Im wondering how other IT Departments handle this. From time to time we need to login in as an end user to test a system, transfer data or are just left with the pc to deal with the issue.
How do you handle being given the passwords from a security point of view? There is a discussion at the momment where its being proposed we ask the user to change the password infront of us, and dont let them have the machine back until we have seen them do this.