Skip to content

The 25 Dropbox security checks Black Cat runs

Black Cat SSPM evaluates 25 security policies against your Dropbox configuration on every scan, classifies each finding by risk, and provides remediation steps. Below is the full list, grouped by category.

access control

mediumGroup Creation Unrestricted

Restrict Dropbox group creation to administrators only

highExcessive Admin Users

Reduce the number of Dropbox admin users to the minimum necessary

mediumInactive Member Account

Remove or suspend Dropbox member accounts that have been inactive for over 90 days

lowStale Pending Invite

Revoke or resend Dropbox team invitations that have been pending for over 30 days

mediumEmail Not Verified

Ensure all active Dropbox members have verified email addresses

highAdmin Email Not Verified

Ensure Dropbox admin accounts have verified email addresses to prevent account compromise

mediumUser-Managed Group

Convert user-managed Dropbox groups to company-managed to ensure admin oversight of membership

lowStale Mobile Session

Revoke Dropbox mobile sessions that have been inactive for over 90 days

mediumHigh Pending Invitation Count

Review and clean up excessive pending Dropbox team invitations

mediumSuspended Members Present

Review suspended Dropbox members and remove them to free licenses and reduce risk

app governance

mediumConnected App with Full Dropbox Access

Review and revoke Dropbox connected apps that have full account access instead of a sandboxed app folder

lowExcessive Connected Apps per Member

Review and remove unnecessary Dropbox connected apps for members with excessive integrations

audit

infoOffice Add-in Disabled

Enable the Dropbox Office Add-in to allow users to save Microsoft Office files directly to Dropbox

lowSuspended Member Not Removed

Remove suspended Dropbox member accounts to free licenses and prevent accidental reactivation

configuration

lowEmpty Group

Remove empty Dropbox groups that have no members to reduce clutter

lowArchived Team Folder

Review archived Dropbox team folders and permanently delete them if no longer needed

data protection

highPublic Shared Links Allowed by Default

Change the default shared link policy to restrict links to team members only

highShared Folders Open to Anyone

Restrict shared folder membership to Dropbox team members only

mediumExternal Folder Join Unrestricted

Restrict team members from joining shared folders outside the team

mediumFolder Link Restriction Not Enforced

Configure the shared folder link restriction policy to prevent unrestricted external access

device trust

highEMM Not Required

Enable and enforce Enterprise Mobility Management (EMM) to ensure only managed devices access Dropbox

lowStale Web Session

Revoke Dropbox web sessions that have been inactive for over 30 days

lowStale Desktop Session

Revoke Dropbox desktop client sessions that have been inactive for over 90 days

mediumExcessive Device Sessions

Revoke excess Dropbox device sessions for members with more than the recommended maximum

sharing

mediumSuggest Members Enabled

Disable the Dropbox suggest members feature to prevent unauthorized team invitation suggestions

See these checks run on your stack

Start a free 14-day trial — no credit card required.

Start Free Trial