macOS has a privilege that can be granted to any user that will allow that user to unlock active users sessions. Disabling the admins and/or users ability to log into another users active and locked session prevents unauthorized persons from viewing potentially sensitive and/or personal information. While Fast user switching is a workaround for some lab environments especially where there is even less of an expectation of privacy this setting change may impact some maintenance workflows Fix: sudo security authorizationdb write system.login.screensaver use-login-window-ui

[yes/no]

sudo security authorizationdb write system.login.screensaver use-login-window-ui