Versions Compared
Key
- This line was added.
- This line was removed.
- Formatting was changed.
Insert excerpt | ||||||
---|---|---|---|---|---|---|
|
EmpowerID Box connector allows organizations to bring the user and group data in their Box system to EmpowerID, where it can be managed and synchronized with data in any connected back-end user directories. Once connected, you can manage this data from EmpowerID in the following ways:
Account Management
Inventory Box user accounts
Create, Update and Delete Box user accounts
Enable and Disable Box user accounts
Group Management
Inventory Box groups
Inventory Box group memberships
Create and Delete Box groups
Add and Remove members to and from Box groups
Attribute Flow
Users in Box are inventoried as accounts in EmpowerID. The below table shows the attribute mappings of Box user attributes to EmpowerID Person attributes.
Box Attribute | Box Table | Corresponding EmpowerID Attribute | Description |
---|---|---|---|
Name | User | Name | Name of the user |
FirstName | User | FirstName | First name of the user |
DisplayName | User | FriendlyName | Display Name of the user |
Login | User | Login | Login of the user |
Status | User | Active | Specifies whether the user is active |
CompanyName | User | Company | Company name of the user |
Description | User | Description | Description of the user |
Language | User | PreferredLanguage | Language of the user |
Job_Title | User | Title | Title of the user |
Phone | User | Telephone | Phone number of the user |
Additionally, EmpowerID provides Provisioning policies or Resource Entitlements that allow you to automatically provision Box accounts for any person within your organization based on your policy requirements.
Info |
---|
In order to connect EmpowerID to Box, the following prerequisites need to be met:
|
Step 1 – Register EmpowerID as an application in Box
Click Dev Console and then click Create New App.
Image RemovedImage AddedSelect Enterprise Integration and click Next.
Image RemovedImage AddedOn the Authentication Method page, select OAuth 2.0 with JWT (Server Authentication) and then click Next.
Image RemovedImage AddedName the app and then click Create App.
Image RemovedImage Added
Image RemovedImage Added
Box creates the app and generates the developer token.Click View Your App.
Image RemovedImage Added
This directs you to the Configuration page.Under Application Access, select Enterprise.
Image RemovedImage AddedUnder Application Scopes, select the options shown below.
Image RemovedImage AddedUnder Advanced Features, select Perform Action as Users and Generate User Access Tokens.
Under Add and Manage Public Keys, click Generate a Public/Private Keypair. When you click Generate a Public/Private Keypair, Box will send a Verification code to the mobile number linked to the account. To use this feature, Two-factor authentication must be enabled on Box.
Image RemovedImage AddedEnter the code sent to your mobile number.
Download the JSON file generated by “Generate a Public/Private Keypair.”
Save your changes and then point your browser to https://app.box.com.
Select Admin Console from sidebar.
Select Enterprise Settings and then click the Apps tab.
Image RemovedImage AddedUnder Custom Applications, click Authorize New App and wait for about 10 minutes before proceeding to the next step.
Copy the value for the ClientID of the application from the JSON file you downloaded above.
Paste the ClientID in the API Key field of the App Authorization dialog and then click Next.
Image RemovedImage AddedClick Authorize.
Image RemovedImage Added
After registering EmpowerID in Box, the next step is to create a Box account store in EmpowerID.
Step 2 – Create a Box account store in EmpowerID
On the navbar, expand Admin > Applications and Directories and then click select Account Stores and Systems.
On the Account Stores page, click Create Account Store.
Image RemovedImage AddedUnder System Types, search for Box.
Click Box .comto select the type and then click Submit.
Image RemovedImage AddedOn the Box Settings page that appears, do the following:
Enter a Name in the Name field.
Enter a UPN Suffix in the UPN Suffix field.
Click Choose File and upload the application JSON file you downloaded from Box.
Click Submit.
Image RemovedImage Added
EmpowerID creates the account store and the associated resource system. The next step is to configure the attribute flow between the account store and EmpowerID.
Step 3 – Configure Attribute flow
Insert excerpt | ||||||
---|---|---|---|---|---|---|
|
Now that the attribute flow has been set, the next steps include configuring the account store and enabling EmpowerID to inventory it.
To configureStep 4 – Configure account store settings
On the Account Store and Resource System page, click select the Account Store tab and then click the pencil icon to put the account store in edit mode.
Image RemovedImage Added
Image RemovedImage Added
This opens the edit page for the Box account store. This page allows you to specify the account proxy used to connect EmpowerID to your Box account as well as how you want EmpowerID to handle the user information it discovers in Box during inventory. Settings that can be edited are described in the table below the image.Insert excerpt IL:Account Store Settings IL:Account Store Settings nopanel true Edit the account store as needed and then click Save to save your changes.
Next, enable the Account Inbox permanent workflow to allow the Account Inbox to provision or join the user accounts in Box to EmpowerID Persons as demonstrated below.
Tip |
---|
EmpowerID recommends using the Account Inbox for provisioning and joining. |
Step 5 – Enable Account Inbox Permanent Workflow
Insert excerpt | ||||||
---|---|---|---|---|---|---|
|
Step 6 – Monitor Inventory
Insert excerpt | ||||||
---|---|---|---|---|---|---|
|
Insert excerpt | ||||||
---|---|---|---|---|---|---|
|
Div | ||||||||
---|---|---|---|---|---|---|---|---|
| ||||||||
IN THIS ARTICLE
|