Effective December 31, 2024, the Cloud Storage Scanning service has reached End of Life.
Cloud Storage Scanning supports scanning for malicious files in your enterprise level Box account. Configure a continuous or scheduled scan to check for malicious files in your users' Box folders.
The following scan frequencies are available:
- On-demand: An on-demand scan of your cloud storage folders.
- Daily: A scheduled scan that runs daily at the specified time.
- Weekly: A scheduled scan that runs on certain days of the week at the specified time.
- Monthly: A scheduled scan that runs on a certain day of the month at the specified time.
- Continuous: A continuous scan that checks for new and updated files. Check Include existing files to initiate a scan on all files before monitoring for changes to them.
For more information, see Should I run a scheduled scan, continuous scan, or a combination of both.
Nebula Requirements
- The Nebula Super Admin or Administrator must be a Box Enterprise Admin or Co-Admin.
Box Configuration
A Cloud Storage Scanning application must be created in Box:
- Log in to https://app.box.com/ as a Box Enterprise Admin or Co-Admin.
- Create a new Custom App with Client Credentials Authentication. For more information, see App creation steps.
- Set the App Access Level to App + Enterprise Access. For more information, see Application Access.
- Enable Multi-Factor Authentication to fetch the client secret. For more information, see Multi-Factor Authentication Set Up for Your Account.
- Set the permissions for the application. For more information, see Application Scopes.
- Under Application Scopes, enable the following:
- Write all files and folders stored in Box
- Manage users
- Manage enterprise properties
- Under Advanced Features, enable Make API calls using the as-user header.
- Under Application Scopes, enable the following:
- Under the Authorization tab, review and submit the application for authorization. For more information, see Authorizing Custom Applications in Sandbox and Production Environments.
- Under the General tab, record the Enterprise ID.
- Under the Configuration tab, record the Client ID and Client Secret.
Nebula Configuration
Once the Enterprise ID, Client ID, and Client Secret have been recorded, configure a cloud storage scan for Box:
- On the left navigation menu, go to Configure > Cloud Storage Scans.
- Click Add a Scan.
- Enter a name for the scan configuration.
- Select Box and enter the Enterprise Id, Client Id, and Client Secret.
- Click Connect to Provider.
- In the Items to scan tab, select which users or folders to scan.
- In the Quarantine tab, toggle on Enable Quarantine to allow Cloud Storage Scanning to quarantine malicious files automatically.
- Select a user for the quarantine folder. A folder that contains all quarantined objects from this scan configuration is automatically created in the selected user's directory.
- Select the default or customize the tombstone file. A tombstone file is created and replaces the original file when a file is quarantined. It is designed to provide information or instructions for users.
- In the Scan frequency tab, select a scan frequency.
Note: Scheduled scans run in Coordinated Universal Time (UTC). - Click Save.
Note: Once a scan has been saved, it cannot be modified. Delete the existing scan and create a new one if changes are required.
Return to Cloud Storage Scanning guide.