Why can't I see usernames and/or mahcine names in reports?

Unanswered Question
Sep 18th, 2008

We are demoing the 650 web content filter, and really like them for the blocking, but for some reason we aren't seeing the usernames or machine names in reports, only IP addresses of the users machines. Did I set this up wrong? I set it for authentication using ntlmssp, but I dont know if it is working correctly... Can someone help please? Thanks! John Truxton

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
jowolfer Fri, 09/19/2008 - 16:41


If the WSA knows the username, it will be logged in the reports. It's possible that you are matching rules that do not require authentication or perhaps the authentication isn't working correctly?

Check the access logs to verify that the usernames are present.

If authentication isn't working or if the names are present in the access logs, it's recommended that you contact support for a deeper analysis of the issue.

Jtruxton_ironport Tue, 10/07/2008 - 19:59

Hey guys, just a followup, turns out that when using authentication, don't use the "Cookie" option, that seems to cause problems... also, don't use a FQDN on the Transparent Authentication Redirect Hostname :)

We have it working very well now...

jowolfer Wed, 10/08/2008 - 15:30

In order for transparent authentication to work correctly (SSO), you must use a DNS resolvable, single word hostname.

Cookie authentication should work as long as the client browsers are acceptable and sending cookies correctly.

There is very little that can go wrong with IP credential cache, as long as you are in a static IP environment.


This Discussion