Single-device login policy
Applies to all tensorERP apps that sign in with a tensorAM (Cognito) account.
Summary
Each tensorERP user account may have only one active session at a time, across every module (CRM, Finance, HR, Inventory, POS, and others). This policy protects company data and prevents simultaneous use of the same credentials on multiple devices.
Rules
- One device per account — When you sign in, the system records your device session. Only one device or browser may be active for the same username.
- Second device blocked — If you are already signed in elsewhere, a new sign-in attempt is rejected with: You are already signed in on another device. Sign out there first, then try again.
- Cross-product scope — The session is global for your account, not per app. Signing in to any module uses the same session slot.
- 24-hour timeout — Sessions expire automatically after 24 hours of inactivity. While you use the app, the session is refreshed periodically.
- Sign out releases the lock — Use Sign out in the app to release your session before signing in on another device or browser.
What you should do
- Before switching to another laptop, tablet, or phone, sign out on the device that is currently active.
- If you forgot to sign out, wait until the session expires (24 hours without activity) or ask your company admin for help if access remains blocked.
- Do not share login credentials. This policy complements — it does not replace — your company’s account security practices.
Privacy & technical data
The system stores a device session identifier and last activity timestamp (not your business content) in PT Tensor’s AWS services to enforce this policy. Session data is cleared when you sign out or when the session expires.
Questions
Contact wiratama@pttensor.com or your company’s tensorAM administrator if you believe a session is stuck after signing out on all devices.