The FTD shows "network not in table" when there is no specific route in the routing table to the destination, so in that case the default route will be used. In other words the "network not in table" means I don't have a route for that destination so I'll use my default route 0.0.0.0/0. You don't have to add static routes for the S2S remote subnets as those will be defined in the encryption domain access lists, and that is enough to get the FTD to send the traffic inside the tunnel. I think the FTD will use its management interface for RADIUS traffic which means you need to configure the FTD on the RADIUS server with its management interface IP as a client.

I have little in FTD but I think it same principle as ASA
NOW I will give you some note and you can follow it and find solution here 

first we will divide the network into two part,

FTD1-FTD2 checking the Radius connectivity, radius is connect to FTD2
what the interface you use to connect to Radius ??
if it Inside then S2S VPN with policy allow LAN-FTD1 to LAN-FTD2 is enough and work
if it not Inside interface but it management interface then 
you need to to add management subnet of FTD2 in ACL of S2S VPN
Note:- and I think you need to allow management traffic pass through the S2S VPN

how we check connection not from FTD1 to radius in FTD2 no why ? because FTD may use different interface that not hit the ACL of S2S VPN

so connect PC to inside or management interface and from there ping.

now, from anyconnect to radius, this take from me weeks to get the idea, there is no direct connect between anyconnect and radius, the FTD work as proxy between the anyconnect and radius, it receive request from anyconnect and it build new request to radius server.
so if we solve first part the second part will be easy.