How often is the internet infrastructure updated

Eduroam and certificates

← All F.A.Q.s on the subject of Eduroam

last updated 16/03/21

Eduroam uses certificates for secure user authentication, which also enables the use of W-LAN access at other universities around the world. At least two different certificates are required:
  1. Your personal Eduroam certificate: With this you identify yourself to the internet infrastructure. Obsolete certificates or certificates from other universities or libraries often cause connection problems. It is therefore always worth trying to delete a personal Eduroam certificate that may have been installed if you have difficulties logging in:
    • iOS: You can find the Eduroam profile under Settings → General → Profile (under VPN) → Eduroam. If the folder is not displayed, no profiles are installed.
    • Android: Settings → Location & Security → Encryption & Credentials → Delete login data → OK
    • Mac: Eduroam profiles according to the old standard can be found in the System settingsProfiles. Newer certificates can be used together with the login data via the Keychain management deleted (search for "eduroam"or possibly university name - see screenshot). Please be careful and do not delete any unknown entries.
    • Windows: Open a console (Windows key + r, then "cmd") and enter the command netsh wlan delete profile eduroam a → Enter

  2. The T-Telesec Global Root Class 2 root certificate: This certificate is usually pre-installed on your device and is used to ensure that you are actually connecting to an Eduroam network and not to one that is just named. So if you get the error message "The identity of the authentication server could not be verified" or something similar, you have to download and install the root certificate. You can find it here: T-Telesec Global Root Class 2.

  3. The Certificate fulfills a similar task as the root certificate described above, but in contrast to this, it can be deleted without hesitation in the event of connection problems in order to rule out another potential source of interference.
More about the interesting connection standard IEEE 802.1X here.