search cancel

SAML username shows unauthenticated (assigned) in Web Security Service (WSS)


Article ID: 252667


Updated On:


Web Security Service - WSS Endpoint Protection Endpoint Protection Cloud Endpoint Security


When using Web Security Service, after logging in via SAML authentication, the username should display the SAML username (like [email protected]).
In some situations, the username will be changed to unauthenticated (assigned). Websites will still be blocked correctly.


Any applicable OS and:

  • WSS
  • SEP with Web Traffic Redirection
  • Web and Cloud Access Protection
  • SAML Authentication method


The authenticated user name will update when the application requests a 'whoami' from the WSS service handling the authentication. Whilst the system knows the authenticated user, the subsequent whoami may fail for various reasons of load, network interruption, timeout, and so on. If the whoami fails, the User Interface will display the user as unauthenticated (assigned). This may appear concerning but it has no effect on the authentication success or security effectiveness.


This article is informational only.