Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
en:wifistd [2023-08-07 10:21] – Thomas Thiel | en:wifistd [2024-05-10 14:32] (current) – Thomas Thiel | ||
---|---|---|---|
Line 1: | Line 1: | ||
- | ==== WiFi Access ==== | + | ===== WiFi Access |
Everyone who is in possession of valid login credentials to central systems of the c.s. dept. or the b-it has the opportunity to use our wifi networks to access the local resources and of course the internet. Please follow the instructions provided here to gain access to the wifi network. | Everyone who is in possession of valid login credentials to central systems of the c.s. dept. or the b-it has the opportunity to use our wifi networks to access the local resources and of course the internet. Please follow the instructions provided here to gain access to the wifi network. | ||
Line 7: | Line 7: | ||
We secured our WiFi Network mainly via TTLS, so make sure you have the necessary root certificate installed and do not forget to check the fingerprints of the used Certificates. Here are the current fingerprints: | We secured our WiFi Network mainly via TTLS, so make sure you have the necessary root certificate installed and do not forget to check the fingerprints of the used Certificates. Here are the current fingerprints: | ||
- | Current | + | Current |
+ | |||
+ | radius.informatik.uni-bonn.de: | ||
^ Hashtype ^ Fingerprint ^ | ^ Hashtype ^ Fingerprint ^ | ||
- | | MD5 | + | | MD5 | F7:EC:1C:AE:61:E9:C4:C4:FA:62:73:8E:2B:CF:43:CB | |
- | | SHA1 | 50:1A:A7:0A:22:66:BB:39:DA:4C:5D:6B:5B:16:BE:D3:F3:CD:4E:E8 | | + | | SHA1 |
- | | SHA256 | + | | SHA256 | B9:EC:FB:DD:FF:50:AC:10:D2:56:E5:00:FC:33:B0:31:B3:95:2E:76:B3:DF:65:C1:E2:2B:3A:53:D4:3A:3B:58 | |
\\ | \\ | ||
- | === Generic Parameters === | + | |
+ | All certificates are signed by "GEANT OV RSA CA 4", GEANT Vereniging, NL. | ||
+ | |||
+ | ==== Generic Parameters | ||
Please use the following connection parameters: | Please use the following connection parameters: | ||
Line 24: | Line 29: | ||
| Keytype | | Keytype | ||
| Phase 2 Authentification | | Phase 2 Authentification | ||
- | | Root Certificate | + | | CA Certificate |
- | | valid CN (Common Name) Radius-Server Certificates | + | | valid CN (Common Name) Radius-Server Certificates |
| Anonymous Identity | | Anonymous Identity | ||
| Identity | | Identity | ||
| Domain (Android 11) | informatik.uni-bonn.de | | | Domain (Android 11) | informatik.uni-bonn.de | | ||
- | | Authentification Server | + | | Authentification Server |
- | === Windows 10 and above === | + | ==== Windows 10 and above ==== |
If you want to use our wifi network on your Windows System (for all releases starting with Windows Vista), we provide a | If you want to use our wifi network on your Windows System (for all releases starting with Windows Vista), we provide a | ||
- | [[http:// | + | [[https:// |
After the installation you just have to issue your username (including the correct domain, i.e. username@informatik.uni-bonn.de for the c.s. dept. or username@bit.uni-bonn.de. Please use username@wlan.informatik.uni-bonn.de for the [[en: | After the installation you just have to issue your username (including the correct domain, i.e. username@informatik.uni-bonn.de for the c.s. dept. or username@bit.uni-bonn.de. Please use username@wlan.informatik.uni-bonn.de for the [[en: | ||
- | === Windows 7 === | + | ==== Windows 7 ==== |
Users of windows 7 do not have the luxury of native TTLS Support, so it has to be provided by an external supplicant. One of these supplicants is GEANTLink, which is part of the [[https:// | Users of windows 7 do not have the luxury of native TTLS Support, so it has to be provided by an external supplicant. One of these supplicants is GEANTLink, which is part of the [[https:// | ||
- | After the installation of GEANTLink using one of the methods specified above, we provide a [[http:// | + | After the installation of GEANTLink using one of the methods specified above, we provide a [[https:// |
After the installation you just have to issue your username (including the correct domain, i.e. username@informatik.uni-bonn.de for the c.s. dept. or username@bit.uni-bonn.de. Please use username@wlan.informatik.uni-bonn.de for the [[en: | After the installation you just have to issue your username (including the correct domain, i.e. username@informatik.uni-bonn.de for the c.s. dept. or username@bit.uni-bonn.de. Please use username@wlan.informatik.uni-bonn.de for the [[en: | ||
- | === Android === | + | ==== Android ==== |
+ | |||
+ | {{ : | ||
For recent Android versions (>4.0), the configuration of wifi at the computer science dept. is rather simple. Just connect to the SSID “802.1X” and fill in the configuration dialog with the Values from the table [[#Generic Parameters|above]] (-> Generic Parameters). | For recent Android versions (>4.0), the configuration of wifi at the computer science dept. is rather simple. Just connect to the SSID “802.1X” and fill in the configuration dialog with the Values from the table [[#Generic Parameters|above]] (-> Generic Parameters). | ||
- | If your system cannot use the root certificates installed to verify the wifi certificate, | + | If your system cannot use the root certificates installed to verify the wifi certificate, |
- | === MacOS/IOS === | + | ==== MacOS/IOS ==== |
+ | [[ : | ||
+ | [[ : | ||
+ | \\ | ||
+ | For all Apple products which do not support configuring wifi connection parameters manually, we provide connection profiles for your convenience. Please select the matching type of profile (pick the first one if unsure): | ||
- | As Sectigo (the current provider of Certificates of the University) does not provide personal S/MIME certificates anymore, we cannot sign mobile config profiles | + | ^ Apple Configuration Profile |
+ | ^ Apple Configuration Profile for the [[en: | ||
+ | ^ Apple Configuration Profile for b-it accounts: | [[https:// | ||
\\ | \\ | ||
+ |