1. What is the User Impersonation Page?
The User Impersonation page allows administrators to grant one user access to another user’s account within TitanFile.
This feature is designed to help organizations:
- Enable delegation (e.g., assistants accessing accounts on behalf of others)
- Provide operational support without sharing credentials
- Allow team members to manage channels and communications for others
- Maintain secure and controlled access between users
User Impersonation ensures that access can be granted in a controlled, permission-based way, without requiring users to share passwords.
2. How to Access the User Impersonation Page
To reach the management dashboard:
- Log in to your TitanFile account
- Click Settings in the left-hand navigation menu
- Select User Impersonation
3. What Can You Do Here?
From this page, you can manage user delegation, including:
4. How User Impersonation Works (IMPORTANT SECTION)
User Impersonation is a delegation-based feature, not direct admin impersonation.
Access Types
When granting access, administrators can assign one or both of the following permissions:
Login Access
- Allows the user to log in to another user’s account
- Accessible from the profile dropdown in the top-right corner of the application
- The user can fully experience the platform as the delegated user
Send Access
- Allows the user to send messages and files as another user
- Only applies when both users are part of the same channel
- Does not require switching accounts
Access can be configured as:
- Login Access only
- Send Access only
- Both Login and Send Access together
Plan-Based Behavior
For All Plans Except for Individual Plans
- User Impersonation is available across all plans other than Individual plans
- Admins can grant delegation between users
- Access is controlled explicitly between users
For Enterprise Plans
- Access to configure and manage impersonation can be controlled through Manage Roles
When enabled:
- Users with the appropriate role can grant and manage impersonation access
When disabled:
- The feature is not available to those roles
Important:
- Access is user-to-user delegation, not full admin override
- The user receiving access acts within the permissions of the target user
- Admins control who can grant and manage this access
- Login Access and Send Access can be assigned independently or together
Security and Audit Behavior
- All impersonation activity is logged
- Access can be revoked at any time
- Actions taken are tied to the impersonated account for auditing purposes
This ensures:
- Accountability
- Traceability
- Secure delegation
Best Practice
To use impersonation effectively:
- Grant only the level of access required:
- Use Send Access for lightweight delegation
- Use Login Access for full account access when necessary
- Combine both only when required for the use case
- Limit access to trusted users
- Regularly review and remove outdated access
5. Why This Matters
User Impersonation helps you:
- Enable secure delegation between users
- Improve operational efficiency
- Reduce reliance on shared credentials
- Maintain strong audit and compliance controls