At this point Symantec DLP does not have RADIUS authentication support, and it is not currently scheduled for an upcoming release.  In most cases RADIUS is used to authenticate dial-up connections and authenticates against the Active Directory (AD) setup because companies want to keep it in sync. Therefore, you could use AD for authentication, but not RADIUS directly.

Here are some links to information on how to do the Radius-AD integration:

http://deployingradius.com/documents/configuration/active_directory.html

http://wiki.freeradius.org/FreeRADIUS_Active_Directory_Integration_HOWTO

http://articles.techrepublic.com.com/5100-10878_11-6182945.html (Configure Cisco routers to use Active Directory authentication)

See KB 160331 for information regarding single sign-on.  Some customers would like to enable logging onto the Enforce server via Siteminder or Tivoli WebSeal.  

Single Sign-on in DLP is possible through OKTA. For more information, see the DLP 16.0 Documentation