Provide a logout capability for user-initiated communications sessions whenever authentication is used to gain access to [Assignment: organization-defined information resources].
Information resources to which users gain access via authentication include local workstations, databases, and password-protected websites or web-based services.