Dell N3024P doesn't send Radius Attribute Service-Type 10

Hi all,

I'm facing an issue where my switch / the endpoint is not sending the correct 'Service-Type' Radius attribute to my radius server. When the endpoint is authenticating, it only sends 'Service-Type' 1 (Login-User) and not 10 (Call-Check).

I've globally enabled sending the service-type in the Access-Request message using command: 'radius-server attribute 6 on-for-login-auth' like described on https://dl.dell.com/manuals/all-products/esuprt_ser_stor_net/esuprt_networking/esuprt_net_fxd_prt_swtchs/networking-n3000-series_administrator-guide12_en-us.pdf (P. 938). 

Port configuration:

description "NAC ENABLED"
spanning-tree portfast
switchport mode general
dot1x port-control mac-based
dot1x reauthentication
dot1x timeout quiet-period 1
dot1x timeout tx-period 1
dot1x timeout guest-vlan-period 10
dot1x max-req 3
dot1x mac-auth-bypass
authentication order dot1x mab
authentication priority dot1x mab

The authentication-history log proofs that MAB is working:

SWITCH(config-if-Gi1/0/1)#show authentication authentication-history gigabitethernet 1/0/1

Timestamp Interface MAC Address Auth Status Method
--------------------- --------- -------------- ------------ --------------
Aug 15 2022 11:10:02 Gi1/0/1 4448.C1CF.E52E Unauthorized MAB

Aug 15 2022 11:09:40 Gi1/0/1 4448.C1CF.E52E Unauthorized MAB

Aug 15 2022 11:09:17 Gi1/0/1 4448.C1CF.E52E Unauthorized MAB

Screenshot of Service-Type that is received on radius server (ClearPass):

Model: Dell N3024P 

Firmware: 6.3.2.3. 

I want to use the different service types (1 or 10) to differentiate the use of 802.1x or MAB on the radius server.  Why is the access-request not sending 'Service-Type' 10?