Last updated: 
4 months 2 days ago
Group Manager

A place to share information on all aspects of eduroam in the UK.

Follow us on Twitter @eduroamuk - for news, interest, information, photos and fun.


Click on item and scroll down to the selected content at the bottom of the page.

Advisory: Implications of MAC address randomisation on eduroam(UK) members

Advisory: CA Certificate Validation in Android Devices (Nov 2020)

Deploying Govroam alongside eduroam

Advisory: EAP server certificate considerations (July 2020)

eduroam Visitor Access Administrator Manual - Configuration and Management

eduroam Visitor Access Portal User Manual - Creating Guest Accounts

eduroam Visitor Access User Manual - Creating Guest Accounts for Groups and SMS Events

eduroam Visitor Access Guide - UKAMF IdP Configuration Requirements

Advisory: Injection of Operator-Name at the NRPSs

Walled Garden for Onboarding User Devices to eduroam

Using eduroam Support site; Connecting to the NRPS; User on-boarding – CAT

Introducing the eduroam Support Server 2 - Networkshop45 Presentation - April 2017

Guidance document - eduroam and Safeguarding

Guidance document - Cost of Implementing eduroam

eduroam(UK) Technical Specification Summary of Recommendations Checklist

eduroam(UK) Technical Specification Summary of Requirements Checklist

eduroam(UK) Technical Specification

NHS and eduroam/shared use of wireless/govroam

ORPS in Azure - alternatives to the use of ICMP

Sending Operator Name with Cisco ISE 2.0

eduroam in Public Buildings and Spaces in City Centres

TLS 1.2 and updated RADIUS requirements

FreeRADIUS Packet Handling - examining the flow

FreeRADIUS Best Current Practice Configuration for eduroam 

Performance tweaks for RADIUS and backend authentication systems

eduroam(UK) Microsoft NPS Configuration Guide

eduroam(UK) Service Provider Assurance Tool User Guide

eduroam(UK) Service Provider Assurance Tool Phase2 Field Trial Feedback

Improving the Reliability of NPS as an Authenticator in eduroam

Advisory: Using Status Server

Advisory: Use of MD5 Certificates Deprecated in Favour of SHA-1 for RADIUS servers

Advisory: Windows Mobile 8 and Certificate Verification

NWS41 eduroam Forum presentations - TKIP, CUI, NAPTR, QoS Probe

NWS40 FreeRADIUS Demystified seminar presentation

Geant Funding available

Janet Lumen House eduroam Service Information

UK eduroam Usage Feb 2013

EAP-pwd Moving Towards a Deployable Standard

Site Finder and Service Information Directory

eduroam(UK) Technical Specification 1.3 (archived) - superseded by 1.4

eduroam User Troubleshooting Flowchart for IT Support Staff

eduroam Administrators Troubleshooting Flowchart

NAPTR Record Creation Using Microsoft Windows 2008 R2 DNS Server

eduroam Best Practice Pointers

FreeRADIUS 2 eduroam Deployment at University of Sussex


Possibly of interest: GEANT is offering part funding for multidomain network research and development activities.

See the attached document for more details.


This document is intended to serve as an aid for eduroam site administrators in troubleshooting problems with the implementation of the eduroam service at RADIUS server level.

The document splits the troubleshooting process based on the ID provider of the user: 

  • remote user authentication, addressing problems your users may be experiencing at a remote site and
  • visitor authentication, focussing on problems faced by your visitors from other sites.

This guide describes the setup of the Microsoft Network Policy Server for use with eduroam in the UK. Whilst it is the key component, the Organisational RADIUS Server (ORPS) is just one element of your eduroam deployment and this guide must be read in conjunction with:

i) Implementing eduroam Roadmap



Author - Dr Alan Buxey 27/2/2012

This document looks at how a RADIUS packet is handled within the FreeRADIUS server. This fundamental knowledge will help us to understand where and how we configure the server, where we can adjust or optimise the flow and where to start looking if things go wrong. A good starting reference point is the native configuration after installation; reassuringly, by default this should just work!


Using eduroam Support site; Connecting to the NRPS; User on-boarding – CAT

This document is intended for the system administrators at member organisations and provides an introduction to using the eduroam(UK) Support site together with an introduction to the eduroam Configuration Assistant Tool and a guide to getting started with the eduroam CAT site.


This document is intended for the system administrators at member organisations and describes an implementation of a 'walled garden' network service that only gives access to setup tools to enable user devices to be correctly configured to run eduroam securely. The setup tools are the configuration installers produced using the eduroam CAT system, so administrators adopting this deployment will also need to learn how to use that.


This document describes how to create NAPTR records in DNS when using Mirosoft Windows Server 2008 R2 as your DNS server. NAPTR records will enable international routing of eduroam user authenitcation requests to be routed more efficiently by using direct RadSec for NREN national proxy - NREN national proxy routing - thus removing two RADIUS hops by avoiding the top level European proxies.


This document is intended for Technical managers wishing to explore the topic of safeguarding minors and vulnerable adults on eduroam, particularly in respect of users roaming away from the home campus to locations where the eduroam service provides unfiltered access to the internet. The background to the issue is considered together with an appraisal of how the key elements of eduroam support the safeguarding of users and how eduroam deployment may be tailored to suit the policy in force at the individual organisation.

Prev | Next