Security Report: Log when apps are disabled/enabled in the Admin Console
Currently, when admins/co-admins mark apps as 'available' or 'disabled' in the Admin Console -> Enterprise Settings -> Apps page, no reporting event is triggered, meaning companies have no way to self-identify who enabled/disabled which applications/endpoints, and this is a major security concern for some customers.
REQUEST: Add entries to the Security Report in the admin console whenever:
1. A published app's status is changed between Available, Disabled, and Added by Default (via the Enterprise Settings -> Apps page)
2. An API key is added/removed from the Unpublished Applications Whitelist field on Enterprise Settings -> Apps
We are happy to announce that we have addressed this request. Details are available in the announcement.
Box Partner Integrations Team