In the Windows world, the default Administrator account has a unique GUID - or used to - maybe it has been fixed - even if you rename the account. So best practice there became to create a new administrator account and disable the default administrator account completely.
Tue Dec 22 2020
So, my understanding has always been that you want to obfuscate user names because knowing a user name is valid gives a hacker a place to start testing the security of the system. Most servers do this by telling you "The user name or password is wrong, enter your e-mail address and if it is