Log Access Policy Violations
Box currently only logs successful actions. We would like to see when a user attempts to share content that is blocked by Shield Access policies. From a DLP and insider threat perspective this would be huge in determining what people are attempting to do, not just what they are successful at doing.
External collab restriction enforcement logs have been available via Event API. Download and shared link restriction enforcement logs will be made available in coming quarters.