To check whether user to IP mapping works correctly, SSH to FMC and FTD and run the following commands in order to check if the entries are there
expert
user_map_query.pl -i 10.10.10.10 (to check for IP to user mapping)
user_map_query.pl -u bob (to check user to IP mapping)
If results display "For policy = 1" then this is set to propagate to FTD
Another approach
expert
u2dump /var/sf/user_enforcement/user_ip_map.* > /var/tmp/user-ip-map.dump
vi /var/tmp/user-ip-map.dump
Credit for some of the above goes to dependencyhell.net blog.
