eduroam

SSID

The SSID is eduroam in lower case.

Username and password

eduroam uses your Remote Access account and not your Oxford SSO account.

Realm

The authentication realm is OX.AC.UK . If prompted for an Outer or Roaming Identity (may also be known as Anonymous Identity) specify anonymous@OX.AC.UK .

Wireless type

The device must support WPA2-Enterprise.

The device should automatically switch between WPA/TKIP and the newer WPA2/AES (which may be called WPA2-Enterprise on the device) based on what the access point it connects to is serving. Some clients (e.g. MS Windows) do not do this and hence require two profiles, one for each type.

The EAP type is 'PEAP', if asked for a sub authentication type use EAP-MSCHAP v2.

The root certificate authority is "AddTrust" which may be listed as "AddTrust External CA Root".

RADIUS servers

If asked, the RADIUS server to authenticate against is: radius.oucs.ox.ac.uk.

Troubleshooting

  1. Check that a typo such as 'ox.ax.uk' hasn't been used.
  2. Check that the remote access password is being used, not the SSO account.
  3. Check that the certificate is set correctly.
  4. Check that the username is of the form abcd0123@OX.AC.UK and not an email address.
  5. You might need to remove the wireless network and reconnect. This might be necessary, for example, if you have changed your remote access password or previously set up an eduroam connection.

 

Written by IT Services. Latest revision 10 November 2017