By default, the FSSO collector agent will display the Windows logon name in the list of the FSSO users.

In some cases, there might be a necessity to display the Name and Surname instead of the windows logon name.

For example, if the windows logon name does not correspond to the name and surname of the user and is a set of alphanumerical characters.

An example:

Name: John

Surname: Smith

Windows logon name: EXT137

Now, by looking at the Windows logon name it is hard to predict which exact user it is. In that case, the FSSO collector agent can be configured to show the Username and Surname of the given user instead of the Windows logon name.

Below are the configuration steps:

1) Make sure that the CNID on the LDAP server settings of the FortiGate to 'sAMAccountName'.

2) In the registry of the server where the FSSO collector is running, navigate to Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Fortinet\FASE\Collectoragent and create a string type registry called 'displayname', the value should be the LDAP attribute name that needs to be seen, in that specific case it should be 'displayName'.

3) Restart the FSSO Collector Agent service.

4) Clear user cache on the collector agent:

Collector Agent GUI -> Show Logon Users -> Clear user cache.