Salesforce Event Monitoring Unit - Getting Started

Event Monitoring

Event monitoring allows you to trace plenty of events that occur on a Salesforce Org, for example, Authentication (Logins, Logouts), API Calls, Apex Execution, View and export reports, etc. Event details are automatically stored within the EventLogFile object (accessible only via API). An event log file is generated when an event occurs in your organization and is obtainable to view and download after 24 hours and remains available for 30 days. Log data can not be edited it is read-only. You can’t manipulate ( insert, update, or delete) log data.

Event monitoring allows you to easily see what data users are accessing, from what IP address, and also the actions did there to data. for example, API calls, logins, users who are running reports, exporting reports, downloading files, and etc.

Use the REST or SOAP API resources to fetch event log files. you can access those data via API and pull the information into any visualization tools. for example Salesforce Analytics.

List of Some Common Event Types for Event Monitoring:

• Logins
• Logouts
• Lightning (web clicks, performance, and errors in Lightning Experience).
• Application programming interface (API) calls
• Apex executions
• Report exports

Don't forget to check out: Learn All About Platform Events in Salesforce | The Developer Guide

Download Event Log Files

You can download event log files in the following methods:

• ELF Browser Application
  

  The Salesforce Event Log File (ELF) Browser may be a Salesforce-connected web app that enables quick access to event log files. With the ELF Browser, you'll be able to easily find and download events from various time periods without a line of code. the information within the files you get from the browser can even be visualized using Tableau CRM. See the Event Monitoring Analytics App module for more information thereon. Direct download via ELF Browser Application.

• cURL Script
  

  cURL is best fitted to Mac and Linux users. It’s possible to use it on Windows, but it requires some extra configuration. it provides more options and flexibility in working with event log files. instead of manually downloading log files, you'll schedule when to run the script so you usually have the foremost recent event log files for your organization. you'll also transform your data in order that it’s during a format you wish. cURL is best suited to Mac and Linux users.

• Python Script
  

  If you wish for a more programmatic way of downloading your organization’s event log files, you'll be able to use Python scripts. One advantage of using a Python script over a cURL script is that it’s easier for Windows users to figure with, but it’s also suitable for Mac and Linux users.

Check out another amazing blog by Arun here: Real-Time Event Monitoring in Salesforce

Visualize Event Log File Data

• Event Monitoring Analytics App
  

  This Analytics app could be thanks to getting insights into your Event Monitoring data without ever leaving the Salesforce Platform. Your data is automatically loaded from Salesforce to the app, so you usually get the foremost recent (and most stunning) visualization of what’s occurring in your org. The app provides a group of dashboards that use pre-integrated event data, so it’s an excellent way to start with Event Monitoring.

• Splunk App for Salesforce
  

  This app allows you to analyze and visualize your Salesforce organization’s activities like security, performance, and user behaviour. The Splunk Add-on for Salesforce lets a Splunk software admin collect different types of information from Salesforce using REST APIs. It also provides the inputs to use with other Splunk apps, like Splunk Enterprise Security.