Last updated: 
4 months 1 week ago
Blog Manager

eduroam Service News

Follow us on Twitter @eduroamuk - for news, interest, information, photos and fun.

Contents - click on item and scroll to bottom of box to read item

15/04/19 - Advisory: EAP-PWD Vulnerability

12/10/18 - Advisory: Injection of Operator-Name attribute by the NRPSs

23/02/18 - eduroam Seminar pre-Networkshop 2018 - FreeRADIUS 4 etc

24/10/17 - Advisory: WPA2 Key Reinstallation Attacks vulnerability, KRACK

14/07/16 - Release of Technical Specification v1.4

10/05/16 - Advisory: Ending of RADIUS Accounting within eduroam(UK)

22/01/15 - eduroam Support Clinic Tues March 1st 14:15-15:30

18/09/15 - Advisory: Impact of change of Certificate Service CA for eduroam Home (IdP) service providers

27/01/15 - eduroam now available at seven hospitals in Cardiff

22/01/15 - eduroam Support Clinic Tues January 27th 10:45-12:00am

23/12/14 - Calling Station Identity

01/12/14 - New DNS Name for eduroam(UK) Support Server

19/12/14 - eduroam Support Clinic Tues January 6th 10:45am

28/11/14 - eduroam Support Clinic Tues December 2nd 10:45am

19/11/14 - Advisory: Microsoft Security Bulletin Affecting NPS and IAS

27/05/14 - eduroam training course June 11-12 Birmingham; Aug 6-7 Aug Bristol

08/04/14 - Advisory: OpenSSL TLS Heartbleed Vulnerability rev 1.1

21/02/14 - Auth Timestamp Feature on eduroam(UK) Support Server

30/10/13 - Release of FreeRADIUS 2.2.2

07/10/13 - Release of FreeRADIUS 3.0.0

17/09/13 - Release of FreeRADIUS 2.2.1

13/06/13 - Release of Technical Specification v1.3

13/06/13 - eduroam training course June 27 Glasgow

23/04/13 - eduroam training courses July 24-25 London

23/04/13 - Chargeable User Identity how-to guide now available in Library

25/03/13 - eduroam training courses May 2-3 Manchester

24/02/13 - Time for a review of your eduroam deployment - Technical Specification v 1.2 Main Changes from v 1.1

30/01/13 - Configuration Assistant Tool (CAT) now available - builds eduroam client installers for user devices

23/01/13 - Advice regarding keeping eduroam credentials secure

09/01/13 - eduroam(UK) Announcement of Change of Name of the Janet Roaming Service to eduroam(UK)

19/11/12 - Uptake of NAPTR record definition in DNS (to enable RadSec DD) is increasing

31/10/12 - eduroam(UK) Support Server Update: Nagios LG and check for NAPTR records

30/10/12 - Cisco ACS 5.4 released: now support Operator-Name

29/10/12 - Unscheduled service outage Friday 26/10/2012 1:02 AM - 9:48 AM

03/10/12 - Advisory: Improving Efficiency of International Authentication through utilisation of RadSec at National Level

11/09/12 - Advisory: FreeRADIUS 2.1.10,11,12 Security

Blog Document

19/11/2012:

The latest organisations to define NAPTR records in their DNS to boost international roaming authentication performance for their users are:

National Science Learning Centre

Northumbria University

Rothamsted Research

The Pirbright Institute

University of Glamorgan

These join the list of the following (gold star!) organisations which were the first to carry out the configuration:

Coventry University

Liverpool John Moores University

Loughborough University

University of Bristol

Blog Article

More information presented on the Nagios LG service status page

In response to popular demand we've made a change to what eduroam technical administrators see on the Nagios partipants service monitor web page (and to the URL).

Rather than just seeing the service status and service issues for your own site, you can now see the status of all participating organisations' eduroam services. This should help problem investigations.

Blog Document

August 2013 - 14/08/2013

Originator - Alan Buxey

Summary

As part of the continuing programme of improving the eduroam services provided by our members throughout the UK we are contacting organisations on an individual basis where particular issues have been identified. However there are some fairly simple things in the Technical Specification, not involving any RADIUS/802.1X/Wi-Fi aspects, that members can check and fix where necessary to improve their services without needing to be prompted by eduroam(UK).

Blog Article

October 2012 - 3/10/2012

This advisory is relevant to ALL Home (IdP) service organisations participating in eduroam in the UK. It describes the use of RadSec at national proxy level, how this can benefit the individual user and what eduroam organisations must do in order to gain these benefits.

Originator: Alan Buxey

Blog Document

Advisory issued by eduroam.OT 08/04/2014

It has come to our attention that there are vulnerabilities in the relatively new 1.0.1-series of OpenSSL (as detailed by http://heartbleed.com/) affecting TLS enabled services via a heartbeat extension.

While there are no indications that this affects TLS-based EAP-mechanisms or RADIUS/TLS (aka RadSec) at this time, the operational team has made the decision to upgrade OpenSSL to versions implementing a fix for CVE-2014-0160

Prev | Next