The issue is if you enforce FIPS compliance in the Windows security policy settings, an exception will be thrown because RADIUS protocol uses the MD5 algorithm to hash the request authenticator. There is not an alternative MD5 algorithm that is FIPS compliant so it does not appear any code implementation of RADIUS would be possible on a machine enforcing FIPS compliance.
Does this mean RADIUS is mutually exclusive with FIPS compliance?
The code implements the RADIUS protocol as specified by the official RFC (http://tools.ietf.org/html/rfc2865).