I need to configure a bunch of EX switches for external credentials based authentication. I tested with this configuration and it works well.
set system login user remote full-name "Default remote user template"
set system login user remote uid 100
set system login user remote class super-user
set system tacplus-server <ip_address> secret <password>
set system tacplus-server <ip_address> source-address <ip_address>
set system authentication-order [ tacplus password ]
I am wondering why we need to created a local user named 'remote' for this to work. Is there any security concern in doing that?