Help shape the future of Box

Welcome to Box Pulse, our product feedback tool powered by UserVoice. Got an idea for how to improve Box? Share it with us and gather support or vote on other people's ideas. Your feedback is essential to informing roadmap decisions and shaping the future of our products. Thanks for joining our community!

See user guide here.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Box Shield inherit classification on move/copy, not only on upload

    Box Shield needs to have the ability for files to inherit the classification of the containing folder during a move or copy. Currently, a file will only inherit the classification if it is uploaded to the folder with a certain classification. Example:

    File A has a classification of "Confidential" and is moved/copied to a folder that has an "Internal" classification. File A will not automatically inherit the "Internal" permission, and it either needs to be manually changed to "Internal", or have the entire containing folder re-classified as "Internal" so that all containing files then inherit the "Internal" classification.

    However, if…

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    not planned  ·  1 comment  ·  Shield  ·  Flag idea as inappropriate…  ·  Admin →
  2. Shield reports suspicious IP location when opening files through O365. Adds lots of unnecesary noise

    In Shield, when a user previews/opens a file to Office Online it tracks as a suspicious IP location. It would be great if it could be separated and designated a lower priority than a genuine account compromise. Just a suggestion to clean up the Shield alert queue

    6 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Shield  ·  Flag idea as inappropriate…  ·  Admin →
  3. Device Pinning as a condition for "Download Restriction"

    Wondering if "device pinning" can register details of devices utilized by the user and allows/disallow the login from it. Why cant it be used as a condition under "Download Restriction". MDM solutions are not yet fully matured to cover all & frequently changing devices types .

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Shield  ·  Flag idea as inappropriate…  ·  Admin →
  4. Threat Detection Reporting

    My customer would like to get a report of the activities that detection rule is processing to ensure that is actually working. They have one rule (suspicious session) that has not generated any hits and thus they don’t know if it’s actually doing anything or not.

    3 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Shield  ·  Flag idea as inappropriate…  ·  Admin →
  5. Log Access Policy Violations

    Box currently only logs successful actions. We would like to see when a user attempts to share content that is blocked by Shield Access policies. From a DLP and insider threat perspective this would be huge in determining what people are attempting to do, not just what they are successful at doing.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Shield  ·  Flag idea as inappropriate…  ·  Admin →

    External collab restriction enforcement logs have been available via Event API. Download and shared link restriction enforcement logs will be made available in coming quarters.

  6. Return character in Classification Definition

    Currently "Classification Definition" can be written with 'return character' in its input form. But when this "Classification Definition" is shown to the user, 'return character' is being ignored and is shown in one line.

    Definition needs to be shown in the same way it was written / configured, and also needs to be shown in several lines when required (e.g. written in multiple languages where each language's definition needs to be shown in each line, instead of all in single line).

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    under consideration  ·  1 comment  ·  Shield  ·  Flag idea as inappropriate…  ·  Admin →
  7. Preventing Business file leak from Private folder.

    Box in our tenant provides a "Private folder", to every user, which doesn't allow the user to add collaborators. User can, however, use box link to share files with others.

    In a corporate setting, this folder is supposed to be accessible only by its respective owner( an employee), On an exit of the employee from the organisation, the private files in the folder may be allowed by the organisation to be copied/taken by the employee along. However, at the same time, it must be ensured that the business files are not stored in this folder to avoid leakage.

    I suggest…

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Shield  ·  Flag idea as inappropriate…  ·  Admin →
  8. Box Shield

    Can we have more granular on the detection rules, e,g, down to user groups, or individual account level - allowing customers to set priorities as high for some user groups, but low for others.  For some users, a customer may expect high levels of downloads/activity in Box and this may be in peaks and troughs - therefore potentially a lower priority, whereas with execs this activity should be treated as a higher priority and greater risk.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Shield  ·  Flag idea as inappropriate…  ·  Admin →
  9. Using Smart Access

    When entering a List when creating a Shield Smart Access Policy, have drop down appear that shows all available lists with short descriptions so the user doesn't have to try to remember the names of the lists they created or what they generally contain.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    under consideration  ·  0 comments  ·  Shield  ·  Flag idea as inappropriate…  ·  Admin →
  10. Visibility and controls on externally owned content

