I have yet to play with the certificates on this system so the default appears to be PEAP The default certificate by GeoTrust is the certificate I see.
We configured this to talk to an external RADIUS.
In Maintenance -> Certificates it says:
Certificates affect which authentication protocols are used:
- No cert: LEAP
- Server cert: PEAP + TTLS
- Server and CA certs: TLS
If I'm understanding what I've read so far 'No cert: LEAP' would leave the traffic between clients and WAPs unencrypted. We'd prefer this be encrypted.