Box: Configuring API access

These instructions show you how to authorize Forcepoint ONE SSE to access your Box account via the API. All the files at rest will then be analyzed against DLP patterns and a report will be generated to identify any DLP violations in your corporate account.

Before you begin

Before proceeding make sure you Enable API scanning in the Box app settings page.
Note: The admin account being used in the Forcepoint ONE SSE portal to setup the API must be a system administrator and not a standard Role Admin. If you are using a Role Admin account the setup will not be completed successfully.

Steps

  1. On the Box application settings page, click Setup API.


  2. Click Enable API Scanning at the top and then click Save in the top right. Once you have done this step you can now authorize the Forcepoint ONE SSE API.


    Note: To configure API policies with the Forcepoint DLP data pattern, refer to Configuring FSM controlled policies for CASB and SWG channels.
  3. Click the following to authorize Box: link to authorize the API. You will need to log in with your Box admin credentials.
  4. You will now be redirected to the authorization page to explicitly permit Forcepoint ONE SSE to access your account with the mentioned privileges. After logging in you will need to click Grant Access to Box to give Forcepoint ONE SSE access to your organization's Box account via API.