Open
Cached
·
just now
18
Headers
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31536000
Content-Security-Policy
Good
default-src; script-src; style-src; +7 more
default-src 'self' p11.techlab-cdn.com;script-src 'self' 'unsafe-inline' *.cdw.com *.richrelevance.com *.qualtrics.com *.optimizely.com *.needle.com *.liadm.com *.demandbase.com *.appspot.com *.facebook.net *.googleadservices.com *.doubleclick.net *.google-analytics.com *.bing.com *.googleapis.com *.akamaihd.net *.google.com *.twitter.com *.demdex.net *.d41.co *.cxense.com pactsafe.io *.webcollage.net *.simpli.fi *.googletagmanager.com *.googlesyndication.com *.googletagservices.com *.ytimg.com *.youtube.com *.easy2.com *.go-mpulse.net *.linkedin.com *.cdnwidget.com *.rlcdn.com *.cloudfront.net *.bluecore.com p.adsymptotic.com *.dotomi.com blob: *.flixsyndication.net data.g2.com *.g2crowd.com *.adobe.com *.omtrdc.net *.spexlive.net *.gstatic.com *.turnto.com *.licdn.com *.hs-scripts.com *.ispot.tv *.hsleadflows.net *.hs-banner.com *.hsforms.net *.hubapi.com *.syndigo.com *.syndigo.cloud *.hsforms.com *.hubspot-forms-static-embed.s3.amazonaws.com *.hubspot.com *.tiqcdn.com *.tealiumiq.com *.adroll.com *.hs-analytics.net js.usemessages.com *.hscollectedforms.net *.redditstatic.com *.reddit.com *.adsrvr.org *.scene7.com *.vidyard.com *.vimeo.com *.hp.com *.etilize.com *.1worldsync.com *.quantserve.com *.quantcount.com *.spexaccess.net *.onetrust.com *.oribi.io *.cookielaw.org *.criteo.com *.criteo.net *.stackadapt.com *.zemanta.com *.botframework.com *.administrateweblink.com *.stripe.com *.pactsafe.io *.peerspot.com *.sketchfab.com *.quantummetric.com *.fiservapps.com *.quora.com sierra.chat *.algorecs.com *.cimulate.ai *.officeperceptioninstinct.com *.oktapreview.com *.okta.com *.adobedtm.com *.mktoresp.com *.mktoapi.com *.mktoweb.com *.mktoedge.com *.adobedc.net *.marketo.net *.adoberesources.net p11.techlab-cdn.com;style-src 'self' 'unsafe-inline' *.cdw.com *.needle.com *.googleapis.com *.webcollage.net *.easy2.com *.amazonaws.com *.cloudfront.net blob: *.typekit.net *.adobe.com *.omtrdc.net *.spexlive.net *.turnto.com *.syndigo.com *.syndigo.cloud *.scene7.com *.etilize.com *.1worldsync.com *.spexaccess.net *.stackadapt.com *.administrateweblink.com *.stripe.com *.sketchfab.com *.quantummetric.com sierra.chat *.adobedtm.com;img-src 'self' *.cdw.com *.qualtrics.com *.optimizely.com *.needle.com *.liadm.com *.googleadservices.com *.doubleclick.net *.google-analytics.com *.bing.com *.akamaihd.net *.google.com *.demdex.net *.cxense.com *.webcollage.net *.googletagmanager.com *.googletagservices.com *.ytimg.com *.youtube.com *.easy2.com *.amazonaws.com *.linkedin.com *.company-target.com *.facebook.com *.cdnwidget.com *.rlcdn.com *.cloudfront.net *.adobecqms.net *.everesttech.net *.bluecore.com *.prod.bidr.io cdn.optimizely.com p.adsymptotic.com um.simpli.fi data: *.dotomi.com *.flixsyndication.net liveintent.com *.adobe.com *.omtrdc.net *.spexlive.net *.windows.net *.turnto.com *.edgecastcdn.net *.licdn.com *.ispot.tv *.syndigo.com *.syndigo.cloud *.hsforms.com *.hubspot.com *.tiqcdn.com *.tealiumiq.com *.adroll.com *.redditstatic.com *.reddit.com *.adsrvr.org *.scene7.com *.vidyard.com *.vimeocdn.com *.etilize.com *.1worldsync.com *.quantserve.com *.quantcount.com *.spexaccess.net *.oribi.io *.cookielaw.org *.criteo.com *.criteo.net *.stackadapt.com *.zemanta.com *.pactsafe.io *.administratehq.com *.peerspot.com *.sketchfab.com *.quora.com sierra.chat *.officeperceptioninstinct.com *.oktapreview.com *.okta.com *.hubspotusercontent-na1.net *.adobedtm.com *.mktoedge.com;frame-src 'self' *.cdw.com *.qualtrics.com *.needle.com *.liadm.com *.doubleclick.net *.google.com *.twitter.com *.demdex.net *.cxense.com *.webcollage.net *.googletagmanager.com *.googletagservices.com *.youtube.com *.easy2.com *.facebook.com *.rlcdn.com *.cloudfront.net *.cdwemail.com www.emjcd.com *.dotomi.com *.kingston.com *.flixsyndication.net *.adobe.com *.spexlive.net *.swcontentsyndication.com *.cisco.com *.exct.net *.syndigo.com *.syndigo.cloud *.hsforms.com *.adsrvr.org *.scene7.com *.vidyard.com *.vimeo.com *.hp.com chromeos-selector-cdw-prod.web.app *.etilize.com *.1worldsync.com *.spexaccess.net *.onetrust.com *.criteo.com *.criteo.net *.se.com *.administrateweblink.com *.stripe.com *.sketchfab.com *.quantummetric.com *.fiservapps.com *.microsoft.com *.mktoweb.com *.adobedc.net;font-src * data:;connect-src 'self' *.cdw.com *.richrelevance.com *.qualtrics.com *.optimizely.com *.needle.com *.liadm.com *.demandbase.com *.appspot.com *.googleadservices.com *.doubleclick.net *.google-analytics.com *.bing.com *.googleapis.com *.akamaihd.net *.google.com *.demdex.net *.d41.co *.cxense.com *.webcollage.net *.googletagmanager.com *.googletagservices.com *.go-mpulse.net *.linkedin.com *.company-target.com *.facebook.com *.cdnwidget.com *.cloudfront.net *.bluecore.com p.adsymptotic.com *.cdnbasket.net *.akstat.io data.g2.com *.g2crowd.com *.adobe.com *.omtrdc.net *.spexlive.net *.turnto.com *.ispot.tv *.hubapi.com *.syndigo.com *.syndigo.cloud *.hsforms.com *.hubspot-forms-static-embed.s3.amazonaws.com *.hubspot.com *.tiqcdn.com *.tealiumiq.com *.adroll.com *.scene7.com *.addressy.com *.etilize.com *.1worldsync.com *.quantserve.com *.spexaccess.net *.onetrust.com *.oribi.io *.cookielaw.org *.criteo.com *.criteo.net *.stackadapt.com *.botframework.com wss://*.botframework.com *.administrateweblink.com *.pactsafe.io *.administratehq.com *.sketchfab.com *.quantummetric.com sierra.chat *.algorecs.com *.cimulate.ai wss://*.cimulate.ai *.adobedtm.com *.mktoresp.com *.mktoapi.com *.mktoweb.com *.mktoedge.com *.adobedc.net *.marketo.net p11.techlab-cdn.com;object-src 'self' *.cdw.com *.scene7.com;media-src 'self' *.cdw.com *.webcollage.net *.youtube.com blob: *.flixsyndication.net *.spexlive.net *.syndigo.com *.syndigo.cloud *.tiqcdn.com *.scene7.com *.etilize.com *.1worldsync.com *.spexaccess.net *.sketchfab.com;worker-src 'self' *.needle.com *.cloudfront.net blob: *.quantummetric.com *.cimulate.ai;
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Strengthen CSP by removing 'unsafe-eval'
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
Performance Headers
2 headers
Connection
Performance
Transfer-Encoding
Transfer-Encoding
Performance
chunked
Caching Headers
2 headers
Cache-Control
Caching
no-store, no-cache
Pragma
Caching
no-cache
Content Headers
1 headers
Content-Type
Content
text/html; charset=utf-8
Server Headers
0 headers
No server headers found
CORS Headers
0 headers
No CORS headers found
Cookies Headers
1 headers
Set-Cookie
Cookies
bm_sz=FAFE8B8043497C370250BCBE384884F6~YAAQR2QwF5XqgSmbAQAA2gMhfB4OkI70NHiiQK4pjPMfHPSbzZVBhwDuPUqw/5reCQyGHQBhCGZrDvwBaMbeKk/Nx3711b/1mn4lqU50OubVSrph67ItS4ip8D8zosSCo66YotBC3bYdTvEi95bGpVXPkJuHe4VIYdrmQjXZbOIBAED0Rtcmp0CzdYCwDFarJR/yJ6mrVbgEq4iWFyXxRq6QkoIMV0+jZ0VI70A2x9krl+dRisnaXRbW74OLsDXmFiDiOrm7X38izohVm/N5XyZ5tUk8CTf00JmYiVpINa2o3qryWpAM4ItW4zqoSfG0kc1WwxEVjgfXJyVKlkXfFV4damkbDxZ7OEQ=~4468785~4405552; Domain=.cdw.com; Path=/; Expires=Fri, 02 Jan 2026 04:34:57 GMT; Max-Age=14400; SameSite=None; Secure
Other Headers
7 headers
Date
Other
Fri, 02 Jan 2026 00:34:57 GMT
P3p
Other
CP="CAO DSP DEVa TAIa OUR BUS UNI FIN COM NAV INT STA"
Server-Timing
Other
ak_p; desc="1767314096992_389047367_1228251423_10206_9160_1_5_-";dur=1
X-Akam-Sw-Version
Other
0.5.0
X-Akamai-Transformed
Other
9l 27299 0 pmb=mRUM,2
X-Cdw-Device
Other
desktop
X-Cdw-Member
Other
201
Recommendations
Enable compression (gzip/brotli) to improve performance