Skip to main content

Impersonation

Impersonation lets someone with a system role access an organization as an existing user to troubleshoot issues.

Contrast turns off impersonation for organizations after 24 hours, automatically.

For hosted customers, if the impersonation setting is not visible for your organization, contact Contrast Support. On-premises customers can manage and use impersonation, as needed.

Impersonation access

By default, the impersonation setting is enabled for all organizations. Organization Admins manage whether you can impersonate another user in an organization.

To change access to impersonation:

When you turn on impersonation:

  • If you have a SuperAdmin role, you can use impersonation by selecting Impersonate for an organization on the Organizations page.

    You can impersonate the first Organization Admin for the organization.

  • If you have a SuperAdmin role, you can select a user to impersonate on the Users page.

  • If you have a SuperAdmin role, you can use impersonation by selecting Impersonate for an organization on the Organizations page.

    You can impersonate the first Organization Admin for the organization. You must have access to the organization.

Audit log

The Contrast audit log shows impersonation activity including:

  • When impersonation is turned on or off

  • The organization where impersonation occurred

  • The server key associated with an impersonation status change

  • Rejected impersonation attempts