You should specify what are the switches in use.
For Procurve there is some similar guide for command authorization with/on FreeRadius: https://techhub.hpe.com/eginfolib/networking/docs/switches/RA/15-18/5998-8151_ra_2620_asg/content/ch06s09.html#s_Configuring_commands_authorization_on_a_RADIUS_server
For CX devices, command authorization on a remote server is supported with TACACS+ only. RADIUS authentication can be used with local authorization (you have to create an user-group and define the permitted/denied commands in a list, where * can be used as well). I haven't tried this, but the RADIUS needs to return the proper user-group as well (three built-in groups on the switch /administrators/auditors/operators (no changes for these groups available) + locally defined (what you need to create)).
For reference you can search for the Security Guide of your device (https://www.arubanetworks.com/techdocs/AOS-CX/help_portal/Content/home.htm) and take a look at command authorization and user-groups.
At Aruba, we believe that the most dynamic customer experiences happen at the Edge. Our mission is to deliver innovative solutions that harness data at the Edge to drive powerful business outcomes.
© Copyright 2021 Hewlett Packard Enterprise Development LPAll Rights Reserved.