In my job, we often deal with niche software where licenses are tied to specific users rather than workstations. Sometimes, we need to have User A log into User B's account on User B's workstation to monitor progress on certain processes. I'm curious if there's a sensible way to manage this that allows keeping individual user credentials intact while letting one user access another's account without exposing their password.
3 Answers
You should definitely reach out to your software vendor for guidance. If they can’t provide a secure method for temporary access, you might want to reconsider your software choices. Don't risk your job over something that could be a huge security problem.
It's tough to find a legitimate way to let users log in as someone else without risking security or compliance issues. If you're using Intune, creating a temporary access pass is a possible route. You can set it to single-use, so it doesn't stay active for long, but even that can pose risks of misuse. Just think about it carefully before implementing any method that can compromise credentials.
Single-use sounds smart! But what if someone forgets to set it to single-use or misuses it?
Honestly, the need for impersonation can create massive problems both security-wise and with software licensing. When I faced a similar issue at a previous job, we ended up creating a shared account with tightly controlled access just to manage the workflow better. It wasn't ideal, but it worked within our restrictions. Always make sure you're documenting everything and getting any permissions in writing to protect yourself.
Right? It’s crucial to have those permissions documented — can save you a lot of headaches!
Totally agree. Better software can make all the difference!