Product DocsMenu

Coveo Platform 7.0 >
Administrator Help > Connectors > Box Connector > Authorizing Access to the Box of Your Managed Users

Authorizing the Coveo Connector to Access the Box of Your Managed Users

You must perform the server authentication (OAuth 2.0 with JSON Web Token) protocol to authorize the Coveo connector to access the Box content of your managed users.

The OAuth 2.0 protocol is a protocol used for granting access to external applications without exposing the user's real credentials. For the connector to be able to connect to the content of your managed users, it must acquire a client ID and a client secret. You must also create a RSA private-public keypair to sign and authenticate the JSON Web Token (JWT) assertion.

To authorize the Coveo connector to access the Box of your managed users

  1. Create an application on a Box account:

    1. Log in to Box with an administrator or developer account.

    2. Enable two-step login verification:

      1. In the menu on the left hand-side of the page, under Account, click Admin Console.

      2. On the Admin Console page, click the gear icon at the top right, and then click Business Settings.

      3. In the settings, click the Custom Setup tab.

      4. In the Custom Setup tab, next to Company Profile, enter a Company Name and a Custom Subdomain, and then, at the bottom of the page, click Save.

      5. Click the Security tab.

      6. In the Security tab, under Signup and Login, select the Login verification checkbox, and then, at the bottom of the page, click Save.

      7. Access the Account Settings page:

        1. At the top of the page, click My account.

        2. On the All Files page, in the top right corner, click the drop-down menu with your initials, and then click Account Settings.

      8. On the Account Settings page, in the Account tab, under Authentication, click Change.

      9. In the Enable Login Verification dialog, enter your Country and Mobile Phone Number, and then click Continue.

        You should receive a verification code on your mobile phone shortly.

      10. In the Confirmation Code box, enter the verification code you just received, and then click Continue.

    3. Access the My Apps page, in the menu on the left-hand side of the page, by clicking Dev Console.

    4. In the My Apps page, click Create New App.

    5. In the Create a New Box App page:

      1. Select Custom App, and then click Next.

      2. Select OAuth 2.0 with JWT (Server Authentication), and then click Next.

      3. In the Give your app a unique name box, enter a descriptive application name, and then click Create App.

      4. Click View Your App.

    6. In the Configuration page:

      1. In the OAuth 2.0 Credentials section, take note of the client_id and client_secret values.

        Note: You will need these values when configuring the Box security provider and source (see Configuring a Box Security Provider and Configuring and Indexing a Box Source).

      2. In the Application Scopes section, make sure the Read and write all files and folders stored in Box and Manage groups check boxes are selected. Optionally, if your enterprise uses the App User account feature, also select the Manage users check box.

      3. In the Advanced Features section, make sure Perform Actions as Users is enabled.

      4. In the Add and Manage Public Keys section, click Generate a Public/Private Keypair (see Generating an RSA Keypair).

      5. Save the generated config.json file containing your private key, as it will be required later in the Box security provider and source configuration (see Configuring a Box Security Provider and Configuring and Indexing a Box Source).

      6. Note your Public Key ID, as it will be required later in the Box security provider and source configuration (see Configuring a Box Security Provider and Configuring and Indexing a Box Source).

      7. At the top of the page, if you made changes, click Save Changes.

    7. Grant access to your enterprise application (see Granting Access in Enterprise Admin Console):

      1. In the menu on the left hand-side of the page, click My Apps.

      2. In the menu on the left hand-side of the page, under Account, click Admin Console.

      3. On the Admin Console page, click the gear icon at the top right, and then click Business Settings.

      4. Click the Apps tab.

      5. In the Apps tab, under Custom Applications, click Authorize New App.

      6. In the App Authorization dialog that appears, enter your app client_id that you noted previously, and then click Next (see client_id).

      7. Click Authorize.

What's Next?

People who viewed this topic also viewed