top of page

VMware:
WCAG 2.2 Authentication Updates
Role: Senior Product Designer

Platform: Web (B2B applications across VMware’s product ecosystem).

Overview

As WCAG 2.2 introduced new success criteria to improve accessibility for users with cognitive, mobility, and visual disabilities, VMware needed to quickly implement logout-related updates across authentication flows. My role involved translating these guidelines into practical, reusable UI templates to help PMs, designers, and engineers efficiently apply the changes.

Why It Was Needed

VMware needed a quick reference guide for accessible logout requirement updates.

  • Ensure compliance with WCAG 2.2 and ADA requirements

  • Address common authentication flows:

    • Logout via timeout

    • Local logout

    • SSO (Single Sign-On) logout

  • Provide a fast-reference implementation guide for cross-functional teams

Research

The initiative focused on creating standardized, reusable templates that adhere to the latest accessibility guidelines. 

By providing pre-built components and patterns for common authentication scenarios, this effort aimed to streamline development, improve consistency, and guarantee that login and logout processes are usable by individuals with disabilities. This template creation process involved careful analysis of WCAG 2.2 criteria, user testing, and collaboration with accessibility experts to produce inclusive solutions.

Example of Authentication Guidelines

Logout via Timeout

Session Timeout

  1. Single key option to end session

  2. Single key option to extend time, shown in focus state to convey default selection

  3. Message alerting the user of exactly how many minutes and seconds remain until session expires

    • Seconds not displayed in the code

  4. Warning icon displays message type

Session Ended

  1. Informational message title with icon

  2. Informational message informing the user that the session has ended

Managing Timeout Behavior: Opt-In/Opt-Out

Access to Preferences:​

  1. Preferences via dropdown menu

  2. Preferences button

Preferences Modal > Security Settings:​

  1. Security settings option

  2. Session timeout control

  3. Timeout length control

Timeout Disabled by Admin:​

  1. Feedback message alerting the user of disabled feature by admin

Session Logout:

  1. SSO logout (primary button skin)

  2. Logout locally (primary button skin)

  3. Continue session (secondary button skin)

Logout Types

Local Logout:

  1. Informational message title with icon

  2. Informational message informing the user that the session has ended locally

SSO Logout:

  1. Information message title with icon

  2. Informational message informing the user the session has ended locally

Outcome

This documentation established a clear framework for authentication design, enabling the following:

  • Enabled engineering teams to implement accessible patterns without ambiguity

  • Improved logout UX for users with disabilities

  • Ensured compliance with WCAG 2.2 AA guidelines

  • Supported VMware’s broader ADA compliance strategy

By systematizing these logout flows, we significantly reduced the risk of accessibility violations across VMware products.

bottom of page