Hi Graham,
Tim's right. I was working with a client a few months back and we enabled these features, just to see what happened. All of the newer devices worked without issue. But, they had a lot of older Dell laptops with b/g/a cards, and those laptops straight up stopped authenticating.
Basically, if you control the enterprise and you know the devices are newer, then it may work. Those features should be enabled with caution.
-Mike