Merge pull request #5628 from piraveena/impersonation-doc

piraveena · web-flow · commit 4f8e0bb549b5 · 2025-10-10T20:30:16.000+05:30
Improve impersonation doc
diff --git a/en/includes/guides/authorization/user-impersonation/user-impersonation.md b/en/includes/guides/authorization/user-impersonation/user-impersonation.md
@@ -26,7 +26,7 @@ Follow the steps below to assign the right permissions to the impersonator.
 
     4. Click **Update** to save the changes.
 
-2. The impersonator also needs administrator permissions for the Console. If this user doesn't already have them,
+2. The impersonator also needs permissions to view users from the Console. If this user doesn't already have them,
 
     1. On the {{product_name}} Console, go to **Console Settings**.
 
@@ -200,6 +200,11 @@ To assign the role,
 
 4. Click **Update** to save the changes.
 
+!!! warning "Important"
+     - When the Impersonator role is assigned to a user for a specific application, and that application is configured to support impersonation API resources, the user can impersonate any user within the organization. The impersonator can perform actions on behalf of the impersonated user within the permitted scope of that application. 
+     - To monitor and troubleshoot impersonation activities, you can use the {{product_name}} logs related to user impersonation. For more information, see [Access logs related to user impersonation](#access-logs-related-to-user-impersonation).
+     - To notify users about impersonation events, you can configure email notifications. For details, see [Notify users on impersonation.](#notify-users-on-impersonation).
+
 ### Step 4: (Optional) Skip consent screens
 
 Since the impersonator is pre-approved to access the application on behalf of another user, you can skip the login and logout consent prompts. To enable this:
