eduroam SPs (in Wi-Fi Alliance lingo: "hotspots") need to set up a number of configuration parameters so that well-configured end-user devices recognise the hotspot as a) Passpoint compliant and b) as a hotspot that supports connecting to with eduroam credentials. This requires some information elements to be sent out by the eduroam SP equipment. The following list enumerates the current recommendations.
|The organisation ID 00-1B-C5-04-6 is assigned to GEANT (former TERENA); GEANT has assigned the suffix 0 for eduroam. Further assignments for other consortia such as govroam are possible.
|NAI Realm List
|In one reading of the specification, every realm that a consortium supports should be listed. This is however not only unpractical for eduroam with its thousands of realms, it is also not required by typical end-user devices: the name seen in the Wi-Fi beacon does not have to match the realm of the client-side credential - it rather matches a configured NAIRealm item in the device. We recommend end-user devices be configured with the same static "eduroam.org" value so that the comparison between client device and beacon is a match.
|Access Network Type
|1 (private network with guest access)
|This value is from an enumeration and is the closest match to a typical eduroam SP.
|According to the specification, end-user devices can detect if they are "home" or "roaming", and to display this in UI to the user. This appears to be detected by matching this "Domain" parameter with the realm of the client-side credential. There is no UI evidence that the distinction is really made and displayed on any end user device we know of though.
|Contact information of the eduroam SP (multiple languages possible, at least English is recommended)
This is free-text information. Support phone numbers or mail addresses, or directions to an offline help desk booth appear reasonable choices. eduroam SPs should keep in mind that this info is also displayed to roaming users (language barrier, ability to diagnose roaming user problems, ...)
|IP address type availability
two classifiers (IPv4/IPv6) from IEEE 802.11-2012, tables 8-186 and 8-187
according to deployed reality. Examples:
|classifier from IEEE 802.11-2012 Table 8-52 and 8-53 (also see Location data in eduroam DB v2.0.1)
according to the actual type of eduroam SP organisation. Typical values are:
|set to 1 suffixed with the primary realm of the SP (as per RFC5580) e.g. 1camford.ac.uk
|Whilst the intended use of Operator Name in Hotspot 2.0 is a friendly operator name e.g. (Camford University) it appears that the value entered is then added into RADIUS request using the Operator-Name RADIUS attribute. Therefore for eduroam purposes this should follow the RFC5580 standard.
Configuration of some Wi-Fi Controllers
And finally, in the WLAN profiles, bind the logical network and the venue information together:
Cisco Wireless Lan Controller (8.3)
On the '802.11u Parameters' page tick the box to enable '802.11u Status' and then click 'Apply' in the top right corner. (Note: you must enable 802.11u first before making other parameter changes)
Set the '802.11u General Parameters' accordingly for you WLAN:
Click 'Apply' in the top right corner.
Finally, connect to the wireless controller via ssh or telnet and run the following command:
'config advanced hotspot anqp-4way enable'
Venue Information can be added at a per Access Point level or by editing an AP Group (802.11u Tab). (Make sure the correct operating classes are set for your network configuration)