eduroam
Overview and Device Configuration
OTS PUBLICATION: WR23 REVISED07-25-2014 TRAINING@TOWSON.EDU OFFICEOFTECHNOLOGYSERVICES
=Shortcut =Advice =Caution
Introduction
eduroam is a global wireless service that enables students,
researchers and staff to obtain secure and fast internet connectivity across campuses of participating organizations all over the world.
Towson University is a participating organization which allows students to visit universities, research centers and libraries in more than 45 countries worldwide.
In this self-help document, you will learn about eduroam and be able to configure your device to use the service.
Wireless Network Differences
It is important to know which network to connect to on campus. The following matrix breaks down each network, explains their restrictions and who the intended audience is.
Introduction Wireless Network Differences
Configure Windows for eduroam
Logging In
Configure Mac OSX for eduroam
Process Summary
This wireless network is used when visiting other campuses.
You will not be able to connect to the eduroam wireless network if you are on the Towson Campus. For visitors to the Towson Campus, please use the TU-openaccess network.
Please refer to the matrix below for more information.
Wireless Network tu-openaccess tu-secure eduroam
Secure / Encrypted no yes yes
Authentication No authentication required PEAP / MS-CHAPv2 with AES (configured through device's wireless settings)
PEAP / MS-CHAPv2 with AES (configured through device's wireless settings)
Access Internet web-browsing Very limited access to Towson campus network resources
Can access the most resources on the Towson campus network
Can access web, email, VPN, remote desktop, etc.
resources on the Internet No access to Towson campus network recourses
Audience Towson campus guests Users that are having trouble logging into the secure networks
Towson Faculty/Staff/
Students Towson Faculty/Staff/
Students temporarily testing “eduroam” setup before visiting another eduroam institution
Configure Windows for eduroam
1. Click the Start button located at the bottom left hand corner of your computer screen (Fig 1, 1).
2. Click Control Panel (Fig 1, 2).
3. The Control Panel dialog box will appear. Click Network and Internet (Fig 2, 1).
4. Click the Network and Sharing Center link to be taken to the Network and Sharing Center dialog window (Fig 3, 1).
2
Figure 1
1
Figure 2
1
1
Figure 3
5. From the Network and Sharing Center dialog window, click Manage Wireless Networks (Fig. 4,1).
6. Click the Add button (Fig 5, 1).
7. The Manually connect to wireless network dialog box will appear. Click Manually create a network profile (Fig 6, 1).
Figure 5 Figure 4
1
1
Figure 6
1
8. In the Manually connect to a wireless network dialog box, do the following:
Click in the box beside Network name and type eduroam (Fig 7, 1).
Beside Security type:, click the drop down arrow and select WPA2-Enterprise (Fig 7, 2).
Beside Encryption type:, click the drop down arrow and select AES (it may already be selected) (Fig 7, 3).
Place a check in the box beside Start this connection automatically (Fig 7, 4).
9. Click the Next button (Fig 7, 5).
10. A pop up box appears saying Successfully added eduroam (Fig 8). Click the Close button (Fig 8,1).
Figure 7
1
2
3
4
5
Figure 8
1
11. You will see eduroam now listed under Networks you can view, modify and reorder (Fig 9,1) in the Manage Wireless Networks dialog box.
12. Additionally, a pop up box appears at the bottom of your screen saying Additional information is needed to connect to eduroam (Fig 10). You can ignore this pop up as you will be
configuring the network from the Manage Wireless Networks page.
13. From the Manage Wireless Networks page, right-click on the eduroam network and select Properties from the menu (Fig 11, 1).
14. The eduroam Wireless Network Properties dialog box will appear (Fig 12).
15. Click the Security tab (Fig 12, 1).
16. Click the Settings button under Choose a network authentication method (Fig 13, 1).
17. In the Protected EAP Properties dialog box do the following:
Make sure Validate server certificate box is checked (Fig 14, 1).
Check the Connect to these servers: checkbox (Fig 14, 2) and then click in the white box under this selection.
Type radius.towson.edu (Fig 14, 3).
Under Trusted Root Certification Authorities:, place a check beside GeoTrust Global CA (Fig 14, 4).
Figure 9
Figure 10
1
Figure 11
Figure 12
1
Figure 13
1
1
11. Uncheck the Automatically Use my Windows logon name and password (and domain if any) in the EAP MSCHAPv2 Properties dialog box (Fig 15, 1).
12. Click OK to close the EAP MSCHAPv2 Properties dialog box (Fig 15, 2). You will be brought back to the Protected EAP Properties window.
13. Click OK to close the Protected EAP Properties window. You will return to the eduroam Wireless Network Properties screen
14. Click OK to close the eduroam Wireless Network Properties screen. You will returned to the Manage Wireless Networks screen
15. Close the Manage Wireless Networks dialog box.
16. Close all applications and reboot the machine.
Figure 14
1
2
3
4
1
Figure 15
2
5
1
Logging In
1. From the System Tray, click the Wireless Network Access icon (Fig 16, 1).
2. Click the eduroam hyperlink from the list of available networks.
A Connect button will appear.
3. Click the Connect button (Fig 17, 1). An authentication window will appear (Fig 18).
4. Sign into the authentication window using the following combination:
NetID @ towson.edu
5. Click the OK button (Fig 18, 1). Your account will authenticate against the eduroam network and you will be connected.
Figure 16
Figure 17
1
1
For most users, their email address is the same as their NetID (Username). However, in some cases, you will have a NetID which is different than your email address. For eduroam authentication to work, you must provide your NetID followed by the
@towson.edu domain. Remember: you are not using an email address.
3
Figure 18
If you suspect you will be travelling to a campus that is part of the eduroam network, it is a good idea to configure these settings on the Towson Campus before departing for the remote campus.
If you run into any configuration issues on campus, please contact the Help Desk at 410-704-5151 before departing.
NetID Domain For most users, their email address is the same as their NetID (Username). However, in some cases, you will have a NetID which is different than your email address. For eduroam authentication to work, you must provide your NetID followed by the
@towson.edu domain. Remember, you are not using an email address.
Configure MacOSX for eduroam
1. From the applet menu in the top right hand corner, click the Wifi icon (Fig 19, 1).
2. Select eduroam from the list of available networks (Fig 19, 2).
3. An authentication screen will appear (Fig 20). Under Username, sign into the authentication window using the following combination:
NetID @ towson.edu
4. Click the Join button. You will now be connected to the eduroam network.
Figure 19
1
2
NetID Domain
Figure 20
For most users, their email address is the same as their NetID (Username). However, in some cases, you will have a NetID which is different than your email address. For eduroam authentication to work, you must provide your NetID followed by the @towson.edu domain. Remember:
you are not using an email address.