Start here Why this matters If shared passwords were used, the business may not know which systems a former employee can still access. A password reset plan helps reduce that risk. Use this resource when A former employee knew shared passwords. Your business uses shared logins. A vendor or contractor recently lost access. You are not sure which passwords need to be changed. What to review Shared passwords and shared accounts. Administrator accounts. Website, domain, and hosting accounts. Accounting, payroll, scheduling, and customer systems. Password manager vault access. Vendor portals and support accounts.
Step by step Practical checklist Identify all systems the former employee used. Remove the employee from the password manager first. Change passwords for shared accounts the person may have known. Enable Multi-Factor Authentication (MFA) where available. Update the password manager with new credentials. Document what was changed and who verified it.
Avoid these issues Common mistakes Changing only the email password. Forgetting website, domain, and payment accounts. Updating passwords but not removing vault access. Sending new passwords through text or email. Not replacing shared logins with named accounts.
Employee IT Offboarding Checklist for Small Businesses Employee offboarding is one of the most important IT processes for a small business. It protects accounts, files, devices, and customer information when someone leaves.
License Removal Checklist for Small Businesses License cleanup helps reduce wasted spending and lowers the chance that old accounts remain active after employees leave.
Device Return and Shared Drive Review After an Employee Leaves When an employee leaves, device return and shared drive review should happen together. The business needs the physical equipment back and needs to confirm files are still accessible to the right people.