Using Named Template Accounts
Template accounts for which you define a name are defined on a C-series platform and are referenced by the TACACS+ and RADIUS authentication servers through usernames. All users who share a local user template account have the same access privileges.
When a user who accesses the C-series platform through a name template account logs in:
- The SRC software issues a request to the authentication server to authenticate the user's login name.
- If a user is authenticated, the server returns the username to the SRC software.
- The SRC software determines whether a username is specified for that login name.
- If there is a username, the SRC software selects the appropriate template.
- If a user template does not exist for the authenticated user, the C-series platform uses the
remote
template.Configuring a Local User Template
To configure a local user template and specify the privileges that you want to grant to the local users to whom the template applies:
- Include the system login user
local-username
statement at the[edit]
hierarchy level, and specify the name of the group for thefull-name
option.[edit]system login userusername
{full-name "name of group
";uiduid-value
;classclass-name
;}