WPA2 is secure.
WPA2/AES has NOT been cracked; read the linked article. WPA/TKIP has only been PARTIALLY cracked (cracking TKIP does not give a hacker access to the key), and best practice has always been to use WPA2 if your hardware supports it. The issue with WPA2-PSK actually is that users often pick pre-shared keys that are too short and not complex enough, and of course then it's susceptible to brute force like any other authentication method. If you use a PSK that is 25 characters or longer and random, WPA2 is secure. The other issue with any PSK method is that the key is stored on the device, so if it is stolen, or if an employee is terminated, the unauthorized user has access to your network. WPA2-Enterprise avoids that by using a backend Radius server.
