Radius- what type of reply should should be sent to the sw

[jfrawley]

This is my first attempt at radius auth with Netonix, so far I am striking out. Response in ssh is Access Denied, I added the line to my clients.conf file and I also enabled require_message_authenticator for my global rule as well. I guess where I am lacking the experience/knowledge on this is what kind of reply should radius be sending?
Freeradius 3.0
# allowed values: yes, no
require_message_authenticator = yes
client private-network-1 {
### I also tried just the ip of the switch rather than a range yyy.yyy.yyy/32
ipaddr = 10.0.0.0/8
secret = somethingsecret
require_message_authenticator = yes
Currently I have a user in my database- (not real info here)
Check Attributes
user User1
Cleartext-Password := User1234
Reply Attributes
Auth-Type := Accept
## I also tried with a GROUP reply with Auth-type := Accept
I have the switch ip in my NAS as well with correct secret, radius port is also default and correct 1812
Netonix v 1.5.25
"RADIUS_Enable":true,
"RADIUS_Host":"xxx.xxx.xxx.xxx",
"RADIUS_Port":"1812",
"RADIUS_Secret":"somethingsecret",
My tiks all auth just fine, granted they use a different reply though such as FULL or READ
When I run radclient from the Netonix-
admin@T222:/etc/freeradius2# echo "User-Name = validuser,User-Password=validpass" | radclient xxx.xxx.xxx.xxx auth somethingsecret
Received response ID 144, code 2, length = 20

[Julian]

Hey Justin, got your facebook comment

Will take me a little bit to get digging on this, hardware's in place in the lab but i don't have freeradius running yet, sounds like I'll be sharing your pain here shortly

Thanks!