Help shape the future of Box
Welcome to Box Pulse, our product feedback tool powered by UserVoice. Got an idea for how to improve Box? Share it with us and gather support or vote on other people's ideas. Your feedback is essential to informing roadmap decisions and shaping the future of our products. Thanks for joining our community!
See user guide here.
384 results found
-
Yubikey integration with Box MFA without SSO
Yubikey integration with Box MFA without SSO
1 vote -
Box Virus Scan turned on by default
Box Virus Scan turned on by default
1 vote -
password reset scheduling during holidays
I am writing to request consideration of scheduling password changes to avoid peak vacation times. As a citizen developer, I do not have a dedicated team to manage these changes and it can be difficult to find time to complete the updates while also taking time off for vacation.
I understand the importance of regularly updating passwords for security purposes, but I believe that scheduling these updates during times when fewer people are likely to be on vacation would minimize disruptions and make it easier for everyone to stay on top of this important task.
1 vote -
"Remember me" added to login
The need to constantly log in multiple times throughout the day when using Box.com is just absolutely an awful experience. This is especially true with integrations. Every time I close a browser window and then click a link, I have to log in again. We use Box as a source for all of our content for an agency so the number of logins is high. And when we receive a link to a piece of content, we have to click "Go to my account" to log in again, which takes us to the homepage, forcing us to click the link…
1 vote -
Provide easier ways to extend collaboration expiration
Similar to the existing post below but the request is a bit different.
https://pulse.box.com/forums/909778-help-shape-the-future-of-box/suggestions/36108211-bulk-extend-collaboration-shared-link-expirationWe have folders where there are over 100 collaborators to extend on a certain cadence and need to click the "clock" button over 100 times, which obviously is so painful. We would like to have the ability to click "checkbox" to select collaborators to extend and update them in one shot.
2 votes -
Require additional Multi-Factor Authentication for external collaborators using SSO
We can require 2-FA for external collaborators, but for external collaborators using SSO, Box does not check for whether users pass multi-factor authentication. Please add the ability to require additional multi-factor authentication for external collaborators using SSO.
4 votes -
Add collaborators automatically upon request from who wants the access.
When a new collaborator is identified but not added as a collaborator yet, he/she needs to wait until permission. To reduce this idol time, automatically permit access first upon request. Check the collaborators afterwards if required. Existing folder collaborators can designate the folder that needs this function.
1 vote -
Persistent cookies
Similar to Okta and Google Drive, we need the ability in Box to set use persistent cookie so the cookie doesn't expire when the browser is closed.
Google Drive allows this by default, and Okta lets us specify the policy for specific users:
( see usePersistentCookie according in https://developer.okta.com/docs/reference/api/policy/#signon-session-object)Workflow:
* launch browser, go to Okta, and log in (our IDP)
* open up the box link - everything works
* close the browser
* open the browser
* I'm still logged into Okta (since I have usePersistentCookie turned on)
* when I go to a Box link, I'm…2 votes -
Shared Link Password Policy
Much like the default link expiry policy we would also like one specific to forcing passwords for shared links and preferably being able to define that policy with minimum characters and complexity.
Bonus would be passwords that are auto-generated and viewable by the creator of the shared links to minimize the need for external tools.
60 votes -
"Automatically remove invited collaborators" - override/shorten
I have enabled "Automatically remove invited collaborators" specifically for External Collaborators, under Enterprise settings > Content & Sharing.
There are use cases (per folder) where the content owners/co-owners would like the ability to /override/ & shorten the expiration for an External Collaborator. This could be due to a contract or any other reason.
The only method to do this now, is to delete the entire folder and all content.
