We are authenticating users against a radius server that connects to AD - as 99% of our users have accounts. The rest we assign vouchers on a per-case basis.
We have enabled "Enable Pass-through MAC automatic additions" and "Enable Pass-through MAC automatic addition with username" so they only have to authenticate once and then we have their username associated with their device. The issue arises when we have more than 9000 separate device/username pairs in the db. I know there are some php files that may help in pruning the mac auth table, just not sure which ones they are and what parameters to pass to them.
In the past, I've just been deleting the mac auth table once a year (just before fall semester - we are a University) and then everyone has to re-authenticate. But with the growing number of devices everyone has, we are easily exceeding 9000 records within a year.