Help shape the future of Box
Welcome to Box Pulse, our product feedback tool powered by UserVoice. Got an idea for how to improve Box? Share it with us and gather support or vote on other people's ideas. Your feedback is essential to informing roadmap decisions and shaping the future of our products. Thanks for joining our community!
See user guide here.
206 results found
-
Add ability to allowlist unpublished apps in a Shield list or Access Policy
Currently, the only apps that can be exempt from an Access Policy are published apps or custom JWT apps that have been approved in the Admin Console. There is a gap for unpublished OAuth apps that may need to be allowlisted from a policy.
2 votes -
File Security Classification, non-compliance label
When viewing a folder, it is currently not possible to know if there are files within the folder structure that have a differing classification label from the one at the root level. This "non-compliance" could potentially be problematic, or even a signal that someone has inadvertently changed a classification. It would be nice to have some kind of visual indicator that the top-level classification label is not 100% cascaded throughout the folder/file structure below it in the waterfall.
2 votes -
Localize the name of "Classification" metadata template to user's language
User cannot name of "Classification" metadata template which is automatically created when the user create Classification policy. At least it should localize to Box admin's language (ex "分類" in Japanese)
2 votes -
Box Classification Settings: provide ability to restrict modifications to Admins and Co-Admins
Currently, Box Classification configuration allows you to restrict classification modifications to Owner, Co-Owner, Editor, and Viewer Uploader. We would like to add Admin and Co-Admin to this list. Thank you!
1 vote -
Shared Link Expiration (Exception) Settings at Folder Level
I need to be able to control the shared link expiration rules at the folder level, especially when they are an exception from the enterprise-wise rule. We have a handful of use cases that fall outside of the top-line structure, and updating links 1-by-1 is added workflow time on the team. Changing for all assets under a folder would save time and impact when links expired by accident or stay live beyond desired timeline.
1 vote -
Scope of Access Policy Application
We request Shield Access Policy Settings to be applied in the external tenant.
[background]
The setting access policy in our tenant doesn`t apply to shared folders in external tenants.
We consider it is a risk to move folders or files incorrectly to shared folders in external tenants.1 vote -
Shield Classification UI option should gray out when user does not have permissions to update classification
If the user does not have access to classify content, they should not get this option to change the classification in shield.
1 vote -
Information Barriers Segment Report
Add an Admin Console report that can easily show which users are within Information Barrier segments. or add information barriers to the current User Details report. The current User Details report does not pull any values from the Information Barriers segments.
1 vote -
Download and Print restriction policy and Office co-authoring
I have Office co-editing enabled on my device.
An error appears when I try to edit an Office file from a web browser that has the file labeled with "Download and Print Restrictions Access Policy for Box Desktop" enabled.
It's meant to be a label to disable BoxDrive, but I'm having trouble if I can't edit it from a web browser.
Please enable Office co-authoring from a web browser, even if the file is labeled with these restriction.
1 vote -
Box Shield Alert for Anomalous Deletion of Folders or Data
We would like an alert to be created if a user deletes an anomalous amount of data. We recently had an employee leave the company under bad terms and found that before we could let her go, she had deleted a bunch of folders from Box. We were able to recover them, but this would be an indicator (much like anomalous download alerts) that something is up with this employee and we should be digging in deeper.
1 vote -
Update Shield Access Policy Restriction for Box Sign
For the Box Sign Request Restriction, add the option allow a signature request, but require additional security controls (e.g., signer authentication, password) for the signature request.
We need the ability to send sensitive content for signature but don't want it sent using a public link.
1 vote -
Be able to Block specific filetypes from being uploaded to Box
Allow for an organization-wide policy to block specific filetypes from being uploaded to Box, or at least prevent them from being uploaded/moved to specific folders with specific classifications.
1 vote -
Allow Shield Location Rule Restriction By Folder
Currently Shield's Location Restriction rule is applied to the entire EID by user/groups. It would be helpful to be able to set this up by specific folder(s) or folder structure.
Ex. Team A is not allowed to view specific content while in Location X, however Team B is able to. Currently the restriction would be set on the EID level and both teams would be under this restriction.
We could exclude group B or other groups from the rule however Group A would still be restricted from accessing other content within the EID.
1 vote -
Make MPIP and Shield Classification Labels Bidirectional
This make require partnership with Microsoft, but it would be ideal if the MPIP integration was bidirectional. For example, if a file in Box doesn't have an MPIP label, but a Shield classification label is applied, the document would have an MPIP label applied based on the mapping table
1 vote -
Ability to map Box Groups to Information Barrier Segments
The current requirement for uniqueness in Information Barrier segments only allows Box Admins to add individual users to segments, not user groups. This process can increase the long-term maintenance.
Ideally, customers should be able to use attributes from Active Directory that are then synced to Box Groups. Ultimately, the Box Groups would be used to update Information Barrier segment membership automatically. If the group update breaks the requirement that a user can only belong to one segment, Box could produce an error message.
1 vote -
Applying folder exceptions/exclusions to Classification policies
Would like to apply folder exceptions/exclusions to Classification Policies. Currently, we can apply to a selected group of folders, but we have an organizational need to be able to apply a classification policy to all content and add a small selection of folders to exclude from that classification policy.
1 vote -
Additional info in Anomalous Download Shield e-mail notifications
It would be very helpful to see "Previous weekly download amount", "anomalous download amount" and the "delta" on Anomalous download e-mail notifications. We use these to identify notifications that require further investigation, but these are only available by clicking into the reports which make this kind of detection difficult to scale and manage.
1 vote -
File criteria exclusion list for Box Shield classification policies
When setting up classification policies, Omnicell, Inc., would like to be able to create a list of custom terms to exclude, in addition to the existing ability to designate file criteria that will trigger application of a classification label. This would reduce the number of documents that will incorrectly have a classification applied when auto-classification is enabled. For example, Omnicell has a lot of content with dummy PHI in their environment - this content is allowed to be stored in Box and should not be classified; however, they also want to protect actual PHI that may be stored in Box,…
1 vote -
Allow for exceptions on the Download and Print Restriction security control.
Allow for exceptions on the Download and Print Restriction security control.
We want to restrict users from downloading files that have been identified as having PII. However, we would like a mechanism to allow users that have a business reason to download files. Either through a 'User Justification' similar to the 'External Collaborators Restriction' security policy or an approval workflow.
1 vote -
Allow groups to be specified as 'notified to' in Box Shield Threat Detection Rules
Only user accounts can be specified for the 'Notification Destination' of the Threat Detection rules in Box Shield.
Since maintenance is required when the person in charge changes, it should be possible to specify a group.■In Japanese:
Box shieldに存在する検出ルールの「通知の送信先」は、ユーザーアカウントのみが指定できます。
担当者が変わったときメンテナンスが必要になるので、グループを指定できるようにしてください。1 vote
- Don't see your idea?