Should PCs require login screens with complex passwords?

Requiring a login screen on a PC acts as the first line of defense for protecting data and ensuring only authorized users can access the machine. When a user must authenticate before the desktop boots or when resuming from idle, it prevents someone who finds or steals the device from immediately accessing files and applications. Complex passwords make it much harder for an attacker to guess or brute-force credentials, which helps protect sensitive information and reduces the chance of credential reuse across systems. This also creates accountability, since actions on the device can be tied to a specific user account. In practice, pairing a login requirement with a solid password policy—favoring longer passphrases and, ideally, multi-factor authentication—offers stronger protection. Enabling automatic locking after inactivity further reduces exposure when the user steps away. While some highly controlled or single-user environments might accept different trade-offs, the standard security stance is to require using login screens with strong credentials on PCs.