I am looking for best practices around connecting to multiple CRs and some odd behavior. I am working with a client that has a Dev VM and a Sandbox VM. They noticed an issue wherein one of their licensed Bot Creator devs logged into the Sandbox VM but hit the URL for the Dev VM by mistake. Upon login, the bot agent automatically synced to the Dev VM account. The short workaround for this was to block the Dev URL on the Sanbox VM, and vice versa on the Dev VM.
What I am wondering is whether this is at all due to them using the same credentials (local to the CR, not A.D. or SSO) in both environments. And is the best practice approach to have each dev use a separate username/password in each CR environment? Or was this caused by something else? Using separate credentials seems like it will be more of an administrative headache as the team grows.