Monitor Changes to Permission Sets and Permission Set Groups (Pilot)
Where: This change applies to Lightning Experience and Salesforce Classic in Enterprise, Performance, Unlimited, and Developer editions where Event Monitoring is enabled.
Who: Event Monitoring is available to customers who already purchased Salesforce Shield or Event Monitoring add-on subscriptions.
How: To be nominated for this pilot, contact Salesforce. After the pilot is enabled, from Setup, in the Quick Find box, enter Event Manager, then select Event Manager. For Permission Set Event (Pilot), use the action menu to enable storage and streaming.
The event data from PermissionSetEvent is stored in PermissionSetEventStore. You can use PermissionSetEventStore to create transaction security policies using Condition Builder or Apex that block View All Data, Modify All Data, and Customize Application user permissions assignments.