Yes, it is common and recommended for organizations to provide individual login credentials to employees. Here are some best practices for doing so securely:

Create a unique username and strong password for each employee. Don't reuse the same credentials across accounts.

Use multifactor authentication whenever possible to add an extra layer of security beyond just a password. This could include one-time passwords via an authenticator app or security keys.

Store credentials in an access management system rather than sharing them over email or documents. This allows for centralized management, auditing of access, and easy revocation when needed.

Only grant employees access to the specific systems and resources needed for their job functions. Don't share broader credentials that give more access than necessary.

Educate employees on secure password habits like not sharing credentials, avoiding weak or public passwords, and reporting any suspicious access attempts.

Rotate employee credentials periodically, such as every 90 days, to mitigate the risk if a password gets compromised.

Have strong password policies in place, like minimum length, complexity requirements, and password blacklists.

Monitor login activity for anomalies that could indicate unauthorized access attempts. Respond promptly to any issues detected.

Providing unique, properly secured credentials per employee is standard practice for restricting access to authorized users only and maintaining appropriate security controls.