Gemeinsame Systemgruppe IfI/b-it

You are here: aktuelles » en » eduroam

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision
Previous revision
Next revisionBoth sides next revision
en:eduroam [2018-05-15 11:37] Thomas Thielen:eduroam [2021-11-04 15:22] Anna Gierlach
Line 1: Line 1:
 ====== Eduroam ====== ====== Eduroam ======
 +
 +===== Generic Information =====
  
 **[[http://www.eduroam.org/index.php?about|Education Roaming (eduroam)]]** is an initiative allowing employees and students of participating universities and organizations to access the internet at any site of participating organizations, using their own  username and password or personalized X.509 user certificate via Wifi or LAN. **[[http://www.eduroam.org/index.php?about|Education Roaming (eduroam)]]** is an initiative allowing employees and students of participating universities and organizations to access the internet at any site of participating organizations, using their own  username and password or personalized X.509 user certificate via Wifi or LAN.
Line 6: Line 8:
  
 Nearly everything you need to know to install this service on your device can be found on the [[https://www.hrz.uni-bonn.de/en/services/internet-and-network-access/instructions/linux/eduroam-in-linux|HRZ website]]. Nearly everything you need to know to install this service on your device can be found on the [[https://www.hrz.uni-bonn.de/en/services/internet-and-network-access/instructions/linux/eduroam-in-linux|HRZ website]].
 +
 +If you intend to connect to the WiFi services provided by us, please make sure that you are running only recent software and operating systems that are receiving security patches. **You are not allowed to connect to our networks without making sure that you have the most recent security updates applied to your device, so please keep your systems safe!**
  
 ===== Specific hints for the Informatics + B-IT building ===== ===== Specific hints for the Informatics + B-IT building =====
  
-In the new building in Poppelsdorf, we had to name the wireless network '''eduroam-cs'''as there are neighboring eduroam networks which interfere with each other. So only the university-wide deployed eduroam networks SSID operated by the HRZ is called 'eduroam', while other institutions use a suffixed version, just as we do. So if you want to connect to eduroam at the computer science dept., you have to  connect to the SSID 'eduroam-cs' instead. All the other [[https://www.hrz.uni-bonn.de/en/services/internet-and-network-access/instructions/linux/eduroam-in-linux|connection parameters]] are the same, and you can use manual setup of a Wifi network to make them work.+In the new building in Poppelsdorf, we had to name the wireless network '''eduroam-cs'''. All other [[#Connection Parameters|connection parameters]] are the same. 
 + 
 +The suffixed SSID is necessary as there are neighboring eduroam networks which interfere with each other. So only the university-wide deployed eduroam network SSID (operated by the HRZis called 'eduroam', while other institutions use a suffixed version, just as we do. So if you want to connect to eduroam at the computer science dept., you have to  connect to the SSID 'eduroam-cs' instead.
  
 Some hints for a few operating systems that don't allow you to set all necessary parameters manually: Some hints for a few operating systems that don't allow you to set all necessary parameters manually:
  
-==== MacOS-X ====+==== MacOS-X or iOS ====
  
-  - proceed as described by the HRZ (see below) using the normal MacOS Eduroam/Uni-Bonn installer (this also installs the necessary certificates)+  - proceed as described by the HRZ (see below) using the normal MacOS-X/iOS Eduroam/Uni-Bonn installer (this also installs the necessary certificates)
   - afterwards, install the profile provided [[https://gsg.cs.uni-bonn.de/files/eduroam/eduroam-cs.mobileconfig|here]].   - afterwards, install the profile provided [[https://gsg.cs.uni-bonn.de/files/eduroam/eduroam-cs.mobileconfig|here]].
  
-==== Windows-====+==== Windows ==== 
 + 
 +Please download the [[https://cat.eduroam.de/|Eduroam CAT Tool]] and install it. Then you can create a new Wifi-profile using the connection parameters issued further [[#Connection Parameters|down below]] on this site. 
 + 
 +==== Linux ==== 
 + 
 +Please create a new wifi-profile in your favorite network-manager frontend (or manually of course) using the connection parameters issued further [[#Connection Parameters|down below]] on this site. 
 + 
 +===== Quick Guide for Smartphones running Android ===== 
 + 
 +for recent Android versions (>4.0), the configuration of eduroam at the computer science dept. is rather simple. Just connect to the SSID "eduroam-cs" and fill in the following dialog with the Values from the table further [[#Connection Parameters|down below]]. 
 + 
 +If the connection fails due to invalid certificates, please use the [[https://cat.eduroam.org/|CAT Tool]] to install the necessary certificates, then try again as mentioned above. 
 + 
 +==== Connection Parameters ====
  
-Windows 7 didn't bring have the necessary cryptographic functions for Eduroam. There used to be a free add-on for the academic community, which was part of Windows-7 Eduroam installers, but the license expired, so you can't get it anymore.+Please use the following connection parameters:
  
-The good news is, if you already have working profiles for '''eduroam''','''eduroam-stw''' or '''eduroam-ukb''',  +^ Parameter                                          ^ Value                                                ^ 
-that crypto driver is already installedYou can now configure '''eduroam-cs''' manuallyAfter the initial setupreplace the EAP method by ''GÉANT-TTLS'', then use the new button to add the missing options.+| SSID                                               eduroam-cs                                           | 
 +| WPA-Type                                           | WPA2 Enterprise                                      | 
 +| EAP-Method                                         | TTLS                                                 | 
 +| Keytype                                            | AES                                                  | 
 +| Phase 2 Authentification                           | PAP                                                  | 
 +| Root Certificate                                   | [[https://pki.pca.dfn.de/dfn-ca-global-g2/pub/cacert/rootcert.crt|T-TeleSec GlobalRoot Class 2]] | 
 +| valid CN (Common Name) Radius-Server Certificates  | eduroam1eduroam2                                   | 
 +| Anonymous Identity                                 eduroam@uni-bonn.de                                  | 
 +| Identity                                           | <Uni-ID>@uni-bonn.de                                 | 
 +| Authentification Server                            | eduroam1.rhrz.uni-bonn.deeduroam2.rhrz.uni-bonn.de |
  
 =====See also===== =====See also=====