS New England on 10/20! - October 17, 2018
- Ignite 2018 recap: What’s new for Azure Functions? - October 16, 2018
- Problematic behavior of web.AddSupportedUILanguage(int lcid) in SharePoint 2013 and 2016 - October 10, 2018
