iPSK/EasyPSKs sounds like a promising alternative, especially for simplifying BYOD onboarding while maintaining security. I like the idea of using Entra ID SSO for initial authentication and tying PSKs to group policies for dynamic access control. It seems like a great way to balance security and user experience, especially for unmanaged devices. One question that comes to mind: How do you see this scaling in larger environments with frequent user turnover? Managing PSKs per user sounds efficient, but I wonder about the logistics of rotation and revocation at scale.
... View more
