FS728TPv2 - EAP-TLS compatibility?

Hey everyone, hoping someone can help out here.

We are trying to conver this client from WPA to WPA2 Enterprise with EAP-TLS.  Certs (CA/User) are deployed via Intune, as is the Wireless config.  All of that is working fine.  They are using user-based certs for RADIUS auth.

We are running into an issue with the clients where their RADIUS/NPS requests are not hitting the NPS server.  The client has a varitety of errors:

Wireless 802.1x authentication was restarted.

Eap Information: Type 13, Vendor ID 0, Vendor Type 0, Author ID 0
Restart Reason: Msm Initiated

Eap Information: Type 13, Vendor ID 0, Vendor Type 0, Author ID 0
Restart Reason: Onex Auth Timeout

The NPS server, however, never receives these requests.  They appear to get dropped by the wireless switch.  This is a very simple network:

Client -> AP -> Wireless Switch (FS728TPv2) -> Data Switch (GS748Tv5) -> NPS Server

I want to put blame on the FS728TPv2 here as it is very, very old, and I can't find any documentation regarding EAP-TLS support (Plus it is 100mbps which I want to get rid of also).

So two questions here:

1) Am I correct in assuming the FS728TPv2 does not support EAP-TLS?

2) Am I correct in assuming the GS748Tv5 DOES support EAP-TLS?

3) In looking to replace the FS728TPv2, we are looking for something between 16-28 ports, (11 total APs, but may want room to expand later), do you have any recommendations that you can guarantee DO support EAP-TLS?

Thank you!!