What I am trying to do:
I have a machine that is treated as an appliance, it has multiple graphical applications open, and these must not be closed at any time.
HumanA might turn on the system, launch the applications, then lock the screen.
There is a shift change, and HumanB now takes the responsibility of the machine.
HumanB now needs to log into the system, and see the same graphical applications that HumanA launched.
How I do it today
Today we achieve this by having one user account (UserX) and both HumanA and HumanB know the password to UserX.
The problem is with the auditing of this system. If we determine something very bad happened over the weekend, the log file would only tell us that UserX logged in. This fails to meet our regulations.
What I need it to do
I need HumanA and HumanB to not know each others password or a shared password.
I need HumanA and HumanB to he able to log in and see the same graphical user environment.
I need to be able to determine which Human logged in at what time, from an audit point of view.
** Clarifications **
This is a computer/monitor/keyboard setup, no remote or ssh sessions to worry about.
The humans don't use the system at the same time.
Any trick that involves "moving" the application can't cause any interruption in high performance computing tasks, even a 1 millisecond interruption is not acceptable.
We currently use yocto and XFCE.
The application can not be re-written or redesigned, it must remain graphical.