Lightweight Gateway - User account information 'unknown'

Highlighted
Occasional Contributor

With the lightweight gateway, we are not seeing user information in the suspicious activity reports.  Do advanced security auditing policies need to be in place? 

 

This activity for instance was a remote execution attempt run in user context.  (script downloaded from here.)

 

2017-09-13_17-24-41.png

 

 

0 Replies