When a user’s account becomes compromised it has the potential to threaten the entire network. If a Box Admin discovers that a user account was phished, or their device was stolen/misplaced, being able to mitigate the damage and restrict any further potential access by bad actors is vital.
Box is adding new functionality to our API to allow Box Admins to terminate user sessions more easily and at scale. This new API capability can logout a user or a group from all their active Box sessions, including sessions for web, desktop, and mobile. With this feature Box Admins are able to more quickly and effectively react to potential breaches and compromised accounts.