Set "SSO Required"/"SSO Enabled" for each user
The current "SSO Required" is for all managed users.
When creating "administrator user and general user" as a managed user, there are the following problems.
-It is necessary to create an administrator user ID on the IdP side.
-When accessing as an administrative user, it takes time and effort to log in from the IdP and access Box.
-A license fee will also be charged on the IdP side.
If we can set "SSO required" and "SSO enabled" for each user, the problem will be solved.
-
Adminmlomeli (Admin, Box) commented
Adding comment on behalf of customer: Require ability to assign SSO configuration in scenarios where not all users are part of the enterprise AD, e.g. contractors and NPA accounts. Currently the customer can only enable SSO but not enforce it which exposes them to risk.
-
Anonymous commented
This idea is very important.
In addition to the benefits mentioned above, it can prevent administrators from being unable to sign in if there is an issue with the IdP.
While administrators can change the SSO Required Mode to SSO Enabled Mode, they cannot sign in during IdP troubles, which creates a situation where it is not possible to temporarily switch to SSO Enabled Mode and allow all Managed Users to continue using their email addresses and passwords.This solution addresses that problem.
-
Anonymous commented
This idea is very important. In addition to the benefits mentioned above, it can prevent administrators from being unable to sign in if there is an issue with the IdP. While administrators can change the SSO Required Mode to SSO Enabled Mode, they cannot sign in during IdP troubles, which creates a situation where it is not possible to temporarily switch to SSO Enabled Mode and allow all Managed Users to continue using their email addresses and passwords. This solution addresses that problem.