By default, the FSSO collector agent will display the Windows logon name in the list of the FSSO users.

In some cases, there might be a necessity to display the Name and Surname instead of the windows logon name.

For example, if the windows logon name does not correspond to the name and surname of the user and is a set of alphanumerical characters.

An example:

• Name: John
• Surname: Smith
• Windows logon name: EXT137
• CN: CN=J. Smith
• displayName: John Smith
• sAMAccountName Format: domain\John
• UPN: John@Domain.com

The prerequisite is that the directory access information is set to Advanced.

Now, by looking at the Windows logon name it is hard to predict which exact user it is. In that case, the FSSO collector agent can be configured to show the Username and Surname of the given user instead of the Windows logon name.

Follow the configuration steps below:

1. Make sure that the CNID on the LDAP server settings of the FortiGate to 'sAMAccountName'.
2. In the registry of the server where the FSSO collector is running, navigate to Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Fortinet\FASE\Collectoragent and create a string type registry called 'displayname'. The value should be the LDAP attribute name that needs to be seen. In this specific case, it should be 'displayName'.
3. Restart the FSSO Collector Agent service.
4. Clear the user cache on the collector agent: Collector Agent GUI -> Show Logon Users -> Clear user cache.