I have a hard time understanding the issues people have implementing 802.1x. In my experience working with edu sites, I often see primarily PC sites with 802.1x and primary mac sites with PSK. I have to wonder if part of this is the ease to extend active directory with radius using NPS, and the mac server platform really has no "easy" options.
Another thing I see a lot is people will say they need client certs, etc with radius - then realize without a good way to deploy said certs deployment is VERY complicated (IE mix mac/pc environment) then they will simply fall back to PSK and never look back because their "pilot" failed... BUT in most cases TLS is not needed as they simply want more visibility on their sites, and the ability to lock down access (disable access) from one location, your authentication directory (Ldap, Open Ldap, Active directory).
I am not sure the best way to solve this issue - except maybe we need to teach people that when something does not work, it does not mean you failed, unless you have failed to learn anything about what happened.
-Dan