We're currently looking into the idea of making "eduroam" our primary 802.1X network in addition to adding of EAP-TLS as an authentication method. When we first went live with eduroam, our clearpass administrator was informed that it was advised that we disable "Radius Accounting" on our controllers as to prevent accounting messages from being forwarded. I wanted to inquire if it was possible to keep the "Radius Accounting" messages enabled for Clearpass on local/home/visiting users on campus- but DO NOT forward them to the eduroam radius proxies?