Radius Administrator Authentication

So I read through the other post to see if I could find some information on why RADIUS for web management isn't working. RADIUS is up, configured and working 100%.


HOWEVER... I have to make the local user first. For example if I want to use RADIUS for domain user user123, I have to make user123 locally on the firewall as an administrator. This kinda defeats the point of RADIUS. Switches have been doing this for years, and same with ASAs. Anyone figure this out?