Most systems have a small number of day-to-day administrators, who work during normal business hours to manage configuration, patches, security, storage, etc. If a problem arises during the normal work-day, these administrators are called and they fix the problem promptly.
If production systems experience problems at night or on weekends, stand-by staff need to be able to login and make corrective changes. At other times, stand-by staff should not have administrative access.
These requirements are contradictory: stand-by staff should get administrative access to systems in an emergency, but not normally.
Using Privileged Access Manager, one-time disclosure of passwords is convenient and secure.