Help shape the future of Box

Welcome to Box Pulse, our product feedback tool powered by UserVoice. Got an idea for how to improve Box? Share it with us and gather support or vote on other people's ideas. Your feedback is essential to informing roadmap decisions and shaping the future of our products. Thanks for joining our community!

See user guide here.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. IP whitelisting (Web App only) for BoxNotes

    We have heard that IP whitelisting with Web App only cannot control BoxNotes.
    Could you improve IP whitelisting as you can control BoxNotes with Web App only?

    40 votes
    Sign in Sign in with: Box
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  2. Set "SSO Required"/"SSO Enabled" for each user

    The current "SSO Required" is for all managed users.
    When creating "administrator user and general user" as a managed user, there are the following problems.
    -It is necessary to create an administrator user ID on the IdP side.
    -When accessing as an administrative user, it takes time and effort to log in from the IdP and access Box.
    -A license fee will also be charged on the IdP side.

    If we can set "SSO required" and "SSO enabled" for each user, the problem will be solved.

    4 votes
    Sign in Sign in with: Box
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  3. Copy All Folder Settings when copying a Folder

    When copying a folder, all folder settings should be copied over as well (or have the option to do so). As is, some settings do copy over while others don't. For example:

    Can Copy: Restrict Collaboration to within ETF, Disable Commenting, Shared Link Access, Watermarking, Uploading (Overwrite files) and Email notifications
    Won't Copy: Only Folder owners and co-owners can send collab invites, Hide Collaborators, Allow Uploads to this folder

    This would be especially useful when copying a template folder with a folder structure that needs the same settings when copied for a new project/customer/etc.

    9 votes
    Sign in Sign in with: Box
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  4. Proper 2-factor authentication with TOTP not SMS

    Using SMS for 2-factor authentication is oudated and insecure. Using TOTP is an industry standard and should be implemented.

    17 votes
    Sign in Sign in with: Box
    Signed in as (Sign out)

    We’ll send you updates on this idea

    on roadmap  ·  4 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  5. Two-factor authentication with authenticator apps

    It should be possible for 2FA login to be via an authenticator app as opposed to SMS. This is arguably more secure and more convenient and something competitors offer.

    3 votes
    Sign in Sign in with: Box
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  6. Device Trust documentation and error message should explicitly describe encryption requirements for external drives

    The Device Trust message is misleading as it states “All internal disks must be encrypted” when it should state “All disks must be encrypted”. In addition, the language under Setting-Up-Device-Trust-Security-Requirements here https://support.box.com/hc/en-us/articles/360044194993 states "Require all disks to be encrypted: Helps protect against data loss by requiring disk encryption software" but it only describes in detail internal disk encryption. It would be helpful if it stated here that all external disks must also be encrpyted.

    3 votes
    Sign in Sign in with: Box
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  7. Watermarking feature turns document to a PDF and loses all formatting

    Currently the watermarking feature turns the selected document to a PDF, therefore losing all formatting from the original application. In excel the document loses all formatting features, including tabs, etc. Watermarking should not lose the formatting of the original document - and/or allow for watermarking feature to only be used when downloading and not in the view features.

    1 vote
    Sign in Sign in with: Box
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  8. Watermarking only for downloads

    Watermarking in the Box view is intrusive. Allow for water marking feature to be marked as an option for downloaded materials only.

    1 vote
    Sign in Sign in with: Box
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  9. Automated way to manage 2 Step verification for external collaborators

    Provide API support to manage 2 Step verification settings for external collaborators .
    Our use case is to "enable only for select domains/users". It is difficult to impossible to manage this for 1000's of external collaborators via the admin console. looking for an API support here to automate the process of managing the external user's 2 Step verification settings. The API should offer
    1. Add external collaborator domain and specific email id to the 2 step verification
    2. Query status given a domain or user email address
    3. API to remove a given user / domain

    3 votes
    Sign in Sign in with: Box
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  10. The ability to send a file to a specified user without requesting receiver to create Box account

    We are looking for a way to share a file without requesting external receiver to create Box account. Shared Link with "anyone can access" is too open and risky so we need to specify the receiver by email etc. Dropbox provides this by Dropbox Transfer.

    1 vote
    Sign in Sign in with: Box
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  11. Data classification based user permissions

    USAA would like to see the ability to give users permission based on data classification

    1 vote
    Sign in Sign in with: Box
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  12. Intermediate collaborator permission level between "Editor" and "Viewer/Uploader"

    "Viewer/Uploader" is the second state in the series of current box collaborator permission levels for general users. However its operable range is very limited comparing to "Editor".

    It would be more convenient for users to have another subdivided level or two, such as "Semi-Editor" which is possible to operate files but unable to change levels.

    1 vote
    Sign in Sign in with: Box
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  13. automatically disable link expiry

    I never want my shared links to expire. I wish there was a way for me to set a link expiry preference on my account since I have to follow this process for every boxnote.


    1. create a boxnote.

    2. navigate to the folder it is in.

    3. create shared link.

    4. go to link settings.

    5. disable link expiry.

    I wish I could instead just create a box note, click share and be done with it knowing my link won't expire.

    1 vote
    Sign in Sign in with: Box
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  14. Add SentinelOne as an approved antivirus for Device Trust

    Please add SentinelOne to the list of Antivirus vendors as part of the Box Device Trust settings!

    1 vote
    Sign in Sign in with: Box
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  15. Upgrade from reCAPTCHA v2 to reCAPTCHA v3

    The pictures shown in reCAPTCHA v2 like traffic lights and crosswalks are vague, leading many users to fail to log in.
    As a result they would like Box to use reCAPTCHA v3 instead.

    5 votes
    Sign in Sign in with: Box
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  16. I don't want to receive an email that says "1 application removed" when I change my password.

    I don't want to receive an email that says "1 application removed" when I change my password.

    1 vote
    Sign in Sign in with: Box
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  17. 2FA when logging in using external password

    When SSO is enabled, users can use external passwords to access services that do not support SSO login. Security teams want to be able to enforce 2FA on logins using external passwords.

    1 vote
    Sign in Sign in with: Box
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  18. Shared link permissions enterprise default

    A way to force reset everyone to the enterprise default for shared link permission level.
    +
    A setting that would allow only a subset of users to have the broader level of sharing – say there is opt 1 – people in company / opt 2 people in company + invited / opt 3 people in company + invited + anyone with the link

    Ex. So the enterprise default for all users would be locked down to a max of option 2 (giving users opt 1 & 2 as choices) – we could allow a small subset option 3 (giving…

    1 vote
    Sign in Sign in with: Box
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  19. 2FA support in Czech Republic

    2FA is available in most countries, even by sms it is serious security improvement, Box already knows and uses 2FA anyway

    3 votes
    Sign in Sign in with: Box
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  20. Device Trust Whitelisting

    Provide ability to whitelist devices while Device Trust is enabled. We would like to enable Device Trust requiring both Domain and Certificate. But we also have lab hosts that are not domain members or have issued certificates. We would like to be able to allow hosts not meeting the Device Trust settings to login.

    1 vote
    Sign in Sign in with: Box
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 16 17
  • Don't see your idea?

Feedback and Knowledge Base