Maybe I'm still following outdated advice, but I always use a non-admin account as my main MBP user account and then have a separate administrator account that's only used for admin purposes — installing apps or updates, changing various preferences, etc. Obviously, this requires typing in my admin name and password each time an admin account needs to approve something, which, admittedly, isn't all that often. The new MBPs with Touch Bar seemingly could cut down on the typing, since an admin account could (theoretically) authenticate via Touch ID rather than by typing in the admin name and password. However, after a day with my new 2016 MBP, I see this isn't the case — if an admin needs to approve something, the only option is to type in the admin name and password; Touch ID can't be used, even if the admin's fingerprint has been registered. (The Touch Bar shows "Change user"; nothing happens if one tries to authenticate via Touch ID.) Does the Touch ID implementation/protocol only allow one user account's fingerprint to be active at a time, or is it possible that Apple will add Touch ID as an option for when an admin's credentials are needed? This seems like an obvious feature, so I'm not sure if it's a limitation of the protocol, or if it just hasn't made it into the OS yet, since only a very small percentage of Mac users have a Touch Bar right now. Thanks.