Our Firm agrees as well.  This is a huge security hole and is wildly inconsistent with Lacerte's position of being security conscious.  It should be part of the same two factor authentication Single Sign On security with the rest of the Lacerte tax programs.  What is the point of putting passwords on Lacerte if someone can just open the DMS and get everything they need.  There is a much greater volume of sensitive information in the DMS than in a single version of Lacerte as you typically would have every return and all the source docs for every year accessible in the DMS.