I've seen security tokens, but we're not near that level.
Well they do come with varying levels of complexity and so I suppose, security.

A simple solution is the plastic key or card that you issue to each user. The management software will check that it was issued to the user ID and password (the "account") that is entered. You need a fancy keyboard to read them, and a device to write them.

You don't say, but I am guessing that you use Windows............you can set password complexity and life rules in there. You should also be able to set which workgroups or accounts are allowed to access what areas of your systems.

After that look at the security features in your various software applications to decide which users/groups are allowed what privileges.

Good luck!