With IWA authentication enabled on the proxy, it's possible to have users authenticating to multiple Windows domains.
By default, in Reporter you only see the usernames, with no way to differentiate between the different domains.
This also potentially results in data for two different users being combined into a single report.
For example, if you have the following domain name and user name combinations, the data for "user1" will appear combined:
In order to see the usernames in "Domain\user" format in Reporter, the access log format on the ProxySG needs to be modified to use the "cs-user" instead of "cs-username" field.
After these changes are complete, Reporter will begin to receive the logs with the new format, and user names appear with the "Domain\username" format in Reporter.
NOTE: The username change will not retroactively apply to any data that's already in Reporter. For clarity, you may want to clear out your current database to avoid having a mixture of username formats in it.
See 000010417 for more information on rebuilding the database without losing any custom reports.