    Box admins should be able to restrict their users from uploading or moving sensitive content to folders that are owned by another Box instance. There should be controls around what defines sensitive content. Box admins should have visibility into what's uploaded or moved into the external folders in reports.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Shield  ·  Flag idea as inappropriate…  ·  Admin →
  11. Localize the name of "Classification" metadata template to user's language

    User cannot name of "Classification" metadata template which is automatically created when the user create Classification policy. At least it should localize to Box admin's language (ex "分類" in Japanese)

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Shield  ·  Flag idea as inappropriate…  ·  Admin →
  12. Be able to write definition in multiple language (ex.ENG/JP) on "classification" definition field.

    Function request regarding the Definition field of "Classification"
    Would like to enter a description with each language in the "Classification Definition" column.
    Even if English / Japanese can be written together in the current definition column, currently, each lines breaks are not possible. hope to make it possible.

    However, it is in trouble because a line break cannot be made each.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Shield  ·  Flag idea as inappropriate…  ·  Admin →
  13. Classification definition

    Currently when classifying a document it is only possible to see the top 2-3 lines and is not rich text therefore doesn't support returns, bold type, links, bulleted lists or colour.
    While the full 300 characters are displayed in the details pane, Users need to see all the details prior to applying the classification.

    REQUEST: To make the dropdown either expandable (i.e. 'show more') or to show the full 300 character classification definition and to make the definition field 'Rich Text' so its possible to give more context to the classification e.g. provide a list of example documents or link…

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Shield  ·  Flag idea as inappropriate…  ·  Admin →
  14. 4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    under consideration  ·  0 comments  ·  Shield  ·  Flag idea as inappropriate…  ·  Admin →
  15. We want the ability for Download policies to also trigger on unusual download activity by external collaborators

    We see external collaborators with high download activity using accounts outside of our enterprise (ie: gmail, yahoo?). The business is getting quite frustrated that they cannot report on these email addresses.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Shield  ·  Flag idea as inappropriate…  ·  Admin →
  16. Set default classification for all uploads with Box Classification

    When every file is uploaded, set a default Classification value that can be updated manually or via a partner (Netskope, SkyHigh, Titus, etc.).

    12 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Shield  ·  Flag idea as inappropriate…  ·  Admin →

    Default classification label is not planned because it could be misleading to end users. However, to address the concern of content being leaked before it is classified, you can create an access policy applying to “All content without a classification label” in Box Shield.

  17. Granular permissions per user for sharing public links/classified documents

    The administrator should be able to set the default classification for all new documents (e.g. For Official Use).

    Each user should be able to set their own default classification (which will override the system setting (e.g. Classified).

    Each user should be able to change the classification for any new or existing document where she has sufficient rights. For existing documents, she should also be able to select multiple documents, and then change the classification for all those documents in one go.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Shield  ·  Flag idea as inappropriate…  ·  Admin →

    Default classification label is not planned because it could be misleading to end users. However, to address the concern of content being leaked before it is classified, you can create an access policy applying to “All content without a classification label” in Box Shield.

  18. Events API - Add Policy Name to CONTENT_WORKFLOW_UPLOAD_POLICY_VIOLATION

    Currently, when an Upload Policy violation occurs, Box reports on that violation in 3 ways:
    1. Email notification
    2. Admin Console -> Reports tab
    3. Events API

    In the email notification and admin console->reports, Box provides the policy name for which the violation is occurring. However, Box does NOT include the policy name in the Events API entry, which causes a problem when we are pulling logs (via the Events API) into external reporting/SIEM tools like ArcSight/Splunk.

    Request: Add 'Policy Name' to the CONTENTWORKFLOWUPLOADPOLICYVIOLATION entry in the Events API (to reach parity with the native Admin…

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    not planned  ·  1 comment  ·  Shield  ·  Flag idea as inappropriate…  ·  Admin →
  19. 0 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    not planned  ·  0 comments  ·  Shield  ·  Flag idea as inappropriate…  ·  Admin →
1 2 4 Next →
  • Don't see your idea?

Feedback and Knowledge Base