It looks like your company has strict security settings that prevent the ActivityMap frame from being injected into the web page.It is because of your Content-Security-Policy. Here are two ways you could update the content security policy to have ActivityMap work on their site:
Wild card domains
- For 'connect-src', add sitecatalyst.omniture.com
- For 'frame-src', add *.omniture.com
No wild card domains
- For 'connect-src', add sitecatalyst.omniture.com
- For 'frame-src', add sitecatalyst.omniture.com authorize.omniture.com sc5.omniture.com
Preference would be that you use the wild card domains, in case the Experience Cloud login process ever changes in the future and uses different domains.
Hope this helps!
Thanks,
Saumya