User Impersonation - GUI side Hot

by Sam Wrankmore on April 12, 2016

Give the ability for an Administrator to impersonate or 'log in as' another user, i.e. see SDA in the eyes of another user

  • We need to be able to see SDA in the eyes of other users to ensure access and permissions are granted correctly and to aide debugging problematic processes.

    This sort of functionality is already available in SBM and it is essential when supporting a large team and a large number of applications - that all may be configured with different permissions.

    GitHub Enterprise is a good example of logging user impersonation providing an audit trail of all activities.

    Ideas

    Tags
  • Please login to view any attachments.

  • Hi Sam,

    Would you like to "execute" as the other user or just impersonate in order to see their activities / interface? Acting as another user potentially adds some significant security loopholes, for example executing a process or entering properties as another user could be misused. GIT is a bad example of this (commit as user without audit). Do you think read permissions would be enough? The implementation would be done via a granted privilege that only certain users would receive).

    Thanks,
    Julian
    Julian  Fish Commented by Julian Fish June 07, 2016
    Top 10 Reviewer  -  

    Hi Sam,

    Would you like to "execute" as the other user or just impersonate in order to see their activities / interface? Acting as another user potentially adds some significant security loopholes, for example executing a process or entering properties as another user could be misused. GIT is a bad example of this (commit as user without audit). Do you think read permissions would be enough? The implementation would be done via a granted privilege that only certain users would receive).

    Thanks,
    Julian

     

PrintEmail

Recent Tweets