eduroam

eduroam(UK) Technical Specification Summary of Recommendations Checklist

Edward Wincott
15 April 2021 at 5:55pm
eduroam
recommendations
technical specification
Appendix 2 of the eduroam(UK) Technical Specification in quick checklist format Please visit https://community.jisc.ac.uk/library/network-and-technology-service-docs/technical-specification-requirements-checklists for the updated link.
Read more

eduroam(UK) Technical Specification v1.4 Summary of Requirements Checklist

Edward Wincott
15 April 2021 at 5:55pm
eduroam
technical specification
checklist
Appendix 1 of the eduroam(UK) Technical Specification in quick checklist format Please visit https://community.jisc.ac.uk/library/network-and-technology-service-docs/technical-specification-requirements-checklists for the updated link.
Read more

eduroam(UK) Technical Specification v1.4

Edward Wincott
12 January 2017 at 4:48pm
eduroam
eduroam Technical Specification
The full MS Word version of the Technical Specification can be downloaded from icon above. The document can also be found in the Technical Reference Documents section of the eduroam area in Community Library. Appendix 1 - Summary of Requirements - Checklist Form
Read more

2021-04 Advisory: Android 11 configuration issues, geteduroam, server certificates

Edward Wincott
Thursday, April 1, 2021 - 17:58
eduroam
eduroam(UK) Advisory
certificates
EAP
Released 1st April 2021 Updated 16th April 2021 This advisory applies to all organisations providing a Home (IdP) service who wish to support users on Android 11 devices. A number of issues have arisen simultaneously which have resulted in a complex situation which requires a careful response from member organisations to avoid user disappointment. The recommended actions are summarised at the bottom of this page. Contents:
Read more

Advisory: Ending of RADIUS Accounting within eduroam(UK) (May 2016)

Stefan Paetow
Wednesday, March 31, 2021 - 22:54
eduroam
advisory
May 2016 - 10/05/2016 This advisory applies to any member organisation that operates an ORPS that is configured to send RADIUS accounting packets to the NRPS. Originator: Edward Wincott Scope
Read more

Advisory: Use at least SHA-1 for RADIUS server certificates (Apr 2014)

Stefan Paetow
Wednesday, March 31, 2021 - 22:39
advisory
eduroam
md5
sha1
certificates
Buried in the historic mail archives (and likely in some older eduroam documentation) are advisories concerning the type of RADIUS certificate that eduroam(UK) participants should be using.  Basically, do not use MD5 certificates. For some time now, MD5 has been deprecated and over the past few years Operating Systems have been dropping support for such certificates. e.g. http://support.apple.com/kb/HT4999  (since iOS 5 MD5 certs are only valid for CA certs not server certs)
Read more

Advisory: Windows Mobile 8 and certificate verification (Apr 2014)

Stefan Paetow
Wednesday, March 31, 2021 - 22:35
advisory
Windows 8
certificate validation
eduroam
Announcement regarding Windows Mobile 8 and 802.1X authentication with certificate validation Best practice is that clients must be configured to trust/verify the CA that signsthe RADIUS server that presents during an 802.1X authentication - a major securitypin for eduroam is this trust/check. It has been noted that Windows Mobile 8 (WM8) devices would not authenticate the userif this 'verify' option was chosen.
Read more

Advisory: Use of Status-Server (Jul 2015)

Stefan Paetow
Wednesday, March 31, 2021 - 22:22
Radius
eduroam
status server
best practice
Status-Server (RADIUS Code Type 12 packet) uses RFC 5997 - http://www.ietf.org/rfc/rfc5997.txt - to deliver a method of one RADIUS server or client to know the status of an upstream or downstream server. 
Read more

2020-07 Advisory: EAP server certificate considerations

Stefan Paetow
Wednesday, March 31, 2021 - 02:31
EAP
eduroam(UK) Advisory
eduroam
server certificates
eduroam(UK) Advisory: EAP server certificate considerations (July 2020)
Read more
Subscribe to eduroam