Salesforce Logs

Ingest Salesforce logs to your Panther Console

Panther supports the following methods for onboarding Salesforce logs:

Salesforce Real-Time Events
- Stream events in real-time from Salesforce via Amazon EventBridge. This method provides immediate visibility into security events as they occur.
- Supported events:
  - API Anomaly Event
  - API Event
  - Bulk API Result Event
  - Concurrent Long Running Apex Error Event
  - Credential Stuffing Event
  - File Event
  - Guest User Anomaly Event
  - Lightning URI Event
  - List View Event
  - Login Anomaly Event
  - LoginAs Event
  - Login Event
  - Logout Event
  - Permission Set Event
  - Report Anomaly Event
  - Report Event
  - Session Hijacking Event
  - URI Event
- Follow the Real-Time Events documentation here.
Salesforce Event Monitoring
- Pull logs directly from Salesforce via API. This method is supported for Salesforce.Login, Salesforce.LoginAs, Salesforce.Logout, and Salesforce.URI logs.
- Follow the Event Monitoring documentation here.

Last updated 2 days ago

Was this helpful?