Connect Salesforce to Anzenna
Integrate Anzenna with Salesforce to monitor CRM data access, user activity, and security events through Event Monitoring.
Prerequisites
- Salesforce Administrator access
- Anzenna account
Salesforce Event Monitoring enabled (typically requires Enterprise or Unlimited edition)
Ability to create External Client Apps in Salesforce
Overview
The integration provides:
- Event log file monitoring
- User authentication tracking
- Data access auditing
- API call monitoring
- Report and dashboard access logs
- Security event tracking
Step-by-Step Instructions
Part 1: Download Certificate from Anzenna
Log into Anzenna at
app.anzenna.ai
Navigate to Settings > Integrations
Find the Salesforce integration card
Click to enable and view integration details
- Copy the certificate URL displayed
Download the certificate file (cert.pem) — save this file for upload to Salesforce
Part 2: Enable Event Monitoring in Salesforce
Log into your Salesforce instance
Go to Setup (gear icon)
Navigate to Security > Event Monitoring
Click Enable to activate Event Monitoring
Enable Generate event log files
Navigate to Event Manager
Select Report Event for storage to ensure logs are available via API
Part 3: Create External Client App
In Setup, go to Apps > App Manager
Under External Client Apps, click External Client App Manager
Click New to create a new external client application
Enter application details:
- Name:
Anzenna - Contact Email:
support@anzenna.ai
- Name:
Click Save
Part 4: Configure OAuth Settings
In the app settings, click Enable OAuth Settings
- Configure the following OAuth scopes:
Required Scopes:
api— Access and manage your datarefresh_token, offline_access— Perform requests on your behalf at any time
Enable JWT Bearer Flow for certificate-based authentication
Click Choose File under Use Digital Signatures
Upload the cert.pem file you downloaded from Anzenna
Click Save
Part 5: Configure OAuth Policies
Scroll to the OAuth Policies section
Under Permitted Users, select Admin approved users are pre-authorized
Under Refresh Token Policy, select Refresh token is valid until revoked
Configure IP Relaxation based on security requirements:
Relax IP restrictions (recommended for Anzenna)
Or add Anzenna's IP addresses to allowed list
Click Save
Part 6: Retrieve Consumer Key
In the External Client App settings, locate OAuth Settings
Find the Consumer Key field
Click Copy to copy the Consumer Key value
The Consumer Key is essential for authentication. Store it securely.
Part 7: Complete Connection in Anzenna
Return to Anzenna > Settings > Integrations
Find the Salesforce integration
Paste the Consumer Key into the designated field
Enter your Salesforce URL:
https://your-instance.salesforce.com
- Enter the associated admin email
Click Save to establish the connection
Verify successful connection — status should show Connected
Verification
Check integration status shows Connected
- Wait 30 minutes for initial sync
Navigate to Anzenna's Activity dashboard
- Verify Salesforce events are appearing
Check Event Monitoring logs are accessible
What Data is Collected
Event Log Files
- Login events
- Logout events
- URI (page view) events
- API calls
- Report exports
- Dashboard views
User Activity
- Data access patterns
- Record modifications
- Export activities
- Search queries
- File downloads
Security Events
- Failed login attempts
- Permission changes
- Profile modifications
- Setup audit trail
- Security health checks
API Activity
- REST API calls
- SOAP API calls
- Bulk API operations
- Metadata API access
Event Monitoring Details
Log File Types
Anzenna monitors these Salesforce event log files:
| Log Type | Description |
|---|---|
| Login | Successful login attempts |
| LoginAs | Login-as-user events |
| Logout | User logout events |
| URI | Page views and navigation |
| API | API call details |
| ApexExecution | Apex code execution |
| Report | Report generation |
| Dashboard | Dashboard views |
Data Retention
Event logs retained per Salesforce license — typically 30 days for most editions. Event Monitoring add-on may extend retention.
Troubleshooting
Connection Fails
Certificate errors:
Verify cert.pem file was uploaded correctly
- Ensure certificate hasn't expired
Check file wasn't corrupted during download
- Try re-downloading from Anzenna
Consumer Key Issues
Invalid Consumer Key:
- Verify key was copied completely
- Check for extra spaces or line breaks
- Ensure External Client App is active
- Confirm JWT Bearer Flow is enabled
No Event Data
Events not appearing:
- Verify Event Monitoring is enabled
- Check that event log generation is active
- Wait 24 hours for first logs to generate
Ensure your Salesforce edition supports Event Monitoring
- Review Event Manager settings
OAuth Policy Errors
Authorization failures:
Check "Admin approved users are pre-authorized" is selected
Verify refresh token policy allows long-term access
- Review IP relaxation settings
- Ensure admin email matches in both systems
Security Considerations
Certificate-based auth — Uses JWT Bearer Flow
OAuth 2.0 — Industry-standard authentication
Read-only access — Integration only reads event logs
Audit trail — All API access logged in Salesforce
Revocable — Integration can be disabled anytime
Best Practices
Test in sandbox — Use Salesforce sandbox first
Monitor initial sync — Check for errors in first 48 hours
- Document Consumer Key — Store securely
Regular reviews — Audit integration quarterly
Understand event retention — Know license limitations
Configure alerts — Anzenna alerts for critical events
Ensure compliance — Meet data privacy requirements
Integration Maintenance
Regular Checks
Perform monthly:
- Verify connection status
- Check event log availability
- Review sync timestamps
- Test sample queries
Certificate Management
Certificates typically don't expire, but:
- Monitor certificate validity
- Document renewal process
- Test certificate rotation procedure
- Keep backup of certificate files
External Client App Management
- Review OAuth token usage
- Check for connection errors
- Verify policies remain configured
- Audit permissions annually
Salesforce Edition Requirements
Event Monitoring Availability
| Edition | Event Monitoring | Notes |
|---|---|---|
| Essentials | ❌ Not available | - |
| Professional | ❌ Not available | - |
| Enterprise | ✅ Add-on required | Purchase separately |
| Unlimited | ✅ Included | Standard feature |
| Performance | ✅ Included | Enhanced features |
Verify your Salesforce edition includes or supports Event Monitoring before starting setup.
Related Resources
Need help? Contact
Anzenna Support
for assistance.