Agreed. Impersonation is not supported. And if this were possible, it would break the security model--how would you know any person was really who they said they were. The best thing you can do is to check the user's entry in the oxTrust GUI, and perhaps even in LDAP, and compare versus another user to see if there are any sigificant differences in the data. Normally that can lead to a few theories about differences.