Accounting is usually used to tell the RADIUS server when a user started and stopped a session. For management users, that may not be relevant.
Are you wanting to do "authorization" (where you allow certain commands for certain users and more or less for other users)?
Right now, the controller only has the concept of roles (read-only, guest-provisioning, root, network-operations, etc). You CAN pass a RADIUS attribute back to the controller to properly set the role. For example, if the user requesting controller authentication is a member of "admins", you can pass back the attribute called "Class" with a value of "root". On the controller you can create a rule (under Management > Administration > Server Rules) by setting "Condition" = Class, "Operation" = value-of, "Action" = set role. That way, when the RADIUS server responded to the authentication attempt, it would include Class (the way you do that depends on your RADIUS server) with the value of "root". The controller would then apply the root role to anyone in the Admins group (or whatever group you want to check against in your RADIUS server).