Impersonate other users

Swag · May 29, 2025, 6:52pm

I’m developing a React application that uses Okta for authentication. In our setup, we have two Okta groups: one for regular users and one for admin users.

I would like to enable a feature where admin users can impersonate other users. Specifically, when an admin clicks an “Impersonate” button, they should be able to see a list of users from the regular users group. Upon selecting a user, the admin should be able to “log in” as that user and view their account page.

Is this kind of impersonation possible using Okta? If so, what would be the recommended way to implement this functionality?

Thank you for your help!

erik · May 31, 2025, 12:00am

Okta supports the On-Behalf-Of Token Exchange, but this is intended for microservices and won’t provide the functionality you are looking for.

There is an Impersonation Token Exchange flow, but that is currently not supported.

For the scenario described,

the admin should be able to “log in” as that user and view their account page.

Does this refer to logging into to your own applications account page, or the Okta dashboard application?

Swag · June 2, 2025, 3:04pm

It refers to logging into our own applications account page

erik · June 5, 2025, 11:23pm

In this case I think you would need to rely on a management Application that could query Okta for users and retrieve their profile.

Post		Replies	Views
Can okta allow admins to sign in as other users? Questions	2	3929	September 2, 2019
User Impersonation_masquerading feature API api	5	1265	May 3, 2024
OAuth for users outside my org Questions	4	2926	January 25, 2022
User impersonation at API level Questions	2	3191	February 8, 2024
OAuth for Okta - Users outside my org OAuth/OIDC	3	3714	January 24, 2022

Impersonate other users

Related topics