@T.J_Yang what you try to do is forbidden by your browser and not a problem with the Apache security config.
I try to describe the problem - you try to link to another https resource and display this resource inside a frame in another https connection - this is forbidden.
What you can do - create a proxy config on your master site that it is possible to reach your slave with the hostname of your master. https://checkmk.com/cms_distributed_monitoring.html#pnp4nagios
Go to the point “retrieval via master”
After the change you can access your slave with “https://centos8t01.test.lan/slavesite/”
Why this way?
The solution with the reverse proxy configuration is the clean and secure way.
I don’t know what the complete impact of the changed CSP is. But the reverse proxy configuration was working a long time before. Also it has the positive impact that you are already signed in at the slave site.
In your setup you need to re authenticate at your slave the first time you click a link.
Bookmark snapin provide me a GUI way to simplified URLs management, without directly editing html/php file on web servers.
I can provide selected internal URLs and group them for checkmk login users from either ldap or active directory accounts. (kudos to ldap connection part of work).
I will look at proxy approach also but some of my URLs are not for checkmk sites.
Again, @andreas-doehler, Thanks for being friendly to new checkmk user like me and spend your time to provide very good suggestion.