If an employee exit. Can the manager have his password reset? If so, is this a security breach?

Because if so, the id is still valid. And the boss or anybody has the reset password can log on the network as the ex employee, sending emails as the employee. No way to audit. Revoke user id is better? So nobody can impersonate? The question only applies to big company.


It's company property, the company can do as they wish.


of course the manager can have his password set. AND the boss generally has all passwords or the ability to override them.