AlienVault® USM Anywhere™

The AlienApp™ for Salesforce

The AlienApp for Salesforce streamlines incident response activities by automatically opening Salesforce cases in response to threats detected by USM Anywhere. Upon execution of the action, USM Anywhere generates the Salesforce case and populates the Salesforce case fields with details from USM Anywhere.

Edition: The AlienApp for Salesforce is available in the Standard and Premium editions of USM Anywhere.

See https://cybersecurity.att.com/pricing for more information about the feature and data support provided by each of the USM Anywhere editions.

Warning: The AlienApp for Salesforce uses the Salesforce hourly event log API to pull events from your Salesforce instance on an hourly basis to minimize the latency of your important security event data. This is a paid feature and not enabled in a production Salesforce instance by default. Please ask your Salesforce Account Executive to enable it in your account if you have not done so already. The hourly event log feature is not required to use the case creation actions. USM Anywhere does not currently support importing events from the Salesforce Daily Event Log API.

Warning: If the AlienApp fails and you receive a message informing you that it has not been loaded, please contact AT&T Cybersecurity Technical Support to solve the problem.