Which configuration change must the administrator make to get proper user information?

Refer to the exhibit.

In the user connection monitor, the FortiSASE administrator notices the user name is showing random characters.

Which configuration change must the administrator make to get proper user information?
A . Turn off log anonymization on FortiSASE.
B . Add more endpoint licenses on FortiSASE.
C . Configure the username using FortiSASE naming convention.
D . Change the deployment type from SWG to VPN.

View Answer

Answer: A

Explanation:

In the user connection monitor, the random characters shown for the username indicate that log anonymization is enabled. Log anonymization is a feature that hides the actual user information in the logs for privacy and security reasons. To display proper user information, you need to disable log anonymization.

Log Anonymization:

When log anonymization is turned on, the actual usernames are replaced with random characters to protect user privacy.

This feature can be beneficial in certain environments but can cause issues when detailed user monitoring is required.

Disabling Log Anonymization:

Navigate to the FortiSASE settings.

Locate the log settings section.

Disable the log anonymization feature to ensure that actual usernames are displayed in the logs and user connection monitors.

Reference: FortiSASE 23.2 Documentation: Provides detailed steps on enabling and disabling log anonymization.

Fortinet Knowledge Base: Explains the impact of log anonymization on user monitoring and logging.