We currently have a group of users authenticating their VIA access using EAP-PEAP. We want to move them to EAP-TLS, using x.509 certs they have already been issued. Can we configure the controller and/or ClearPass to simultaneously either/or auth mechanisms? Would we need a different interface (and matching URL) for each, or could it all be done using the same interface and URL?