We have a large environment and we are looking for a better way to manage individual local SSH users. The goal would be to not always have to create a local user on every device when a new administrator joins the team. Until now there was a generic SSH user which was used by everyone. The future goal is that every administrator is using it's personalized SSH account.
We have ISE which is using RADIUS as well as TACACS+ but as far as i understand we still would need to create a user locally, hence this would mean either to manually create the users or to use something like Ansible to create local users automated on every Check Point device.
How are other large environments solve this problem?
Regards and thanks for any help,