Help shape the future of Box
Welcome to Box Pulse, our product feedback tool powered by UserVoice. Got an idea for how to improve Box? Share it with us and gather support or vote on other people's ideas. Your feedback is essential to informing roadmap decisions and shaping the future of our products. Thanks for joining our community!
See user guide here.
186 results found
-
Allow bulk action on Shield malicious content alerts
Allow bulk action on BoxShield malicious content alerts. We have seen an extremely high rate of positives. Individually marking files as safe is not scalable, and need to be able to do bulk updates.
12 votes -
The "Application Restriction" should be configurable with the same granularity as the "Download and Print Restriction".
(Japanese follows English)
In the "Download and Print Restriction" section of Box Shield's Access Policy, it is possible to apply download, print, move and copy restrictions to Browser/Mobile/BoxDrive by specifying Managed/Outside Users and Owner/Co-Owner/Editor.
On the other hand, third-party applications are not included in this restriction, and only downloads can be restricted under "Application Restrictions".
We would like to be able to set "Application Restriction" to the same granularity as "Download and Print Restriction, as it provides a more consistent user experience if the same controls are applied regardless of which device or application is accessing the site.
Box Shieldのアクセスポリシーの「ダウンロードと印刷の制限」でブラウザ/モバイル/BoxDriveに対してダウンロードや印刷、移動、コピーの制限を管理対象/外部ユーザや所有者/共同所有者/編集者を指定して制限を適用することが出来ます。…
11 votes -
Restrict Collaboration for Individual External User
Customer would like to have the ability to block individual external users from collaborating on their enterprise content. The external domain allow list is too broad if only one or two external users need to be blocked from collaborating on content.
11 votesNot on the roadmap for FY25, will evaluate for FY26
-
Anomalous Download Alerts for external users
For the Anomalous Download Alerts, I would like it to apply to external users too so that if they are invited to our tenant's folder and they start downloading a lot I get an alert.
10 votes -
Box Shield Dashboard "Next" and "Back" button in Alert ID page
When looking at the specific Alert ID page, I would like to have a "Next" and "Back" page so that I can go to the next Alert ID page. This is because when I get the alert ID result through the filtering and I go back to the Shield Dashboard, the filtering is reset so I need to set the filtering again to see the other Alert ID I wanted to see.
10 votes -
Take action on user based on Threat Detection Shield Rule
Extending threat detection ALERTS to take action on a user's access would be very valuable. I've heard lots of customers request having a user's account deactivated if they access Box from a suspicious location. Right now, there is not a way to do this through the core Box application, it has to be done through custom scripting or with another tool.
9 votesAutomatically logging user out from suspicious locations is on the roadmap for FY23.
-
Shield Dashboard custom date filter
In the Shield Dashboard, currently the date filter only have past 1 day, 7 days, 30 days, 60days and 90days.
I would like a custom date filter because there are times where I need to search a content 3 days ago but if I set the filter at 7 days, there is too much content to search the specific alert.8 votes -
Block file extensions lists in Shield malware detection
As part of Governance it is possible to move certain file types to a Quarantine folder. This is useful for a lot of ransomwares, as they change the extension of files.
Currently this "old" functionality has not yet been moved to Shield. Shield does have a malware detection, which uses threat detection technology. We would like to have the ability to extend this with a list of known extensions.
8 votes -
Shield enhancement against EID-to-EID content move / copy
Need the ability to generate a Shield alert when someone copies or moves content from one EID repository to another EID; to include any movement of content via the api.box.com utilizing cURL or other CLI.
8 votesThis type of detection is something we want to investigate further. We are in the midst of getting additional feedback on this topic as the team works on other Threat Detection enhancements.
-
Box Sheild - Improved alert policies
We are based out of the US but have a few users based out of other countries. As of now, every time they access Box we get an alert for a suspicious login location. We can exclude the entire country, which we do not wish to do or we can exclude a specific IP. It would be great if we could create a IF THEN statement. Example: IF user = *@specificdomain.com AND location=specific country THEN SuspiciousLocationAlert=False.
To summarize, additional configuration of alerts would be very beneficial.
7 votes -
Add Anomalous Deletion Activity Alerting to Shield
Detect and alert if a user deletes an unusual number of files / folders
7 votes -
Access Control Restrictions by user
As a administrator, I would like the ability to turn off certain Access Control Restrictions across all collaborators vs. limiting it to specific collaborator roles.
Example:
Download / Print Restrictions.we would still like users to leverage the app but, not allow them to download/print to their mobile device. Yes, the app function can be disable enterprise-wide but, we want to limit it to a specific function within the mobile app regardless of their collaborator role.
7 votes -
Access policies for individual folders
Would it be possible to set up access policies that can be applied per-folder instead of by Classification label?
We have Ethical Walls and security concerns where we need to prevent sharing of files of Client A with Client B and also with preventing individual users from being shared folders.
One way to do this would be classification policies - but I have far more clients than the twenty five label limit.
The way around this would be to allow access policies by folder, regardless of classification, as well as the Box-wide access policy for unclassified content.
Client A -…
7 votesThe feature is being evaluated for FY25 roadmap
-
Block single user
Our security has deemed a single email as suspicious. We would like to block this single email from connecting to our Box, or being collaborated into our Box.
With Shield we can block the whole domain, but that approach is too broad and would limit too many valid email addresses.
7 votesNot a priority. Will revisit in 6 months.
-
Whitelisting Access Using Managed User Groups
Companies frequently hire contractors and provide them with company email addresses to access internal networks and applications. This creates an issue with contractors having visibility into an entire folders and not just the projects/folders that apply to them. Shield's whitelisting capabilities allow us to limit external email domains, but because contractors are given a company email domain the whitelisting capabilities do not apply.
We would like to be able to create a "Consultants" Managed User Group and whitelist access to break waterfall permission for internal Managed User Groups.
7 votes -
Shield reports suspicious IP location when opening files through O365. Adds lots of unnecesary noise
In Shield, when a user previews/opens a file to Office Online it tracks as a suspicious IP location. It would be great if it could be separated and designated a lower priority than a genuine account compromise. Just a suggestion to clean up the Shield alert queue
7 votes -
Folder path for Malware
Add folder path to the exclusions of the malware scan with Shield. Use case is around safe samples of Malware being housed in Box
6 votes -
File version on Shield Alert
I would like to have the actual file version shown in the Shield Dashboard Alert ID. Currently it shows when the file is uploaded but does not show the file version. If the version is shown, it would be much easier to check the file.
6 votes -
Enable option for non-Admins (e.g. folder owners) to be notified about Box Shield Threat Detection
Enable option for non-Admins to be notified about Box Shield Threat Detection.
E.g. Owner of folder is also notified. Today, only Co-Admins can get Box Shield Threat Detection notifications.
6 votes -
Alert if classification label is changed
Send a notification when a classification is changed. When a classification is changed for a piece of sensitive content, there is currently not an alert or notification generated. Reporting capabilities on any changed classification labels are also important.
6 votes
- Don't see your idea?