Help shape the future of Box

Welcome to Box Pulse, our product feedback tool powered by UserVoice. Got an idea for how to improve Box? Share it with us and gather support or vote on other people's ideas. Your feedback is essential to informing roadmap decisions and shaping the future of our products. Thanks for joining our community!

See user guide here.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Secure open link - Require email address verification with one-time password

    【Summary】
    Please add "Require email address confirmation by one-time password" to the Open Link settings.
    This will allow the access statistics to show the email addresses of users who have accessed from the open link, so that you can determine if the access is suspicious or not.

    【Problem to be solved】
    The current open link is not secure enough.
    This is because it is not possible to determine who accessed the file.
    With the current use, if a user who is not logged in to Box accesses from an open link, the access history only shows the IP address and…

    8 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  2. Shared Link Password Policy

    Much like the default link expiry policy we would also like one specific to forcing passwords for shared links and preferably being able to define that policy with minimum characters and complexity.

    Bonus would be passwords that are auto-generated and viewable by the creator of the shared links to minimize the need for external tools.

    12 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  3. Secure open link - Domain white list for open shared link

    This request is an idea that will become possible after the following requests are realized.
    Secure open link① - Require email address verification with one-time password
    https://pulse.box.com/forums/909778-help-shape-the-future-of-box/suggestions/43755942-secure-open-link-require-email-address-verifica

    【Summary】
    Please add "Allow only email addresses from specific domains to receive one-time passwords" to the Open Link settings.
    This will make it possible to prevent secondary distribution and miscommunication, which is a huge issue for Open Link.

    【Issues to be solved】
    Current Open Link is not secure enough as an alternative to attachments.
    Compared to attachments, the ability to determine the information of the access source and the ability to block access…

    4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  4. Extension of the "Auto-Delete" Period

    The BOX "auto delete" function for folders must accept a period of 100 years. It is currently limited to 85 years and I need to keep some HR files for a period of 100 years by definition of control and security. I request the extension of the term from 85 years to 100 years.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  5. Allow One-Off Reissue of Custom Terms of Service in Box

    If a user ever rejects a custom terms of service, they are not able to access Box or attempt to connect via the collaboration link. It seems that they could try again in 30 days (we have not tested, this is way too long to wait for a time-out).

    The only resolution to allow the single external collaborator to "reset" the ToS and accept them to sign in is to disable and re-enable custom ToS for all users.

    This is a major problem - we should not have to revalidate all ToS for EVERY user to resolve an issue for…

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  6. Separate Device Trust settings for webapp on mobile browser vs desktop browser

    We want to have a separate Device Trust setting for webapp on mobile browser and desktop browser. We would like to enable Device Trust for mobile browser only (that is, block webapp on mobile browser) while not requiring Device Trust check for login from desktop PCs. Currently, there is only a single setting for webapp and 3rd party apps. We would like this to be more granular and have a separate config for mobile browser and desktop browser.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  7. advance generation of 2nd factor authentication codes

    provide an option to generate a one time code for 2 factor authentication in advance.

    We have a use case where an external organisation has provided a PC in their site where our users can log in to box, however our users are not allowed to bring their own devices (phones or laptops) onto the site.

    To continue using 2FA it would be useful if a user could generate a one time code in advance print it then use it as the 2nd factor when logging in to the machine proved by the external organisation.
    (similar to google authenticator backup…

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  8. Ability to whitelist files(sha1) from virus detection

    Please consider to have an option to add whiltelist of files (sha1) so that it won't be show up as an unsafe file from virus scanning.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  9. 1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  10. New Authentication Process at sign in

    The new authentication process is forcing us to use two step authentication even with our ATB Email address' every time we enter or come back after a period of time.

    I am really hopeful that this is being looked into as its the most inconvenient. Our CSR's do not have business devices for google authenticator nor does the text feature seem to work to the branch office phones and when you ask it to call it takes a bit for the phones to ring and connect and cuts half the message off so we don't get a code. This is…

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  11. Password Requirements - customize min required characters

    Password Requirements -> Minimum required characters -> only has the options of 6, 7, 8, 10 and 12. We would like to be able to set this character as 9, or any number in between 6-12.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  12. 2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  13. MFA timeout options

    The whole purpose of MFA is to add more security to whatever the MFA is connected to. Currently Box does not require users to be prompted again for MFA once they have signed in successfully to that browser. This browser is now trusted until the cache is cleared. I believe there should be multiple options for MFA in which it can be kept like it is now or at least give admins the option to set it to every time, or after a certain amount of hours/days pass. Leaving it as it is now doesn't leaves the users box data…

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  14. keysafe

    Box keysafe requires the use of a specific AWS region, but from the perspective of disaster response, we request that the service be deployed in multiple regions.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  15. Show the password when typing to avoid typo's

    Add an option for the user to see the password they are typing to avoid typos when sending to the client. At the moment, there is no option to see what you have typed until the client is telling you that the password doesnt work. Especially with caps, symbols etc.

    3 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  16. Co-Owner should be able to confirm the destination of the file (or the user who operated it)./Co-ownerにもファイルの移動先(あるいは、操作したユーザー)確認をできるようにしてほし

    We know that if we want to know where a folder has been moved to, we can ask the administrator to output it from the report.
    However, We would like the Co-owner to be able to check the destination of the file (or the user who operated it) in case of urgency.

    (In Japanese)
    フォルダの移動先を知りたい場合、管理者に問い合わせる事でレポートから出力する事が可能である事ですが
    急ぐ場合にCo-ownerにもファイルの移動先(あるいは、操作したユーザー)確認をできるようにしてほしいです。

    3 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  17. Include device identification in Device Trust logs

    We think it would be valuable to be able to identify a specific device failing Device Trust. Either MAC address or computer name would be useful. Computer name would be the preference.
    This to positively identify the device end users are using to connect. As we were implementing Device Trust we ran into numerous situations where end users were connecting from multiple devices and not transparent with us that they were using multiple computers.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  18. Security Logs to add changes to Device Trust requirement settings

    We would like to see in security logs to add changes to Device Trust requirements settings and possibly to get notifications for when certain enterprise settings are modified.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  19. Select which 2FA/2SV feature

    There are currently 2 2FA mechanisms, SMS or Auth App.
    We would like to be able to select which mechanism to be available to users. We want to avoid users from having to use SMS

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  20. Hide and add permissions to folders

    I would like to hide or lock folders as I have multiple employees.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 15 16
  • Don't see your idea?

Feedback and Knowledge Base