Server configuration samples

In this section we will provide some radius server configuration based on different radius implementation. If you want share your experience for a given implementation not yet described in this section, contact us and we will add it. There is also some useful link on our links section.

When you configure your radius server you need to choose the EAP authentication mechanism you will use.
You can use PEAP (Protected EAP) or EAP-TTLS. Both mechanism have advantages and disadvantages but can be used in the eduroam context.

Using PEAP have the advantage that you don't need to install third party software on windows based system. The disadvantage is that you are limited in the choice of "inner" authentication you can use (the user authentication itself).

Using EAP-TTLS have the advantage that you have more choice for the "inner" authentication method. The disadvantage here is that for windows based clients you need to install a third party software like securew2. Despite this securew2 provide mechanism to deploy the sotfware with preconfigured settings. See the SecureW2 website forum forum