Help shape the future of Box
Welcome to Box Pulse, our product feedback tool powered by UserVoice. Got an idea for how to improve Box? Share it with us and gather support or vote on other people's ideas. Your feedback is essential to informing roadmap decisions and shaping the future of our products. Thanks for joining our community!
See user guide here.
384 results found
-
Restrict access to Box from certain countries
Can you add feature in Shield where you can allow admin to restrict access to box from certain countries?
6 votes -
Forensic watermarketing
Teams with highly sensitive embargoed (pre-release) assets really needs this in order to track exactly who leaked sensitive data without the leaker knowing they're being tracked (e.g. the blue is a slightly different blue for everyone who downloads, or the text is a slightly different gray for everyone who downloads).
1 vote -
Separate Allow and Block Lists for both Inbound and Outbound Collaboration
With regards to external collaboration, one can either enable external collaboration with any external domain (for both inbound and outbound collaboration), or one can specify an allow list of external domains for both inbound and outbound collaboration. We have different requirements with regards to inbound and outbound collaboration.
As such, we would like fine-grained control over both inbound and outbound collaboration domains. We may want a block list of inbound collaboration while having an allow list for outbound collaboration (or vice versa.)
Definitions:
Inbound collaboration: an collaboration invite from one's own Box tenant to an external, unmanaged account
Outbound collaboration:…2 votes -
Restriction of the link icon for specific folders
There have been cases of employees accidentally clicking the link icon for "Create and copy a shared link" while working on the web site.
In order to prevent such cases, is it possible to implement a function to enable or disable the link icon for specific folders on Box?
I would like to have a function that can be set for each folder.1 vote -
Real time alert if user accesses Box from a new location/device
Currently we get a Daily Login Activity report. This is a daily report and most important piece of information on it is report of new logins with information like user, device, time, and IP address..
Unfortunately this is daily and can only be on or off.
Requesting the ability to enable real time notification instead of the daily.
As it relates to security, immediate notification is critical for unauthorized access.1 vote -
Real time alert if user accesses Box from a new location/device
Currently we get a Daily Login Activity report. This is a daily report and most important piece of information on it is report of new logins with information like user, device, time, and IP address..
Unfortunately this is daily and can only be on or off.
Requesting the ability to enable real time notification instead of the daily.
As it relates to security, immediate notification is critical for unauthorized access.1 vote -
Box to prompt for a large data or folder deletion.
Box to prompt when a user is trying to delete more than X amount of data. OR Y amount of files from Box. Box to ask user to type something specific like “confirm”, “delete” or their email address in order to proceed with the file deletion.
1 vote -
Deleting all active shared links in bulk
I want to delete all the active shared links within our Company but the only way to do this is sending a report to each user for them to do themselves. As admin I would like to be able to do this every for example 3 months. This would help keep information secure by not having lots of shared links that have been forgotten about active,
1 vote -
Check the details of SSO for external collaborators
We can require 2-FA for external collaborators, but for external collaborators using SSO, Box does not check for whether users pass multi-factor authentication. Please add the ability what kind of authentications(ID/Pass, MFA, Device check, IP address limitation, etc) does external collaborators passed on SSO.
20 votes -
Need guest authentication by own AzureAD for external collaborators
We can require 2-FA for external users, but it’s not enough security level to some customers. So, please add the ability to require guest authentication by own AzureAD for external collaborators.
19 votes -
Box session timeout with SSO
We are currently considering implementing SSO. The SSO service we plan to use has a session timeout feature,
This feature allows us to control the session time of the IdP.
It would be great if we could log out the Box at the same time as the Idp session timeout.1 vote -
2FA - Option to select SMS or Email as opposed to both
Hi all,
We would like to have the option to select SMS as a 2FA method without having to have email as an option.
Back in April last year Box introduced the option to have email as a 2FA Method. Unfortunately we can’t have Authenticator app and SMS but no email as a setting. Either it’s Authenticator app only or we have to enable emails too.
On productions we go for the Authenticator app as that’s the most secure option, but one of our subsidiaries would like to give the option for SMS too.
Enabling emails is a major security…
3 votes -
Phone number format prompt
When setting 2FA by SMS, Box should update this part of the web site to specify exactly what format the phone number needs to be entered in.
E.g. "7797123456" and not +447797123456, 447797123456, +44(0)7797123456 etc.
Although it seems to work with or without a leading zero, it would be better to not include it as it is not part of the "phone number"1 vote -
Enable option to turn on Optimal Character Recognition (OCR) for all documents
Enable option to turn on Optimal Character Recognition (OCR) for all documents.
This is important for Search and Data Leakage Prevention (DLP)/Ethical Walls.
E.g. a Driver's License, Passport, etc. image gets uploaded, then Box DLP doesn't recognize this today.
3 votes -
Enable 2FA renewal requirement options for external collaborators
Background:
2FA for external collaborators does not require a re-2FA. The only way an external person will have to re-2FA is if they switch browsers or clear cache/history. I have an external user that set up 2FA in November of 2021 that hasn’t had to re-2FA to our box environment since. It has been so long that she didn’t even remember setting it up (it is Aug ’22 now). The current box 2FA implementation effectively moves the security away from box and on to the end user’s device / environment. Being external partners, we have no insight into how secure…7 votes -
UX switching 2FA method
Changing 2FA method requires removing first. This breaks existing shared feeds for others and is alarming.
The way you need to re-accept then go back and forth between pages refreshing each time before it shows as re-established is far from "Simple" or intuitive.1 vote -
Make 2FA by e-mail work for the accessible-site
Make 2FA by e-mail work for the accessible-site
1 vote -
Password updates
Login passwords currerntly enforce unnecessary format restrictions that are hindering the use of password generators. Characters < > cannot be used, and there also is a requiement to include at least two digits. Most hashing password generators use all printable characters (as they should), and ensure only the occurrence, but not the quantity, of character classes, i.e. 1 of each printable chartacter classes (uppercase, lowercase, numeric, special).
Suggestion: allowing all printable characters and only requiring a minimum of 1 character from each intended class (occirrence only) would make Box login passwords compliant with the vast majority of hashing password generators…
1 vote -
Whitelist domains on External Collab folders
We want the ability to be able to whitelist a domain on a specific folder for users for users of a business, within our External Collaboration folder which we use for our clients. EG, if the folder is to be collaborated with by our client "Acme", eg then:
FOLDER: External Collaboration > Customer > ACME
ACME Folder: Whitelist domain acme.com
1 vote -
Department of Defense (DoD) impact level 5
Department of Defense (DoD) impact level 5
1 vote
- Don't see your idea?