Mandatory passwords for share links is an essential security layer without which we cannot enable share links on our EID. Password auto-generation would ensure that the appropriate password was generated.

I agree this is an essential feature to be able to enforce passwords and would like to see it asap. With confidential documents being shared with 3rd parties users often don't put a password on and it's a real security risk & concern.

Agree. Our users would like passwords to be automatically created when a shared link is generated.

We implemented Box to allow or employees to share large files with external agencies. Often times our employees need to share proprietary or HIPPA protected information. Not having the ability to require passwords on shared links is a HUGE vulnerability because we cannot count on end users to remember to set a password. Additionally, when there are many collaborators on a folder it would be helpful for all of them to be able to see the password so that they can distribute access without having to get in touch with the employee who created the shared link in the first place.

This would be IDEAL for us! Not being able to force people to use a password means I have to constantly check the shared links OR not allow people to share externally, which would eliminate the reason for having Box in the first place.

Using a password policy to enforce password protection for a shared link, would be a great baseline security measure. This could eliminate some elements of human error.

As with most security the technicians never weight the tradeoffs on what they are doing. You recently have forced complex passwords for links in file sharing without provided a means (that I can find) to disable it at user choice. You have now made me less secure because I was using a simple password that the recipient would know (last four os SIN) and now you won't let me put that in. So I just send the link without a password which is less secure. Your security change has as a result made me less secure. PLEASE CHANGE THIS!!!!

Although this original pulse entry indicates that Box native password auto-generation feature to be a bonus, since the characters such as '<' and '>' are prohibited to be used in the shared link password but is commonly used as a symbol when generating passwords using password generators, it'd make sense to have Box native auto-generation feature so that the users doesn't have to consider about such prohibited characters.

It would be great if Box had a built-in password generation function on the share file area. It should allow the user to specify length and complexity parameters. Ideally, there would be an admin setting that could control this as well to ensure passwords are complex enough to minimize brute force attacks.

Users would like passwords to be automatically created when a shared link is generated