Overview

User Impersonation enables system administrators to temporarily log in as other users for customer support, debugging, and testing purposes. Every impersonation session requires a mandatory audit reason and is fully logged with IP address tracking.

Key Features

• 🔐 Secure Access Control — Only system administrators can impersonate users
• 📝 Mandatory Audit Reasons — Every session requires a documented reason
• 🛡️ Rate Limiting — Maximum 5 attempts per minute to prevent abuse
• ⏱️ Session Timeout — Automatic logout after 1 hour
• 📊 Complete Audit Trail — All sessions logged with timestamps, IP address, and reason
• 🎯 Visual Indicators — Orange banner and systray icon during impersonation
• 🌍 Multilingual — Available in English and Spanish

How to Use

Starting Impersonation

1. Navigate to Settings → Users & Companies → Users
2. Select any user (except administrators or yourself)
3. Click the "Impersonate User" button
4. Enter a mandatory reason for the audit trail
5. Click Confirm

During Impersonation

• An orange banner appears at the top showing current impersonation status
• A systray indicator displays in the top-right corner
• All actions are performed as the impersonated user
• Session automatically expires after 1 hour

Stopping Impersonation

Click the "Stop Impersonation" button in either:

• The orange banner at the top of the screen, or
• The systray indicator dropdown in the top-right corner

Viewing Audit Logs

Access complete impersonation history at:

Settings → Technical → User Impersonation → Logs

Each log entry includes:

• Administrator who performed the impersonation
• Target user who was impersonated
• Start and stop timestamps
• Session duration
• Reason for impersonation
• IP address for forensic analysis

Security & Permissions

Support