Generic settings for eduroam secure WiFi access
The generic settings below will allow you to configure a WiFi device to connect to eduroam.
Not all the configuration settings will be available on all devices.
eduroam configuration settings
Network name (SSID)
The network name for the secure WiFi network is eduroam. This must be all lowercase.
WiFi authentication and encryption
The WiFi Network Authentication type is WPA2 Enterprise.
The Data Encryption method to use is AES.
If your WiFi device does not support WPA2/AES, select WPA authentication and TKIP encryption.
The "EAP Authentication Type" or "Outer Authentication Protocol" is PEAP or PEAPv0.
The "Authentication Method", "Authentication Protocol" or "Inner Authentication Protocol" is MS-CHAPv2.
Your username is your UUN plus @ed.ac.uk, e.g. "email@example.com".
Your password should be the password you use to access Office 365. If not, please set eduroam password to Office 365.
If asked for an "Outer Identity", "Anonymous Identity" or "Roaming Identity", leave it blank.
If asked for a realm, leave it blank.
You should choose to Validate the Server Certificate.
The certificate should one called QuoVadis Root CA 2 G3.
Although you may be able to connect to the eduroam WiFi network without validating the server certificate, your connection will not be secure. You must ensure server certificate validation is enabled.