Authentication and User ManagementΒΆ

TNSR includes a tnsr user in the operating system by default. Depending on how TNSR was installed, administrators may have created an additional user account during the installation process.


The default password for the tnsr user is tnsr-default and this default password is marked as being expired. As such, the operating system will force a password change when a user logs into the tnsr account for the first time.


While the tnsr user and the account created by the installer exist in the operating system, they do not appear in the TNSR configuration. Only users created specifically for local authentication via the TNSR CLI are included in the TNSR configuration (Local User Authentication).

Administrators may create additional local users to provide a separate workspace for each user, or they can configure remote authentication using either RADIUS or LDAP.

Each user can access the TNSR device via SSH to use the TNSR CLI and depending on the RESTCONF server configuration they may also be able to access the GUI.


NACM controls which areas of TNSR users are authorized to access. The NACM default behavior varies by platform and when the TNSR installation was created. See NETCONF Access Control Model (NACM) for details.