LET'S SET UP BOX
This guide will walk you through the process of setting up Box with cloud access monitor.
In order for Box to integrate with Cloud Access Monitor, 2-Step Verification must be enabled on your Box account.
Login to your box account and navigate to account settings.
Select the Account Tab and then scroll down to the Authentication section.
Select the Require 2-step verification for unrecognized logins checkbox, and enter the verification code sent to your phone.
In order for Cloud Access Monitor to sync with Box, their time zones must match. Servers are hosted in Mountain Standard Time.
Navigate to Account Settings.
Under the Account Tab find the General Options Section, and change the timezone to MDT.
Select Enterprise Integration and then select Next
Select OAuth 2.0 with JWT box and then select Next.
Give your app a name. Ex: Cloud Access Monitor.
Select Create App.
The App Created screen will appear, select the View Your App link.
On the Configuration page, copy and store the Client ID and Client Secret for use later.
In the Application Access section change the selection to Enterprise.
In the Application Scopes section select the following options.
- Read and write all files and folders stored in box
- Manage users
- Manage groups
- Manage Enterprise Property
In Advanced Features select the following.
-Perform Actions as User
-Generate User Access Tokens
Select Save Changes
In the Add and Manage Public Keys section, select Generate a Public / Private Key Pair.
A file will be downloaded to your computer.
Send this file to email@example.com along with your instance url. A team member will add this to your servers configuration.
Select the Settings Cog in the top right of the screen, and then select Business Settings.
Select the Apps Tab across the top of the screen, then navigate to Custom Applications, and select Authorize New App.
A popup will appear, asking for an API Key, enter in the Client Key saved from earlier and select Next.
Another popup will appear asking for authorization, select the Authorize button.
Box configuration is now Complete!
Cloud Access Monitor Configuration
Login to your instance
Navigate to the Audit & Control page, and select "+" button to add add a new SaaS app.
Select the Box Tile.
Fill out the configuration fields explained below.
Title: A unique name for the Box environment within Cloud Access Monitor.
Configuration File Path: Select the file that you downloaded and emailed to support.
Email To Get Alert: Enter an email address that will be alerted on risks.
Risk and Malware Data Interval: Select the time period that you would like monitored.
Approved Counties: Countries that you would like whitelisted. (optional)
Approved IPs: A list of IP's that are whitelisted. (optional)
Select the save button, Setup is now complete!