Help shape the future of Box
Welcome to Box Pulse, our product feedback tool powered by UserVoice. Got an idea for how to improve Box? Share it with us and gather support or vote on other people's ideas. Your feedback is essential to informing roadmap decisions and shaping the future of our products. Thanks for joining our community!
See user guide here.
1004 results found
-
Please Allow an Approval or Denial workflow for Auto Roll-in user creaiton
Please allow for Admins to allow or deny auto roll-in requests.
While I understand we can be notified of user creation and take action from there, it would be more beneficial for organization to approve or deny requests to roll in.
At the very least, allow us the option to block the requests or have a custom message that directs the user to their helpdesk or IT to get the account permissions. This would seriously help us be more secure while avoiding contract violations.
1 vote -
GeoIP Conditional Access
I'd like to see Box adding GeoIP filtering so that specified countries cannot access.
This is a standard we do through Office 365 where we don't even allow login attempts for most countries.We also have an exceptions list via IP address for safety to allow our office IP(s) to also access in addition to GeoIP filtering.
1 vote -
Limit the amount of data a user can download to prevent data theft by employees.
Limit accidental or intentional bulk downloads.
An ex-employee intentionally or accidentally connected his Network Attached Storage device to his Box account, and it downloaded big chunks of our Box data. We want to prevent very large amounts of data (client work and IP) from being downloaded by users, for example, within a logged-in session, within a set timeframe or by the size of the folder (ie. large folders over a specific size containing folders).
This could be set per user with an enterprise-level default eg. 5GB. If someone tries to bulk download, the admin is altered. Users can request that…
6 votes -
Prohibit the creation of free accounts
I want to prohibit the use of SSO without SSO because I cannot use SSO due to circumstances.
We are aware of the automatic registration function, but due to budget constraints, we would like to create accounts based on internal requests for creation.2 votes -
Update Managed User email addresses at scale with a support ticket
This happens all the time when companies change their name and email domain, and is very easy to do on platforms like Zoom, where they give us a .CSV with our current list of Managed Users that we update with new emails for the Managed Users.
When changing emails for Managed Users in bulk, give us the option to submit an Excel list with old emails and new emails to Support, and have support handle everything on the backend so that those users can now login with the new emails.
1 vote -
Ability to set Default Collaboration Role to None
Ability to set Default Collaboration Role to None:
Provide users to have ability to Choose the permissions from dropdown” where users have to select the level of permission for the collaborators. If the users do not choose any permission, then files cannot be shared should pop a message provide permissions.
1 vote -
More SSO Granularity
It would be great if we could have more granularity with SSO rules instead of just applying them universally. Having something like an SSO admin account that can log in with credentials and set SSO to test mode when an identity provider outage happens would be ideal. Right now the only option to recover login access when an identity provider outage occurs is to submit a support ticket and hope for a timely response.
3 votes -
Corporate users can change their username - Security Concern
Users can change their name and potentially phish users. There should be a Box administrator options to lock users from changing their name in the user profile page. (For systems that have users created via third party applications based on AD)
1 vote -
1 vote
-
Business Justification enabled in Access Policies, even if you block or allow specific domains.
In the Admin Console, when you create an access policy the security options allow you to restrict external collaboration. Then you can override this permission by providing a 'justification'. However, the if you configure the access policy to 'block' specific domains or permit only specific domains, the 'justification' does not activate. I would like to see the user justification still be active. This provides a secondary reminder for the user that is going to be sharing the information to someone else.
1 vote -
Email address issued for email upload
Output a list of email addresses issued by Box for email upload
I want to output a list of email addresses in a batch.I want to use the mail upload function for a folder
I want to output batch data of email addresses used for mail upload for a folder. I want to output
3 votes -
Alert notifications for large data set downloads and possibility of stopping large data sets being downloaded automatically.
Looking for better controls around alerts and protecting our data from potential bad internal actors. Ideally, controls around large data sets being downloaded locally to a machine. Can there be triggered alerts that will send an email about such a case or tools that will stop a user from downloading data sets larger than a specific threshold?
1 vote -
Additional setting for 'restrict content creation' in Admin Console for root and sub level folders
requirement for an additional setting within the the admin console to restrict content creation to sub level folders with a feature allowing the main admin to pre-determine to which sub folder level the restriction is set. ie: main admin can set content creation restriction at root level plus one level, or multiple levels
1 vote -
Ability for Admin to terminate user sessions from Admin Console, not only via API
Ability for Admin to terminate user sessions from Admin Console, not only via API
1 vote -
Box "# Unmanaged Users" & "# Unmanaged Users collaborating with Managed Account" shows up in Admin Console Insights + Users & Groups section
Box "# Unmanaged Users" & "# Unmanaged Users collaborating with Managed Account" shows up in Admin Console Insights + Users & Groups section
2 votes -
Ability to save reports to a custom location
With the upcoming report scheduling function, coupled with improved filters to better streamline reports that are generated, it would be really useful to be able to define a custom save location for a report that is generated as part of that process (i.e. to any folder within your box instance and not just the default 'reports' bucket).
Our use case is that we'd like to set up a series of scheduled reports (soon possible!), each one filtered to activities within a specific folder (also now possible!) and then have that report automatically save into the folder to which it relates…
83 votes -
On Admin Console, provide ability to use wild card search for external users.
On the Admin Console > Users & Groups > External Users, allow users to use a wild card for searches. Currently, the search only performs a "starts with" search on the email address and name. However, this is very limiting and restrictive, especially when we have thousands of external users, and the name field is variable (first last; last first; nicknames, etc.) The wild card feature or "contains" would give the user an option to search within the email address to filter users by email domain.
1 vote -
Disable Get Started with Box PDF
When a new account is created, the Get Started with Box PDF is added to the user's account. All users within my organization are editors and this becomes an issue when the user's account becomes disabled. We are unable to delete the user's account without transferring owned data to another account first. Considering this file is the only file a user owns, it creates additional work to transfer and delete the file. It would be beneficial to have this option disabled that adds the PDF added to the user's account upon creation.
3 votes -
Password reset deadline exemptions
I would like to be able to set exceptions for password reset deadlines for each account.
This is because there are some accounts that are affected by password changes, such as accounts used in Box system linkage from other systems.パスワードリセット期限の除外設定がアカウント毎にできるようにして欲しい。
他システムからBoxシステム連携で利用するアカウントなど、パスワード変更による影響が発生するものがあるため。1 vote -
2MFA Exempt
Allow co-admins to "exempt" users from 2FA - having it solely with primary owner is not practical
1 vote
- Don't see your idea?