You can specify whether real user names are visible or obfuscated for an admin when they view dashboards, reports, or insights. You can also obfuscate user names in NSS feeds. To learn more, see Adding NSS Feeds for Web Logs, Adding NSS Feeds for Firewall Logs, and Adding NSS Feeds for DNS Logs.

Some regions have legal requirements that dictate that user names always remain obfuscated in reports and logs for admins. If admins need to view real user names, they must have an auditor grant them permission to do so. To learn more, see About Auditors.

Prerequisites

To configure this setting for an admin account, your own admin account must meet the following conditions:

• Your admin account must have an admin role that has Full permission to Administrators Access. To learn more, see Adding Admin Roles.
• Your admin account must have organizational admin scope. To learn more, see About Admin Scope.
• If your organization has the admin rank feature enabled, and you're configuring this setting for another admin account, that admin must have an admin rank lower than or equal to your own admin rank.

Obfuscating User Names for Admins

To obfuscate user names for an admin viewing dashboards, reports, and insights, you must enable user name obfuscation for the role assigned to the admin. In other words, you must edit the admin role assigned to the admin account or create a new role.

To obfuscate user names for an admin, do one of the following:

• Enable user obfuscation for an existing role.
  1. Go to Administration > Admin Management > Administrator Management > Internet Access Administrators.
  2. On the Administrators page, in the Role column, check which admin role is assigned to admin you want to edit. Also, check which other admins have been assigned this specific role, and ensure you want user obfuscation enabled for those admins as well.
  3. Go to Administration > Admin Management > Role Based Access Control > Internet & SaaS.
  4. On the Role Management page, click the Edit icon next to the role assigned to the admin you're editing.
     See image.

     

     Close

  The Edit Administrator Role window appears.

  5. In the Edit Administrator Role window, under User Names, choose Obfuscated.
     See image.

     

     Close
  6. Click Save to exit the window.
  7. Click Save and activate the change.

  Close
• Add a new admin role and account.

  For convenience, Zscaler recommends creating the admin role first because you then assign the role to the new admin.

  1. Add a new admin role with user obfuscation enabled.
  2. Add a new admin account.

  Close