There is no FSSO logons because FSSO has not been configured properly.
Just wondering that when the User is assigned in the forward logs section to the record, how is the event tied or based upon what logic, when FSSO is not configured.
It seems that it is taking kerberos authentication records and FG unit ties it with the log records. But when FSSO agent has not been configured, the data is invalid and not up-to-date.
I am just investigating the logic behind this behaviour so I would know what to think about that. The fix is probably to implement FSSO agent to pull data from the endpoints.
I would appreciate the know-how . _:)