[devwastaken]

If the ops engi is trying to do a favor, that favor would be removing access. Under no circumstances should someone fake being another employee. They shouldn't even have the access to do so. This smells like bad security practices.

[mc32]

It's not. Supervisors and managers have the right to request access for business continuity purposes. They have to carry any business in-flight to its conclusion. Of course audit logs will show how access an account when and form where, etc.

People have to remember, these are business accounts, not personal accounts and all their content belong to the business --which is why one should avoid using business accounts of any type for personal use.

[paxys]

It's only bad security if you assume that you own the account. You don't. Your employer is paying for it, and they have full control of it. They can access all messages. They can reassign it to someone else. All of this is by design.