Skip to content

Other Systems

Instructions for setting up WLAN access on other systems


Setup

For manual setup you need the following configuration items:

CAUTION! Please refer to the WLAN-Support if you can't set some configuration or you're not sure if the configuration is correct.
You need to set ALL configuration items to establish a secure connection to eduroam.


  • SSID: eduroam
  • CA Certificate: T-Telesec Global Root Class 2 (preinstalled on most systems, downloadable via wlan.uni-bremen.de/T-TeleSec_GlobalRoot_Class_2.crt)
  • Server Name (or Domain): radius.wlan.uni-bremen.de
  • EAP-Method: TTLS or PEAP
  • Inner Method/Phase 2 Authentication: MSCHAPV2
  • Outer/Anonymous identity: eduroam@uni-bremen.de (just eduroam with some devices)
  • (inner) identity: <username>@uni-bremen.de
  • Password: Your WLAN-Password

netctl profile

If you are using netctl, you can use the following profile:

Description='Eduroam'
 Interface=<interface>
 Connection=wireless
 Security=wpa-configsection
 IP=dhcp
 ESSID=eduroam
 WPAConfigSection=(
  'ssid="eduroam"'
  'proto=RSN WPA'
  'key_mgmt=WPA-EAP'
  'eap=PEAP'
  'anonymous_identity="eduroam@uni-bremen.de"'
  'identity="<zfn-user>"'
  'password="<password>"'
  'altsubject_match="DNS:radius.wlan.uni-bremen.de"'
  'phase2="auth=MSCHAPV2"'
  'scan_ssid=1'
  'group=CCMP TKIP'
  'ca_cert="/etc/ssl/certs/T-TeleSec_GlobalRoot_Class_2.pem"'
 ) 

wpa_supplicant.conf

If you're using WPA-Supplicant, you can use the following configuration:

network={
        ssid="eduroam"
        key_mgmt=WPA-EAP
        anonymous_identity="eduroam@uni-bremen.de"
        eap=TTLS
        ca_cert="/etc/ssl/certs/T-TeleSec_GlobalRoot_Class_2.pem"
        altsubject_match="DNS:radius.wlan.uni-bremen.de"
        identity="<zfn-username>@uni-bremen.de"
        password="<password>"
        phase2="auth=MSCHAPV2"
}