EduRoam Australia Project Experience in location independent wireless networking with international collaboration with TERENA EduRoam Project 19 th APAN.

Slides:

Advertisements

Similar presentations

Inter WISP WLAN roaming

Advertisements

eduroam Delegate Authentication System with Shibboleth SSO

Joining eduroam Wireless Roaming for Education and Research.

Connect. Communicate. Collaborate eduroam: a managed European service Miroslav Milinović, Srce, Zagreb, Croatia eduroam SA, GÉANT2 NORDUnet 2008, Espoo,

Overview of local security issues in Campus Grid environments Bruce Beckles University of Cambridge Computing Service.

Connect. Communicate. Collaborate eduroam: towards a managed European service Miroslav Milinović, Srce, Zagreb, Croatia eduroam SA, GÉANT2 Wi-Fi Workshop,

OneBridge Mobile Data Suite Product Positioning. Target Plays IT-driven enterprise mobility initiatives Extensive support for integration into existing.

COMP091 OS1 Active Directory. Some History Early 1990s Windows for Workgroups introduced peer-to-peer networking based on SMB over netbios (tcp/ip still.

Terena Mobility Taskforce update Klaas Wierenga SURFnet.

Licia Florio EUNIS05, Manchester 1 Eduroam EUNIS Conference, June Licia Florio.

Southampton Open Wireless Network The Topology Talk.

TF Mobility Group 22nd September A comparison of each national solution was made against Del C – “requirements”, the following solutions were assessed.

Copyright JNT Association 2006 The JANET Roaming Service.

The Remote Workplace Designing, deploying, and supporting the remote workplace environment Presented by: John Milhoan Information Technology Cooperative,

5/25/2015 AEB/Yleisesittely Roaming network access using Shibboleth in University of Helsinki Fall 2004 Internet2 Member Meeting 29th of September, 2004.

EduRoam ESA workshop 17 December 2004 Utrecht.

Eduroam – Roam In a Day Louis Twomey, HEAnet Limited HEAnet Conference th November, 2006.

INFSO-RI Enabling Grids for E-sciencE JRA3 2 nd EU Review Input David Groep NIKHEF.

High-quality Internet for higher education and research Federated network access with Klaas Wierenga SURFnet Ljubljana, April.

High-quality Internet for higher education and research eduroam EuroCAMP, Porto, November 9, 2005

EduRoam: movilidad por Europa... y España Toledo, 29 de octubre de 2004

Beispielbild Shibboleth, a potential security framework for EDIT Lutz Suhrbier AG Netzbasierte Informationssysteme (

03 December 2003 Digital Certificate Operation in a Complex Environment Consultation/Stakeholders Meeting 3 December 2003.

Identity and Access Management IAM A Preview. 2 Goal To design and implement an identity and access management (IAM) middleware infrastructure that –

Flexible Network Access Overview. Flexible Access an Integral part of Universal Access Policy Universal Access to Campus IT Resources Managed LAN portsFlexible.

All Rights Reserved © Alcatel-Lucent | Dynamic Enterprise Tour – Safe NAC Solution | 2010 Protect your information with intelligent Network Access.

Wireless Roaming for Higher Education and Research

Lecture 12: WLAN Roaming Communities EDUROAM TM. eduroam TM eduroam (education roaming) is the secure, world-wide roaming access service developed for.

Windows 2003 and 802.1x Secure Wireless Deployments.

Wireless ambitions Frans Panken I2 Spring meeting 24 april 2012.

AARNet Copyright 2010 Network Operations The eduroam project group

Eduroam Louis Twomey HEAnet Library Services Day 20 th November 2014.

Education roaming Secure Wireless Service for Research and Education.

RIPE69 – MAT-WG – Wednesday, 5 November 2014 Brook Schofield, GÉANT Association eduroam: The Value of WLAN measurements for the R&E.

High-quality Internet for higher education and research Paul Dekkers April 4th, Turkey.

Philadelphia Area SharePoint User Group Building Customer/Partner Extranets Designing a Secure Extranet with Sharepoint 2007 Russ Basiura RJB Technical.

1 Prepared by: Les Cottrell SLAC, for SLAC Network & Telecommunications groups Presented to Kimberley Clarke March 8 th 2011 SLAC’s Networks.

Michal Procházka, Jan Oppolzer CESNET.

A Practical Guide for Joining EduRoam EuroCAMP Torino A Practical Guide for Joining EduRoam 4 March 2005 Version 1.6.

