Is it possible to configure multiple RADIUS servers for AAA authentication of ppp sessions in such a way that the authentication result is the logical OR of the queries?
I.e., the router always queries SERVER1 first, and when it returns an ACCEPT, the user is authenticated. When it returns a REJECT, SERVER2 is queried and when it returns an ACCEPT, the user is authenticated. When it returns a REJECT too, the access is denied.
I have read about configuring multiple radius servers but I get the impression that it is for redundancy/fallback. Will the router try the other server when it gets a REJECT, or only when it times out on the first server?
I want to use this configuration to gradually migrate users from one authentication method to another.