Level up your Box knowledge with brand new learning paths on Box University. Visit training.box.com to get started

Restrict service account permissions to specific users

Answered
New post

Comments

4 comments

  • mschwartz

    Service Accounts cannot be restricted to a specific set of users as of yet, though this is something we are exploring. You can scope a Service Account to "No Users," "App Users," or "All Users" (Managed Users + App Users). 

    0
    Comment actions Permalink
  • jpknoll

    I'd like to second this request. We have a very large organization, so handing out an enterprise/service account is a security risk.

    0
    Comment actions Permalink
  • rgnashville

    I am in the same boat.  There needs to be a way to authorize these service accounts for specific folders.  Or, alternatively, a way for Enterprise Users to see Box Application Users' folders.

     

     

    0
    Comment actions Permalink
  • nathancday

    2019 status check, is this functionality still on the road map for Box?

     

    Context: I'm a R-developer interested in using the JWT-app as an alternative to standard OAuth for usage on remote servers and in data applications. This use cases would require access to existing user accounts, but the vulnerability of being to access *any* user in the enterprise is concerning.

     

    Sidenote: If user IDs were provisioned randomly instead of sequentially (based on account creation date) this would be less of a problem.

    0
    Comment actions Permalink

Please sign in to leave a comment.