Skip to content

What problem could Box solve for you?

← Help shape the future of Box

Take action on user based on Threat Detection Shield Rule

Extending threat detection ALERTS to take action on a user's access would be very valuable. I've heard lots of customers request having a user's account deactivated if they access Box from a suspicious location. Right now, there is not a way to do this through the core Box application, it has to be done through custom scripting or with another tool.

9 votes

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

Anonymous shared this idea  ·   ·  Report…  ·  Admin →
How important is this to you?

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • AdminAnonymous (Admin, Box) commented  ·   ·  Report

    This would also be valuable for anomalous activity and downloads.

    E.g. Admin can configure a specific threshold for anomalous downloads --> if a person downloads 1000% more sensitive information than normal, then we suspend their account until the Admin and/or Co-Admin and/or InfoSec team approves the activity.

Help shape the future of Box: Shield

Categories

Feedback and Knowledge Base

(thinking…)

By entering and viewing this page, you agree to be bound by (1) UserVoice Terms of Service and the (2) Box Community Terms of Use. In the event of a direct conflict between the foregoing terms of service with respect to the Box Community Guidelines, Feedback and Suggestions, the Box Community Terms of Use shall take precedence as between you and Box.