Salesforce application programming interface (API) calls represent specific operations that your client applications request during runtime to perform tasks. For instance:
Monitoring API call logs is essential to keep tabs on user activities happening in your Salesforce environment.
There are several APIs in Salesforce, but some of the important ones are:
These APIs' logs are generated each time a user accesses the Salesforce database. Monitoring these logs provides insights on what data is being accessed, when, and by whom.
Log360, a comprehensive SIEM solution, analyzes all the log data generated by API calls and provides in-depth insights into Salesforce activity. The solution helps you:
Assume that an employee tries to access critical account reports after working hours. They export multiple reports than usual and log out. How can we monitor their activities?
Log360 reports and alerts on both login activity and export activity of users. By configuring alerts for unusual logins and exports, you can keep an eye out for potential data exfiltration in your Salesforce environment.
When the admin receives the notification, they can take a look at the reports, and conduct an in-depth investigation into the incident by performing a quick forensic analysis. Admins can take further actions if the logs confirm suspicious activities.