It is also possible to use eduroam on Linux systems without any problems. You can configure it with different tools.

The username may vary depending on the user group. It corresponds to the e-mail address of the respective account.

The Network-Manager is able to manage network connections on different Linux distributions, e. g. Ubuntu, Linux Mint, Fedora und openSUSE. The control takes place via customized user interfaces.

At first, choose “eduroam” in the list of all WiFi networks available. The configuration is as shown in the information box below and in the image on the right hand side respectively.

Depending on the distribution, the CA certificate “Deutsche Telekom Root CA 2” may be at different locations in the file system. Alternatively you can download it at https://ca.gwdg.de and choose it as a CA certificate afterwards.

Now fill out the sections username and password and click on “Connect”. Now a connection to eduroam should be established.

KNetworkManager manages all networks on KDE.

The configuration is as shown in the information box below and in the image on the right hand side respectively.

Depending on the distribution, the CA certificate “Deutsche Telekom Root CA 2” may be at different locations in the file system. Mostly it is preinstalled and it is sufficient to tick “Use Systems CA Certs”. Alternatively you can download it from https://ca.gwdg.de and choose it as a CA certificate afterwards.

Click “OK” to save and to establish a connection. It might be the case that the programme “KWallet” asks for a rule to handle your passwords.

As a starting point the sample configuration “wireless-wpa-configsectio” can be used. Usually the configuration file only needs to be changed in the section “CONFIGSECTION”, containing the following information:

CONNECTION='wireless'
INTERFACE=wlan0
SECURITY='wpa-configsection'
IP='dhcp'
CONFIGSECTION='
    ssid="eduroam"
    key_mgmt=WPA-EAP
    ca_cert="/pfad/zum/deutsche-telekom-root-ca-2.crt"
    anonymous_identity="anonymous@gwdg.de"
    identity="vorname.nachname@stud.uni-goettingen.de"
    password="passwort"
    phase2="auth=MSCHAPV2"
'

The fields password and identity as well as the path to the CA certificate Deutsche Telekom Root CA 2 in ca_cert need to be adjusted. It recquires root rights to establish a connection and to configure this connection.

Normally the configuration and establishing a connection takes place with root rights in the file “/etc/wpa_supplicant.conf” where a new block will be inserted as follows. The fields password and identity as well as the path to the CA certificate Deutsche Telekom Root CA 2 in ca_cert need to be adjusted.

network={
    ssid="eduroam"
    key_mgmt=WPA-EAP
    ca_cert="/pfad/zum/deutsche-telekom-root-ca-2.pem"
    identity="vorname.nachname6@stud.uni-goettingen.de"
    password="passwort"
    eap=TTLS
    proto=WPA
    anonymous_identity="anonymous@gwdg.de"
    phase2="auth=MSCHAPV2"
}

By doing a request with wpa_supplicant -iwlan0 -Dwext -c/etc/wpa_supplicant.conf it is able to start the dial-up. In doing so, wpa_supplicant remains in the foreground. You have to configure your IP address separately, e. g. via using dhcpd.