Eduroam JP and development of UPKI roaming Yoshikazu Watanabe*, Satoru Yamano* Hideaki Goto**, Hideaki Sone** * NEC Corporation, Japan ** Tohoku University,

Module 7 Active Directory and Account Management.

High-quality Internet for higher education and research AAI from the NREN perspective Schiphol, October 17, 2005

Active Directory Harikrishnan V G 18 March Presentation titlePage 2 Agenda ► Introduction – Active Directory ► Directory Service ► Benefits of Active.

Overview of Microsoft ISA Server. Introducing ISA Server New Product—Proxy Server In 1996, Netscape had begun to sell a web proxy product, which optimized.

Eduroam.us Operational Experiment Kevin Miller Duke University Andy Rosenzweig Merit Network ESCC/Internet2 Joint.

AARNet Copyright 2006 AARNet Update on SIP/ENUM James Sankar APAN 23, Manila.

Connect. Communicate. Collaborate AAI scenario: How AutoBAHN system will use the eduGAIN federation for Authentication and Authorization Simon Muyal,

May 17, 2006TNC 2006, Catania1 eduroam.us: past, present, future Philippe Hanset University of Tennessee, Knoxville.

Authentication and Authorisation for Research and Collaboration Licia Florio AARC Workshop The AARC Project Brussels, 26 October.

University of Washington Identity and Access Management IEEAF – RENU Network Design Workshop Seattle - 29 Nov 2007 Lori Stevens, Director, Distributed.

- NCSU project goals and requirements - Adoption Drivers - Current challenges and pain points - Identacor at NCSU - Identacor Features - NCSU Key Benefits.

Connect. Communicate. Collaborate TERENA Networking Conference, 7 june 2005 Eduroam: past, present, and future.

Workshop roaming services: eduroam / govroam

Connect. Communicate. Collaborate Deploying Authorization Mechanisms for Federated Services in the eduroam architecture (DAMe)* Antonio F. Gómez-Skarmeta.

Authentication and Authorisation in eduroam Klaas Wierenga, AA Workshop TNC Lyngby, 20th May 2007.

6 June 2004TF-Mobility meeting 6 June TF-Mobility meeting Agenda TF-Mobility Meeting, June Welcome and Update on TF-Mobility to date Discussion.

University of Washington Collaboration: Identity and Access Management Lori Stevens University of Washington October 2007.

Active Directory. Computers in organizations Computers are linked together for communication and sharing of resources There is always a need to administer.

19 May 2003 © The JNT Association Terena Technical Advisory Council Terena Mobility Task Force

Programme ›TERENA ›Overview of the middleware initiatives in the European Higher Education ›What is eduroam: the technology and how to set up eduroam ›eduroam-in-a-box:

Connect communicate collaborate Trust & Identity EC meets GÉANT 19 June 2014 Brussels Valter Nordh, NORDUnet Federation as a Service Task Leader Trust.

Federated Wireless Network Authentication Kevin Miller Duke University Internet2 Joint Techs Salt Lake City February, 2005.

Group Policy in Windows Vista. Group Policy Administration Group Policy with Windows Vista QoS Policies What Will We Cover?

6/12/2016 AEB/Yleisesittely WLAN roaming experiences using Shibboleth TNC 2004, Rhodes 7th of June, 2004 Mikael Linden, Viljo Viitanen,

Windows Active Directory – What is it? Definition - Active Directory is a centralized and standardized system that automates network management of user.

“Connectivity Around the World”

Zscaler Support Model MANY MOVING PARTS SUPPORT MODEL Customer Network

10 Years of eduroam (from an idea to a product)

GN2 JRA5 Roaming and Authorisation Jürgen Rauschenbach, DFN-Verein

Presentation transcript:

EduRoam Australia Project Experience in location independent wireless networking with international collaboration with TERENA EduRoam Project 19 th APAN Meeting Network Engineering and NOC Session & 27 Jan 2005 Version 1.0

In the Beginning The EduRoam project was originated in the Netherlands at SURFnet and has spread across the UK and Europe and now Australia. TF-Mobility group in TERENA ( ) Requirements Analysis (March 2003) Enable roaming network access everywhere in Europe with: Minimal admin overhead (per roaming user). Minimum complexity / configuration to the user. Secure access. Scalable! New – Policies in place for participants. Results of roaming access evaluation (Dec 2003) Web: Scalable, Unsafe VPN: Not Scalable, Safe 802.1x: Safe, Scalable…. but new and costly (This has now changed) TF-Mobility – Croatia 2003TF-Mobility – Rhodes 2004

