Symantec Access Management

  • 1.  Has anybody implemented impersonation in a SAML federation deployment?

    Posted May 14, 2015 04:37 PM

    Impersonator logs-in to IDP and attempts to initiate an impersonation with an SP.

     

    The use case is more or less like this:

     

    1. Impersonatee has established a session with external IDP and can access the external SP application

    2. A Help Desk user (impersonator) establishes a session with an internal IDP that has a trusted SAML relationship with the external SP application

    3. The impersonator attempts to access impersonator realm in the external SP application

    4. An impersonation session is established with the SAML attributes passed on to the external SP application

     

    Could this work?

     

    Hernan



  • 2.  Re: Has anybody implemented impersonation in a SAML federation deployment?

    Posted Jun 02, 2015 10:46 AM

    Is anyone able to further assist with this users question?

     

    Thank you



  • 3.  Re: Has anybody implemented impersonation in a SAML federation deployment?
    Best Answer

    Posted May 04, 2017 04:44 AM

    Hi , 

     

    Right now, SSO Federation doesn't support impersonation feature.

     

    An enhancement request / Idea has been raised for the same. Kindly vote.


    Impersonation for Federated Applications 

     

    Regards,

    Leo Joseph.