Why You Should Never Share Your Logged-In Computer Session
With the rollout of Single Sign-On (SSO) for systems like Workday, your computer session is more powerful than ever—and more risky if left unattended or shared.
When you’re logged into your workstation, you’re not just accessing your email or files. You’re effectively authenticated across multiple systems. That means anyone who uses your active session can access sensitive applications like Workday without needing your password.
The Risk
Sharing your logged-in session—or even stepping away without locking your screen—can allow others to:
-
View or modify employee records in Workday
-
Access confidential HR, payroll, or student data
-
Perform actions under your identity
-
Trigger audit or compliance issues tied directly to you
Because of SSO, your session is your identity.
“Just for a minute” isn’t safe
It might feel harmless to let a coworker “quickly check something” on your computer, but even brief access can lead to unintended changes or data exposure. More importantly, any activity performed during that time is logged as you.
Best Practices
-
Always lock your computer when stepping away (Windows + L)
-
Never allow others to use your logged-in session
-
Do not share accounts or credentials
-
Log out of shared or public devices completely
Bottom Line
Protecting your session is protecting your access—and the organization’s data. If someone needs access, they should use their own account.