This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
- Community
- RUCKUS Technologies
- RUCKUS Lennar Support
- Community Services
- RTF
- RTF Community
- Australia and New Zealand – English
- Brazil – Português
- China – 简体中文
- France – Français
- Germany – Deutsch
- Hong Kong – 繁體中文
- India – English
- Indonesia – bahasa Indonesia
- Italy – Italiano
- Japan – 日本語
- Korea – 한국어
- Latin America – Español (Latinoamérica)
- Middle East & Africa – English
- Netherlands – Nederlands
- Nordics – English
- North America – English
- Poland – polski
- Russia – Русский
- Singapore, Malaysia, and Philippines – English
- Spain – Español
- Taiwan – 繁體中文
- Thailand – ไทย
- Turkey – Türkçe
- United Kingdom – English
- EOL Products
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- RUCKUS Forums
- EOL Products
- ZD
- Trouble configuring eduroam
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Trouble configuring eduroam
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
09-30-2019 06:45 AM
Hello.
I am having trouble getting an eduroam network to work in the research institution I work for. We use a ZoneDirector 1200 with Smart Redundancy.
ZoneDirector had two AAA Servers for Active Directory authentication. To work eduroam, I set up two more AAA Servers:
RADIUS, no encryption, Auth method PAP, Backup RADIUS disabled, port 1812, request timeout 3, max number of retries 2;
RADIUS Accounting, no encryption, backup RADIUS, port 1813, request timeout 3, max number of retries 2.
Guests and staff can access wifi without problems. Eduroam users can't.
ZoneDirector authentication / accounting tests for the RADIUS server results in Failed: invalid username or password (I used a valid password to test). RADIUS Accounting test results in Success! This accounting server is available.
Other information:
1 - DHCP server is not ZoneDirector.
2 - A NAT firewall exists between ZoneDirector and the RADIUS and RADIUS Accounting servers. Then the ZoneDIrector IP is translated to an IP on the same network as the RADIUS and RADIUS Accounting servers.
3 - When I try to connect to the eduroam network using my password, it gets endlessly getting IP address.
Can someone help me?
I am having trouble getting an eduroam network to work in the research institution I work for. We use a ZoneDirector 1200 with Smart Redundancy.
ZoneDirector had two AAA Servers for Active Directory authentication. To work eduroam, I set up two more AAA Servers:
RADIUS, no encryption, Auth method PAP, Backup RADIUS disabled, port 1812, request timeout 3, max number of retries 2;
RADIUS Accounting, no encryption, backup RADIUS, port 1813, request timeout 3, max number of retries 2.
Guests and staff can access wifi without problems. Eduroam users can't.
ZoneDirector authentication / accounting tests for the RADIUS server results in Failed: invalid username or password (I used a valid password to test). RADIUS Accounting test results in Success! This accounting server is available.
Other information:
1 - DHCP server is not ZoneDirector.
2 - A NAT firewall exists between ZoneDirector and the RADIUS and RADIUS Accounting servers. Then the ZoneDIrector IP is translated to an IP on the same network as the RADIUS and RADIUS Accounting servers.
3 - When I try to connect to the eduroam network using my password, it gets endlessly getting IP address.
Can someone help me?
3 REPLIES 3
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
09-30-2019 06:46 AM
More information:
I already had two WLANs: one for guests (vouchers) and one for employees. I created a WLAN called eduroam with the following configuration:
General Options
Name / ESSID *: Eduroam
ESSID: eduroam
Description: Eduroam
WLAN Usages
Type: Standard Usage
Authentication Options
Method: 802.1x EAP
Fast BSS Transition: disabled
Encryption Options
Method: None
Options
Authentication Server: RADIUS
Wireless Client Isolation: Isolate wireless client traffic from other clients on the same AP
(no Isolate wireless client traffic from all hosts ..., and no whitelist)
Zero-IT Activation: disabled
Priority: High
Advanced Options
Only the following options are selected:
Accounting Server: RADIUS Accounting - Send interim-update every 5 minutes
Access Control: No ACLs, Device Policy None, Precedence Policy Default
Rate Limiting: Uplink disabled, Downlink disabled
VLAN Pooling: None
Access VLAN: 1 (disabled Dynamic VLAN)
Load Balancing: Do not perform client load balancing for this WLAN service
Band Balancing: Do not perform Band Balancing on this WLAN Service
Max Clients: Only allow up to 100 clients per AP radio to associate with this WLAN
802.11d: Support for 802.11d selected
Client Fingerprinting: Enable Client Fingerprinting
Service Schedule: Always on
Auto-Proxy: Enable Auto-Proxy Configuration
External Server: xxx.xxx.48.1
Inactivity Timeout: terminate idle user session after 5 minutes of inactivity
I already had two WLANs: one for guests (vouchers) and one for employees. I created a WLAN called eduroam with the following configuration:
General Options
Name / ESSID *: Eduroam
ESSID: eduroam
Description: Eduroam
WLAN Usages
Type: Standard Usage
Authentication Options
Method: 802.1x EAP
Fast BSS Transition: disabled
Encryption Options
Method: None
Options
Authentication Server: RADIUS
Wireless Client Isolation: Isolate wireless client traffic from other clients on the same AP
(no Isolate wireless client traffic from all hosts ..., and no whitelist)
Zero-IT Activation: disabled
Priority: High
Advanced Options
Only the following options are selected:
Accounting Server: RADIUS Accounting - Send interim-update every 5 minutes
Access Control: No ACLs, Device Policy None, Precedence Policy Default
Rate Limiting: Uplink disabled, Downlink disabled
VLAN Pooling: None
Access VLAN: 1 (disabled Dynamic VLAN)
Load Balancing: Do not perform client load balancing for this WLAN service
Band Balancing: Do not perform Band Balancing on this WLAN Service
Max Clients: Only allow up to 100 clients per AP radio to associate with this WLAN
802.11d: Support for 802.11d selected
Client Fingerprinting: Enable Client Fingerprinting
Service Schedule: Always on
Auto-Proxy: Enable Auto-Proxy Configuration
External Server: xxx.xxx.48.1
Inactivity Timeout: terminate idle user session after 5 minutes of inactivity
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-01-2019 04:18 PM
I only find one previous ticket on "eduroam", and they used with Cloudpath Enrollment System.
Otherwise, I cannot find any other info on what it takes to use "eduroam" with AAA for 802.1x, sorry.
Otherwise, I cannot find any other info on what it takes to use "eduroam" with AAA for 802.1x, sorry.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-10-2023 11:25 AM
Michael_brado my institution uses cloudpath as well - do you have information or know where I can find how to setup eduroam?
Labels
-
DHCP
1 -
IP lease
1 -
license snmp
1 -
Proposed Solution
1 -
Ruckus
1 -
server
1 -
VLAN
1 -
w
1 -
wap
1 -
zone director
1 -
ZoneDirector
1
