Part 11 compliant systems must be designed so that unauthorized attempts to use e-signatures are detected and reported to security management.
Access must be limited to authorized individuals.
The FDA recommends the following.
http://learnaboutgmp.com/8-essential-tips-prevent-unauthorized-system-access-21-cfr-part-11-video/