To better provide our customers with flexibility and control over their content security, we have launched our new Public API for Shield Lists. This new capability enables organizations to programmatically manage custom collections of emails, domains, IP addresses, integrations or locations which can be used in their security controls across Box environment.
With Shield Lists accessible via public API endpoints, admins can now better automate critical security workflows such as blocking suspicious users or domains and allowing trusted entities — all without manual intervention in the admin console. This capability helps reduce risk by enabling faster response times against emerging threats like phishing attempts or unauthorized access.
Previously modifiable only through manual configuration in the admin console, enabling Shield List modification, creation, and deletion through our Public API gives admins more granular, scalable control over their organization’s Shield deployment.
Key benefits include:
-
Automated management: Seamlessly integrate blocklist/allowlist updates into existing security systems.
-
Improved threat mitigation: Quickly respond to bad actors by dynamically updating shield lists.
-
Enhanced visibility: Monitor changes programmatically to maintain compliance and audit trails.
To learn more about Shield Lists, visit here.
Want to join the conversation on the new Shield Lists API capability? Join us at our new Box Security and Governance community group!