Wireless Security Question !!! Help Needed!!!

I posted this under the main networkin forum not knowing there was one for security. Here geos again.....

We are deploying a Wireless Controller System at our office and I would like to be able to cloak the settings. I know it is pretty much impossible to hide the SSID from the users who know how to get it using sniffer type products and freebies on the net, but i am more concerned about the encryptions settings. We are using EAP-FAST,WPA-2,and AES-CCMP for encryption/authentication with automated PAC provisioning. We also use the Intel PROSet Wireless Tool to manage the drivers on our laptops/tablets. Is there a true way to keep users from finding out the settings of the network, and if not how can i prove that. I mean when i click the properties of the connection it tells me everything. If i hide that from a user, then they cannot use their laptop to make new profiles at hotels and home and such. Just a question to find out though.



If you do know how to sniff a network to find out the encryption settings let me know so i can prove that to my security people. We do have Cisco ACS providing Active Directory authentication to where a user cannot gain access without being a member of Active Directory and of the group associated to a certain SSID. So its more about slowing down users from finding out the encryption settings and all that. Thanks in advance for whatever help you can provide.