Help shape the future of Box
Welcome to Box Pulse, our product feedback tool powered by UserVoice. Got an idea for how to improve Box? Share it with us and gather support or vote on other people's ideas. Your feedback is essential to informing roadmap decisions and shaping the future of our products. Thanks for joining our community!
See user guide here.
392 results found
-
Check the details of SSO for external collaborators
We can require 2-FA for external collaborators, but for external collaborators using SSO, Box does not check for whether users pass multi-factor authentication. Please add the ability what kind of authentications(ID/Pass, MFA, Device check, IP address limitation, etc) does external collaborators passed on SSO.
20 votes -
Need guest authentication by own AzureAD for external collaborators
We can require 2-FA for external users, but it’s not enough security level to some customers. So, please add the ability to require guest authentication by own AzureAD for external collaborators.
19 votes -
Secure open link - Require email address verification with one-time password
【Summary】
Please add "Require email address confirmation by one-time password" to the Open Link settings.
This will allow the access statistics to show the email addresses of users who have accessed from the open link, so that you can determine if the access is suspicious or not.【Problem to be solved】
The current open link is not secure enough.
This is because it is not possible to determine who accessed the file.
With the current use, if a user who is not logged in to Box accesses from an open link, the access history only shows the IP address and…19 votes -
Open Shared Link Controls: Prevent Open Shared Folder Links without Disabling Company Folder Shared Links
Right now you can't disable Open folder links without disabling Company folder links. The native Box setting for this is too restrictive (prevents sharing folders internally other than via collaboration).
18 votesWe are currently focussed on bulk operations with managing Shared links.
-
Set "SSO Required"/"SSO Enabled" for each user
The current "SSO Required" is for all managed users.
When creating "administrator user and general user" as a managed user, there are the following problems.
-It is necessary to create an administrator user ID on the IdP side.
-When accessing as an administrative user, it takes time and effort to log in from the IdP and access Box.
-A license fee will also be charged on the IdP side.If we can set "SSO required" and "SSO enabled" for each user, the problem will be solved.
17 votes -
Custom Watermarking
User would like the ability to increase the size of the watermarks, as well as the frequency that it shows up on the documents
16 votesWhile we like this idea, it is not currently planned at this time.
-
Secure open link - Domain white list for open shared link
This request is an idea that will become possible after the following requests are realized.
Secure open link① - Require email address verification with one-time password
https://pulse.box.com/forums/909778-help-shape-the-future-of-box/suggestions/43755942-secure-open-link-require-email-address-verifica【Summary】
Please add "Allow only email addresses from specific domains to receive one-time passwords" to the Open Link settings.
This will make it possible to prevent secondary distribution and miscommunication, which is a huge issue for Open Link.【Issues to be solved】
Current Open Link is not secure enough as an alternative to attachments.
Compared to attachments, the ability to determine the information of the access source and the ability to block access…14 votes -
Email Notifications for Expiring External Collaborators
In addition to the owner of the folder receiving a notification that a collaboration is expiring, the user who initiated (invited) the collaborator, and the collaborator themselves receive notifications.
14 votesWhile we like this idea, it is not currently planned at this time.
-
Collaboration Blacklisting
We would benefit from the ability to make a blacklist of collaborations (perhaps via domain) to prevent against the inbound or outbound collaboration with a certain (or set) of domains.
The current collaboration whitelist capabilities do not permit for blacklisting -- they only allow for whitelisting.
For example: "Can we block all inbound and outbound requests to/from a certain domain (e.g., gmail.com)?"
13 votesNot currently planned at this time.
-
Copy All Folder Settings when copying a Folder
When copying a folder, all folder settings should be copied over as well (or have the option to do so). As is, some settings do copy over while others don't. For example:
Can Copy: Restrict Collaboration to within ETF, Disable Commenting, Shared Link Access, Watermarking, Uploading (Overwrite files) and Email notifications
Won't Copy: Only Folder owners and co-owners can send collab invites, Hide Collaborators, Allow Uploads to this folderThis would be especially useful when copying a template folder with a folder structure that needs the same settings when copied for a new project/customer/etc.
12 votes -
Create exceptions for auto-expiration of sharing and external collaborators
We have auto-expiration on file sharing but often need to share files with external collaborators for an indefinite amount of time. We can't keep re-sharing the file. Same for external collaborators - we have auto-expiration but we can't keep re-sharing folders with them.
12 votes -
Automate quarantining of infected files
While speaking with Box Premiere Support Team, it was stated that there is no current option/means to automatically place an infected file into quarantine. The file stays available and is up to the Content Owner/Site Admin to manually address the issue.
It would be nice to have a feature that automatically placed suspicious/infected files in a designated quarantine folder while it is being reviewed. This will eliminate the potential for someone to accidentally download the file and cause potential harm.
12 votes -
Allow owners and co-owners of folders to be notified of auto-expiration events
Instead of only the owner and collaborator inviter being notified, include all folder co-owners in the email notification.
12 votes -
Require password when sharing with external users
There is a regulation in Japan called the privacy mark, where obtaining this qualification you need to put a password on all files you share outside of your company. Without this qualification you are not allowed to do business in certain industries
12 votesNot currently planned at this time.
-
12 votes
-
Require 2FA for certain content only (not globally)
Force 2-factor / MFA based on the type of content, folder, user. etc. - natively in Box or support this functionality through IdP
11 votes -
11 votes
This is not something that we would consider as part of the basic virus-scan for all files today. Customers requiring advanced features such as quarantining malicious files can benefit from a CASB product with Box integration
-
10 votes
-
10 votes
Not currently planned at this time.
-
Suppress Notifications - Expand Scope to Suppress In-App Entries in the Updates Feed & Access Stats (for DLP & CASB Integrations)
Services (like DLP and CASB partners such as Netskope and Skyhigh) that use the Content API to scan Box content have the ability to suppress email notifications that would normally be generated for various activity (such as downloads, etc.). This is great as the activity from these services should be transparent and not exposed to the end user.
However, the Suppress Notifications header currently only applies to suppressing email notifications -- these entries for activity from these API-based services still are exposed in-app to end users on the Updates feed and in other locations such as Access Stats.
REQUEST: Expand…
10 votesNot currently planned at this time.
- Don't see your idea?