It is possible to enumerate representatives first + lastname on bomgar public site.
The "id=number" can be iterated over to pull every representative from your appliance.
This returns the bomgar client download page which has the Representative First and Last name due to private_name usually being mapped to *.displayName. This would assist an attacker to attempt social engineering attacks against representative. We have since remapped private_name to map to *.givenName, however there should be the ability to disable giving any name or make the endpoint require a token before giving out this information.
Example return, site name has been redacted
curl 'https://<bomgar-site>/portal/instructions/customer' -d "id=100&name"