How to impersonate a user? Skip to main content
How satisfied are you with the Okta Help Center?
Thank you for your feedback!
How satisfied are you with the Okta Help Center?
Very Dissatisfied
Very satisfied
Enter content less than 200 characters.
Ask Search:
Alexandr KurilinAlexandr Kurilin 

How to impersonate a user?

As a super admin of my organization, how do I temporarily impersonate a user? For example, let's say I have SAML enabled for Okta -> G Suite and I need to access the Gmail inbox of a user. How do I do that? Is my only option to reset that user's email and 2FA and log in as them or is there a more streamlined way for admins to do that straight from the Okta Web interface?
Marius FulgaMarius Fulga (Okta, Inc.)
Hi Alexandr,

For security reasons we have no way to impersonate a user even with the super admin rights. So yes, the only feasible option to gain access to his account would be to reset his MFA and his password so you can login as the user.  The easiest way to do this would also be to have their login and the password managed by the company and just provide the users with their login details.
HenkJan de VriesHenkJan de Vries
You could create an inbound Saml app with the org2org app and add restricted policies to it, you would have to enter the users login name and because of the saml you wouldnt need pwd reset or mfa if you login.
Chidananda BoligaddeChidananda Boligadde
HenkJan,  Can you please eloborate this little more?
Alexandr KurilinAlexandr Kurilin
Upvote for this. --- original message ---