Why EduRoam What does EduRoam do. EduRoam allows roving researchers to log-in, with their usual “user name/password”, to a wireless networks at participating campuses around Australia and the World and gain access to resources at their home institution. The program, is based on inter- institutional trust. Why EduRoam Users –Becoming more demanding of network access provision. –Coverage (Multiple locations), Security, Performance, User-friendly –Want to use their own laptop computers NRENs –Desire to develop value added services. –Keen to encourage and support collaborative developments. –Requirement identified to support network access for guests. –EduRoam is Location Independent Wireless Networking. –This is a policy based system that relies on trust between organizations. Technology –802.1x standard developed and ratified (2001). –EAP-TTLS supplicant developed by Alfa & Ariss for secure access. –“Off the shelf” affordable wireless access solutions appearing. –Deployments are based on open standards on open source products.

EduRoam Global Web Sites

EduRoam Deployment Dec 2004: 350+ participating institutions

EduRoam in Australia Requirements EduRoam solved. –Participant Requirements. Researches, Staff and students able to move between Universities. Researches, Staff and students able to work on collaborative e-science projects. Solution for Inter University Conferences. (with safe wireless) Reduced costs due to VoIP calls using SIP or H323 over wireless. Reduce productivity loss in visiting other institutions. –Support group benefits. This would remove the requirements of IT support groups to create temporary wireless accounts for visitors from other Universities. Requirement for open access for events. Security not lost as local security policies are enforced and supported by inter university access policy. User ID could be tracked.

EduRoam Australia Project Goals The EduRoam project has six deliverables; –Inter University Access Policy. –Acceptable use Policy. –Interconnected Trusted Wireless Federation. –Security Framework Model. –EduRoam branded Web Portal. –Inter continental Global Federation.

EduRoam Australia Deployment Minimum Service levels. –EduRoam SSID broadcasted. (if technically possible on AP). –802.1x WPA TKIP EAP-TTLS –Access to R&E networks. (My be ACL and firewalls). –http, https & VPN pass though permitted. –Radius Server. –EduRoam portal at site.

EduRoam in Australia Camp Delegates declare YES! to Interest in EduRoam trials at The Australian Middleware Camp In Australia we performed an extensive PR campaign which is still continuing. Concept presentations to state RNO’s technical and management levels. Web presents established. Target meetings with critical path organizations. and news release campaign. Track release propagation via web trends. Presentations at conferences and meetings.

EduRoam Australia participants to date Institution Participants Bureau of Meteorology MelbourneCityUnder Development CSIRO PerthARCUnder Development Deakin MelbourneGeelongUnder Development GrangeNet/APL CanberraYarralumlaUnder Development RMIT MelbourneCityFederated MelbourneBundooraFederated MelbourneBrunswickFederated Swinburne MelbourneHawthornUnder Development MelbournePrahranUnder Development MelbourneLilydaleUnder Development MelbourneCroydonUnder Development MelbourneWantirnaUnder Development Many others have expressed interest in participating.

EduRoam Australia stage 1 Complete

EduRoam Australia stage 2 Complete

EduRoam’s Future

Network Issues –Secure access over wireless networks. –Multiple network access solutions under consideration. –Connecting to the backend (central directories etc.). Communications –Promoting EDUROAM services to end users. –Supporting guest users when things go wrong and how to define where the problem is. –Providing a facility for end user / administrator feedback. Access to more than simple network access –Access to content (e.g. use of attributes to access e-journals). –Access to local services (e.g. printers). New requirements appearing –The authentication space (mutual authentication methods, combined with AA systems in the AP, or backend system). –The authorisation space (quarantine users to check for viruses, Windows Updates etc before granting access).

EduRoam enhancements –SSO: Use of RADIUS attributes for network and content access. –Alternative routes to home Authentication server. –Enhanced security. –XML RADIUS configuration Easier EduRoam deployment –EduRoam in a box. –EduRoam checklist for compliance. End user focus –EduRoam web site. –Access points “phone book”. –Location Based Services (SMS). Measurement and Monitoring –Infrastructure monitoring : Server availability, RADIUS Authentication and Authorisation monitoring. –End-to-end monitoring: Load analysis /accounting log analysis (E2E), usertracking.surfnet.nl. –Minimum standards for RADIUS / DIAMETER accounting logs. EduRoam International –Expand participation outside Europe (ASIA, USA) There are areas for collaboration

EduRoam Future in ASIA-Pacific

EduRoam Links EduRoam Home Site Link to list in Australia International links

Thank-you & Questions EduRoam works! Please join!! Institutional and user feedback is a critical success factor, how to capture this will be key.