Hospital login friction and SSO: what IAM teams need to know

TL;DR: A peer-reviewed study across 55 hospitals in four nations found clinicians can lose millions of hours a year to logins, with SSO and access management reducing fatigue, improving job satisfaction, and reclaiming 3.3 million hours of time according to Imprivata's cited research. In healthcare IAM, authentication is no longer just a security control, but a workflow and resilience issue.

NHIMG editorial — based on content published by Imprivata: New Data Shows Hospitals Lose Millions of Hours to Logins, Driving Demand for Single Sign-On

By the numbers:

• the study covered 55 hospitals across four nations
• some clinicians juggle up to 20 separate credentials per shift

Questions worth separating out

Q: How should hospitals reduce login friction without weakening security?

A: Hospitals should centralise authentication with single sign-on, then apply session governance, role-based access, and reauthentication rules where data sensitivity demands it.

Q: Why does repeated authentication create risk in healthcare environments?

A: Repeated authentication creates risk because it increases cognitive load, slows care delivery, and encourages workarounds.

Q: How do you know if SSO is actually improving identity governance?

A: SSO is working when login counts fall, clinicians spend less time reauthenticating, and workaround behaviour declines without a rise in unauthorised access.

Practitioner guidance

• Map login-heavy clinical workflows end to end Identify where clinicians reauthenticate across EHRs, lab systems, prescribing tools, and shared workstations.
• Pair SSO with session governance Define when reauthentication should occur, how long sessions remain valid, and which applications need stricter step-up checks.
• Measure authentication friction as an operational metric Track login counts per shift, time lost per user group, and the rate of workarounds such as shared sessions or delayed logout.

What's in the full article

Imprivata's full article covers the operational detail this post intentionally leaves for the source:

• The study methodology behind the 55-hospital, four-nation research sample
• The hospital-by-hospital productivity and value calculations behind the 3.3 million hours figure
• Additional context on clinician burnout, screen-time fatigue, and workflow satisfaction outcomes
• The practical access management framing used in the source article for healthcare IT decision-makers

👉 Read Imprivata's analysis of hospital login friction and SSO access management →

Hospital login friction and SSO: what IAM teams need to know?

Explore further

View Full Forum →  |  NHI Foundation Course →