Using Group Push via SAML for BOX app configuration. Skip to main content
https://support.okta.com/help/answers?id=906f0000000i04jiac&refurl=http%3a%2f%2fsupport.okta.com%2fhelp%2fanswers
How satisfied are you with the Okta Help Center?
Thank you for your feedback!
How satisfied are you with the Okta Help Center?
1
2
3
4
5
Very Dissatisfied
Very satisfied
Enter content less than 200 characters.
Ask Search:
Fidel ZepedaFidel Zepeda 

Using Group Push via SAML for BOX app configuration.

When you enable group push via SAML for Box, does that mean that those users who are members of that specific group will automatically have a Box account created for them in the Box tenant? To clarify, would I be able to pass our AD security groups into Box, so that they exist in Box as groups without necessarily creating new Box accounts for EVERYONE in that group? 
Best Answer chosen by Fidel Zepeda
Andre Dupre KuiperAndre Dupre Kuiper
When I tested this feature Okta did not initiate user account creation. I have a group being pushed containg members with and without existing Box accounts and it ignored those without accounts already.

All Answers

Raja NejemRaja Nejem (Okta, Inc.)
When you push groups to Box, it will create that group in Box with the users in it.  For more info: https://support.okta.com/help/articles/Knowledge_Article/41608413-Managing-Groups-for-Box
 
Fidel ZepedaFidel Zepeda
Thanks for the reply Raja. I have seen the documentation you sent me, but I was still a little confused as to what actually happens on the Box end. For example, lets say I currently DO NOT have ANY BOX accounts in our Box API, if I configure the Group Push to Box via OKTA (sending My AD security group), does that mean that the group push initiates NEW Account creations on the Box side? Or does it simply send group memberships to Box and wait for Box accounts to be created either by provision or manual creation?
Anne WilcoxAnne Wilcox
Im stuck on this question as well.
Andre Dupre KuiperAndre Dupre Kuiper
When I tested this feature Okta did not initiate user account creation. I have a group being pushed containg members with and without existing Box accounts and it ignored those without accounts already.
This was selected as the best answer