Technical specifications for eduroam at DkIT. Not required reading, but here if you want it.

Wireless LAN IEEE 802.11b/g/n.

"eduroam". The SSID will be broadcast.

802.11i. WPA2/AES is supported. WPA/TKIP will be possibly implemented for legacy devices at a later date. WEP of any key length will not be implemented.

802.1x. Local (DkIT) users will be authenticated using PEAP+MSCHAPv2. Visitors will use an EAP type supported by their home institution.

Non-standard ports are blocked, as are ports for any kind of mail transport to the outside world. This is much stricter than the recommended settings, but is in line with the DkIT Computer Services Firewall Policy. Port 80 and 443 are always open.

All registered DkIT Staff and students.

The goal is to provide eduroam at all wireless locations on the campus. Any AP currently broadcasting wireless.dkit.ie on campus has been instructed to also broadcast the eduroam ssid.

Supported Clients

• MSDOS, Microsoft Windows95/98 - Not supported. Upgrade to Windows XP SP3 or better
• Microsoft Windows XP pre-SP2 - Not supported. Upgrade to Windows XP SP3 or better
• Windows XP SP2 - SP2 supports WPA/TKIP but not WPA2/AES unless the KB917021 Windows Update is installed. If you don't yet want to upgrade you can use WPA/TKIP with the Wireless Zero Configuration (WZC) that comes with Windows and a supplicant (eg. SecureW2 , XSupplicant/Open1X or wpa_supplicant ) to provide the required support for EAP-TTLS-PAP. Whilst this may work, it is not supported by Computer Services.
• Windows XP SP3 - SP3 supports WPA2 without the need for a 3rd party supplicant program.
• Microsoft Windows 7 - Supported. Use the supplicant software of your choice.
• Microsoft Windows 8 - Supported. No 3rd party supplicant required, just connect.
• Microsoft Windows Vista - May work, but not supported. Upgrade to Windows 7 or 8 recommended.
• Apple Mac OS X v10.3 (Panther) - May work, but not supported. Some older Macs are known to have hardware and/or software limitations which prevent them from working in the implemented environment.
• Apple Mac OS X v10.4 (Tiger) - Supported.
• Apple Mac OS X v10.5 (Leopard) - Supported.
• Apple Mac OS X v10.6 (Snow Leopard) - Supported.
• Apple Mac OS X v10.7 (Lion) and up - Not tested, therefore NOT supported but should work. Use the iPhoneConfigurationUtility to create a mobile configuration profile with the 802.1X settings.
• Apple iPhone, iPod touch - Supported with firmware 2.0 or later. Use the iPhoneConfigurationUtility to create a mobile configuration profile with the 802.1X settings.
• GNU/Linux, BSD, Unix, and Unix-like systems - Not all tested. Some versions of wpa_supplicant (e.g. on the EEE PC) only support the PSK/Personal/non-enterprise versions of WPA and WPA2, these will need to be upgraded. Some of the GUI frontends to wpa_supplicant do not support authentication server verification. Ubuntu, Debian and Android on mobile devices have all connected using native supplicants.