Sorry, i misunderstood the capabilites of the Aruba IAP, didn't know you can use the internal RADIUS server built-in to the virtual controller or external Radius. I thought the only way to use PEAP-MsChapv2 or EAP-TLS was to use the internal RADIUS server, which now i understand you would need to load a certificate into the virtual controller to do so.
Knowing that, it seems like it would be easier to just use the external RADIUS server rather than go through the headache of creating a cert and loading it in the IAP? or am i wrong?