Level up your Box knowledge with brand new learning paths on Box University. Visit training.box.com to get started

Box Status
Print

Enterprise Settings: User Settings Tab

User Management , Article , New , Product Utilization , Announcement

User settings define default settings for new managed users as well as configure several other user options. This topic contains the following sections:

Expire Join Invites

This setting defines expiration dates for invites.

Invites to join expire after

Defines an organization-wide time period after which invitations to join the organization expire. In general, a shorter duration improves security. Select from:

  • 1 year (default)
  • 6 months
  • 1 month
  • 7 days
  • 72 hours
  • 24 hours

If this setting is changed, the change applies to all invites that have not been accepted. If someone has received multiple invites, they all are subject to the value in this setting. 

Name Change Restrictions

This setting can enhance the security of user accounts, preventing bad actors from spoofing identities. For example, a user entering the CEOs name in their Account Settings. Box uses the information entered in the account's Your Name field when searching for people, in @ mentions, and more. 

User name
Restricts all managed users from changing their name as entered in the Your Name field in their Account Settings. An Admin will be required to change that value for any user.

Note

When enabled, this setting does not prevent integrated identity providers, such as Microsoft Azure AD or Okta, that manage Name information from changing the Name value when it is changed in the integration.

New User Default Settings

These settings define how new managed user accounts are configured. Changes to these settings do not get applied to existing managed user accounts.

Enable Box Sync
Enables users to synchronize files between Box and their computer hard drive via Box Sync.
Shared contacts
Allows users to access all other managed users in their contacts list when inviting collaborators. External users will not be accessible unless already collaborating. If you clear this setting, users will access only the people they are actively collaborating with and will need to manually fill the contacts list.
Device pinning
Enables users to be exempt from the maximum number of devices synchronized with their Box account value set for your enterprise in Enterprise Settings > Device Pinning.
Restrict external collaboration

Restricts users from creating external collaborations for folders they own.

Storage allocation (GB)

Defines the total amount of storage, in gigabytes (GB), users are allocated in your Box organization. Enter a number or select the Unlimited check box.

"Unlimited" is defined as up to the amount your enterprise subscription level contains.

Time Zone

Defines the time zone of where the user is located. Used to determine the correct date and time for user activities.

The user can also change the value of this setting on their own Account Settings page.

Language
Defines the language the user will see in the Box user interface when signed in.

Configure Single Sign-On (SSO) for All Users

This setting determines whether you have single sign-on (SSO) configured for your users, and if so, determines how it is configured. See Setting Up Single Sign-On (SSO) for Your Enterprise for details.

Enable Single Sign-On (SSO) for All Users

This section is available only if you have SSO configured in the Configure Single Sign-On (SSO) for All Users section.

SSO Test Mode

Enables SSO for all managed users in your organization, but also allows those users to login with their username and password if they have issues with SSO.

Enable this option only after initially configuring or changing SSO so you can test SSO within your organization and confirm that it is configured correctly.

SSO Required

Enables SSO for all managed users within your organization and requires its use.

Enable this option only after sufficient test time in SSO Test Mode when you are sure SSO is configured and operating correctly.

Important

  • For security reasons, enabling SSO Required is considered a "critical action" and requires multi-factor authentication (MFA) to complete.
  • Be sure you have tested the SSO login flow before enabling this setting. If you do not test that your SSO credentials are working correctly, you could be locked out of your Box account.

Diagnostic Settings

This setting determines if users can grant (limited) access for Box Support for troubleshooting. Granting access for Box Support is available for Business plans and above.

 

 

Related articles