• Created by Unknown User (durnford), last modified by Unknown User (swinter) on Apr 09, 2013

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 15 Next »

Introduction

The information on this page is meant for eduroam Identity Providers (IdPs) and assumes familiarity with eduroam in general and a working IdP RADIUS server. For general information about both topics, please visit the eduroam on site page; in particular the chapters "eduroam in a nutshell" and "eduroam IdP".

Helpdesk Principles

As an eduroam Identity Provider, you are the first point of contact for your end users, regardless whether they are using eduroam at your own campus or whether they are roaming nationally or internationally with an account issued by you.

It is your duty to inform your users about the applicable Terms of Use / Acceptable Use Policy (AUP) when connecting to an eduroam network (both your own AUP and that of the visited hotspot apply).

You are also responsible for providing enough technical information so that users can set up their device securely. In practice, this means that the public parts of your RADIUS infrastructure are communicated to end users, including at least:

  • the Certification Authority (CA) that issued the EAP Server Certificate of your RADIUS Installation
  • the Common Name (CN) of the server certificate of the EAP Server Certificate of your RADIUS Installation
  • the EAP type(s) you support
  • information regarding which credential users need to use when logging in

Using eduroam CAT for automated configuration

For many common operating systems, the above information can be configured automatically on your end user devices; either by pushing a configuration file to the device, or by executing a configuration program which installs certificates and makes all required settings on the device.

eduroam Operations has created a tool which allows you to upload the information above, and in return generates custom installers for your IdP, for immediate consumption by your end users. The tool is called the "eduroam Configuration Assistant Tool" (eduroam CAT website; IdP Administrator manual). For the operating systems supported by CAT, helpdesk instructions can be limited to "go to this website, use the installer".

For other operating systems, you need to create installation instructions (screenshots, click-through videos, ...) yourself. We always welcome volunteer work for CAT modules for new Operating System support.

 

Unable to render {include} The included page could not be found.

Unable to render {include} The included page could not be found.

  • No labels