You can configure security settings and authentication methods for an embedded ThoughtSpot instance.

To allow your application users to access the embedded ThoughtSpot content, make sure you configure security settings for Cross-Origin Resource Sharing (CORS) and Content Security Policy (CSP).

To authenticate and authorize embed users, you must also configure an authentication method in ThoughtSpot.

User authentication

Application security and browser support

Access control and data security

To control user access to ThoughtSpot application workflows and data, you can use ThoughtSpot features such as group privileges, object sharing, Row-level security (RLS), Column-level security (CLS), and disabling or hiding menu actions with Visual Embed SDK.
For more information, see Access control and data security.