WPA2-Enterprise

• Authentication: 802.1X
• Cipher: AES-CCMP

Vulnerabilities

Evil-Twin / Credential Theft

Attack succeeds primarily when clients fail to validate the RADIUS server certificate (wrong CA, CN/SAN mismatch, or user click-through). Misconfigurations are common.

If PMF is not enabled, spoofed deauth/disassoc frames can force roaming to the evil-twin. PMF blocks this coercion but does not prevent pre-association beacon/probe spoofing.

References:

• All your Credentials are Belong to Us: On Insecure WPA2-Enterprise Configurations