Is there a concern in migrating from LEAP to EAP-FAST in a Cisco Secure ACS environment? Rather, how secure is EAP-FAST authentication using AES encryption?
It appears there is mixed view out there. Some folks consider EAP-FAST to be just a little more secure than LEAP (prone to dictionary attacks) and advise to go with PEAP or EAP-TLS, but both these require additional certificates/configuration etc.
Are there any prevailing thoughts out there and/or Cisco's recommendations on the subject?