I have a 2820 with the 3.3.3 firmware.
I authenticate via a secure token in conjunction with a radius server.

If I setup a user on the router (non radius) I know I can ensure the minimum level of connection encryption by setting the options required

What I notice with the Radius authentication is that the authentication process is being handed off to the radius server as expected but sometime i get an unencrypted l2tp connection and sometimes an encrypted l2tp connection, however my question is there a way to set encryption requirements for a radius user account?