If one has legitimate access to an unsecured, WEP, or WPA PSK network, then one can use ARP spoofing (plus SSL Strip).
Is this possible for WPA / WPA2 - Enterprise?
I am not talking about cracking WPA but what one can do after legitimately connecting.
Presumably the idea is something like this.
With WPA PSK all clients have the same key. Therefore someone on the network can ARP spoof and intercept traffic because he has the PSK.
But with WPA Enterprise, keys are individual. Therefore, the attacker on the network still cannot ARP Spoof because he will not have the key of the client or clients (for broadcast spoofing) of which he is trying to MITM.
Or am I completely wrong?