Example Use Case:
Enterprise settings:
- Content & Sharing > Invited collaborators expiration settings
-- Automatically remove invited collaborators
-- Remove after [ 90 ] days
-- Apply these settings to…3 votes -
Folders to which only managed users can be invited
【Request】
Regarding the "Restrict collaboration to within {OrganizationName}" setting in the folder settings,
I would like the definition of users recognized as users in the organization to be selectable from the following two options
・Users who have same domains OR Managed Users (Same as current specifications)
・Only Managed Users【Current specifications & Issues】
Currently, for folders with this setting turned on, users can invite others who meet either of the following conditions
- Managed users of the tenant
- Users with a Box account with an email address in the registered domainAs it stands, this specification allows free accounts…
3 votes -
The option to separate file and folder permissions for a specific folder tree.
We have a folder structure that we use for our external partners where each external entity has their own subfolder. Our internal user community needs Editor permission to manage the files – move, delete, and rename but that gives them the ability to accidentally drag one external partner’s folder into a direct competitor’s folder. This would be a disaster. If I could give our internal users File-Editor and Folder-Viewer Uploader permissions the likelihood of the above mistake would drop significantly.
1 vote -
Greater flexibility in watermarking configuration
Based on our documentation:
Rasterized watermarking only (default) - Provides increased security, but no resolution scaling, no searchability, no clickable links, a moderate file size overhead, and reduced usability. This watermark type can't be removed without damaging the underlying content.Customers that want to follow a higher level of security protocol when watermarking files currently have to choose which approach is more important at an EID level.
Watermarking configuration should have greater flexibility so that the choice of rasterized or vector based watermarking is done at either a folder level OR via the shield policy assignment OR both.
This provides…
1 vote -
Automatic actions based on alerts
We would like to be able to set automated actions based on alerts. For example if Box detects anomalous download with a risk score higher than e.g. 60 or a set threshold of number of files, the user’s account will be locked to stop further downloads.
A message should then be sent to the user and IT admin that it has been locked due to anomalous download detection. Then IT need to do a investigate and take action, or reactivate the account if it is a false positive.
The pain point of not having this option is that the current…
1 vote -
Secure open link - Require email address verification with one-time password
【Summary】
Please add "Require email address confirmation by one-time password" to the Open Link settings.
This will allow the access statistics to show the email addresses of users who have accessed from the open link, so that you can determine if the access is suspicious or not.【Problem to be solved】
The current open link is not secure enough.
This is because it is not possible to determine who accessed the file.
With the current use, if a user who is not logged in to Box accesses from an open link, the access history only shows the IP address and…17 votes -
Need to have the ability to share links with "Invited people" in organization and to external people in named specific domain
Need to have the ability to share links with "Invited people" in organization and to external people in named specific domain.
We have a need to keep folder collaboration available to only a specific group of internal users but we would like to be able to have the ability to share files or folders with external collaborators in specific domains. Almost like another level of the "Invited People" type of link. Can this be considered as an enhancement?
5 votes -
Capability to finalize files
It would be useful if it's possible to "finalize" files. Means some persons work on a file together until it is finalized and then prevent any further modification on the file. There is the Lock function, but then the person who locked the file, could still unlock it.
1 vote -
Enable ability to require that someone shares their email when depositing a File Request
Enable ability to require that someone shares their email when depositing a File Request.
Today, I can only require someone to login to their Box account OR use a text field that says email, but I want a field SPECIFICALLY called email inside of File Request, so that I can trigger a Box Relay workflow to notify the email of whoever triggered the workflow (e.g. if a submission is denied, I want to notify them that it was denied and to include why........ if a submission was approved, I want to notify them that it was approved and to include…
1 vote -
Shared link expiration - based on no interaction
It would help increase security if we had an option for external links - if they aren’t interacted with after a number of days (30,60,90, etc) they’re deactivated. Our team shares content but there is often turnover and no way to know if links are still out there. With an external link report, it would help show what's out there, but would be helpful to have additional controls.
1 vote -
Restrict the ability to create shared links for specific folders
I want to be able to disable the option to create a shared link on specific folders containing sensitive information. If I give access to an external collaborator, it means that I gave him an access with a username (his email) and password. i have the option to see if he downloaded or viewed the file. I don't want that external collaborator to create a shared link and send it to someone else.
2 votes
- Don't see your idea?