Pull enterprise users and groups from Box using a developer token.
Source connector — pulls identity and access data from Box into ComplianceScout where it is scored against your compliance frameworks and violation rules.
After a successful sync, the following data is available in your ComplianceScout dashboard for violation detection and reporting.
These fields are collected when you add the connector in the ComplianceScout dashboard. Secrets are encrypted at rest using AES-256-GCM and are never logged.
| Field | Type | Required | Notes |
|---|---|---|---|
| Developer token | Secret | Required | Generate from the Box Developer Console. The token user must have admin access to list all users. |
| Enterprise ID (optional) | Text | Optional | Optional. Your Box Enterprise ID for labelling purposes. |
Follow these steps to gather the credentials above and connect Box to ComplianceScout.
Go to the Box Developer Console (developer.box.com) and sign in as an admin.
Create a new Custom App with Server Authentication (OAuth 2.0 with client credentials).
Under Configuration, generate a Developer Token for testing or obtain a long-lived token via the OAuth flow.
Submit the app for admin approval in your Box Admin Console → Custom Apps.
In ComplianceScout, go to Data & Secrets → Integrations → Add Connector → Box and enter the developer token.
Start a free trial — your tenant is provisioned instantly and you can wire up this integration from the connectors page.