Connect Salesforce to Anzenna

This guide walks you through connecting your Salesforce instance to Anzenna. The integration enables Anzenna to collect Salesforce event logs for security monitoring, anomaly detection, and compliance visibility.

Prerequisites

• Salesforce System Administrator access
• Access to the Anzenna platform
• Salesforce Shield or Event Monitoring add-on (required for event log access)

Step-by-Step Instructions

Part 1: Enable the Salesforce Integration in Anzenna

1. In Anzenna, toggle the integration card for Salesforce to on.

2. Copy the certificate URL shown in Anzenna, and paste it in a new browser window to trigger the public certificate download.

Part 2: Configure Event Monitoring in Salesforce

1. Go to your Salesforce instance and click Setup.

2. Click on Setup for current app.

3. Click on Security in the left menu.

4. Click on Event Monitoring.

5. Click on Event Monitoring Settings.

6. Turn on Generate event log files.

7. Click on Event Manager.

8. Click on Show actions in the row of "Report Event".

9. Click on Enable Storage.

10. Do the same for the following events (Show actions → Enable Storage for each):

• API Anomaly Event
• Credential Stuffing Event
• File Event
• Guest User Anomaly Event
• LoginAs Event
• Login Event
• Report Anomaly Event
• Session Hijacking Event

Part 3: Create an External Client App (OAuth)

1. Click on Apps in the left menu.

2. Click on External Client Apps.

3. Click on External Client App Manager.

4. Click on New External Client App.

5. Type Anzenna as the app name.

6. Type support@anzenna.ai as the contact email.

7. Click on API (Enable OAuth Settings).

8. Check Enable OAuth.

9. Paste the callback URL: https://app.anzenna.ai/enroll/salesforce/callback into the text area.

10. Click on Manage user data via APIs (api) to add it to selected OAuth scopes.

11. Click Move to Selected OAuth Scopes to add it.

12. Click on Perform requests at any time (refresh_token, offline_access).

13. Click Move to Selected OAuth Scopes again.

14. Check Enable JWT Bearer Flow.

15. Select cert.pem from the file upload menu (the certificate you downloaded in Part 1).

16. Click Create.

Part 4: Configure OAuth Policies

1. Click on OAuth Policies.

2. Click Edit.

3. Click on Permitted Users.

4. Click on Admin approved users are pre-authorized to allow server-to-server communication.

5. Click OK on the confirmation dialog.

6. Click on System Administrator.

7. Click Move to Selected Profiles.

8. Select Refresh token is valid until revoked.

9. Click on IP Relaxation.

10. Click on Relax IP restrictions.

11. Click Save.

Part 5: Retrieve the Consumer Key

1. Click on Settings.

2. Click on OAuth Settings.

3. Click on Consumer Key and Secret. Salesforce will send you an email to verify your identity.

4. Get the verification code from the email, paste it in the dialog, and click Verify.

5. Click Copy on the consumer key.

tip

The consumer key is an ID, not a secret. It is safe to copy and use as your integration identifier.

Part 6: Complete the Connection in Anzenna

1. Paste the copied consumer key into Anzenna.

2. Paste your Salesforce instance URL (i.e. the website URL) in the input box.

3. Enter your Salesforce email address in the input box.

4. Click Save.

5. Wait a few seconds, then refresh the page. You should see your Salesforce instance listed as connected.

success

Your Salesforce integration is now active. Anzenna will begin collecting event logs for security monitoring.