"Eduroam" wifi network

The University of Teramo has joined the international federation of Eduroam universities and research bodies (Education Roaming).

 

Thanks to this federation when one of our users (enrolled student, teaching staff or technical-administrative staff) goes to another university or federated body, he can use the wireless service of that body by connecting to the "eduroam" network using the same credentials to access the UniTE network (wlunite). The only difference is in the insertion of the username which to access the "eduroam" network must be in the form username@unite.it.

 

Even guests who belong to institutions belonging to the federation and who come to our university will be able to access the "eduroam" wireless network using the credentials they would use in their institution and to which they will eventually have to refer to obtain access instructions.

 

To find out about the universities or organizations that have joined in Italy, you can visit www.eduroam.it or https://monitor.eduroam.org/eduroam_map.php?type=it

To find out about the universities or international bodies that have joined the federation, visit www.eduroam.org/where

 

Info

Rules for access to the service of the Italian Eduroam Federation

 

 

 
Configuration parameters for access to the "eduroam" network for external users visiting UniTE:

SSID: eduroam
Protocol: 802.1x
Network authentication: WPA2-Enterprise
Data encryption: AES

 

 
 
Credentials for access by UniTE users visiting other participating Bodies:

SSID: eduroam

Authentication: Protected EAP (PEAP)

Authentication (password): Secured password (EAP-MSCHAP v2)

Anonymous identity (if any): anonymous@unite.it

User Name: username used to access the wlunite network followed by @ unite.it

Password: password used to access the wlunite wifi service

 

During the authentication process it is necessary to verify that the Radius server certificate is "proxyrad.unite.it" and issued by "TERENA SSL CA 3".

 

 
 
Connectivity services

The following connectivity services are made available to users of the "eduroam" network:

 

  • IPSec VPN: incoming and outgoing IP 50 (ESP) and 51 (AH) protocols and UDP / 500 (IKE)
  • OpenVPN: UDP / 1194
  • IPv6 Tunnel Broker service: incoming and outgoing IP 41 protocol
  • IPsec NAT-Traversal: UDP / 4500
  • Cisco IPSec VPN over TCP: outgoing TCP / 10000
  • PPTP VPN: incoming and outgoing IP 47 (GRE) and outgoing TCP / 1723
  • SSH: TCP / 22 outgoing
  • HTTP and HTTPS: outgoing TCP / 80 and TCP / 443
  • IMAP4 and IMAPS: TCP / 143 and TCP / 993 outgoing
  • IMAP3: TCP / 220 outgoing
  • POP3 and POP3S: TCP / 110 and TCP / 995 outgoing
  • (S) passive FTP: outgoing TCP / 21
  • SMTPS: outgoing TCP / 465
  • SMTP submission via STARTTLS: TCP / 587 outgoing
  • RDP: TCP / 3389 outgoing

 

The user is responsible for the proper use and storage of his or her login credentials and must:

  • implement every measure aimed at preventing their abuse and their knowledge to third parties;
  • verify that you are connecting to an authentic Eduroam Resource Provider, for example by examining the certificate of the RADIUS authentication server and connecting only to networks protected by the 802.1X service;
  • immediately notify your Identity Provider if you suspect that there have been security breaches.