Who needs eduroam Managed IdP?
eduroam relies on all participating institutions to manage a service that controls all their user identities and responds to connection requests from eduroam access points worldwide.
This requires the management and support of an Identity Provider (IdP) Service, a well-managed identity backend, and a RADIUS Server to verify the credentials from that backend and grant user access to eduroam.
Many smaller institutions may not have the in-house skills or resources to operate the required services and in particular to maintain their integrity. This is why eduroam Managed IdP has been developed.
eduroam Managed IdP outsources the technical setup of eduroam IdP functions to the eduroam Operations Team. This leaves the institution only having to focus on its users and frees up valuable technical support resource.
The system includes:
- A web-based user management interface where end user credentials for access to eduroam can be created and revoked.
- A technical infrastructure (“CA”) which issues and revokes credentials for users to access to eduroam.
- A technical infrastructure (“RADIUS”) which verifies access credentials and subsequently grants access to eduroam.
The eduroam Managed IdP website is available at https://hosted.eduroam.org
How it works
For NROs (National Roaming Operators)
eduroam NRO administrators can invite their IdPs to use eduroam Managed IdP. Enabling or disabling IdPs for eduroam Managed IdP is easily done inside the eduroam Managed IdP administration interface.
More information is available in the NRO Manual.
For IdP administrators (Institutional administrators)
eduroam Managed IdP provides IdP administrators with a simple web-based management interface to add, remove and manage credentials for end users to access eduroam. All internal processes are handled on behalf of IdP administrators.
eduroam IdP administrators can use this system to create end user credentials (accounts) according to his/her local institution policy. IdP administrators are fully responsible for the end user credentials they issue. If you are IdP administrator interested in using eduroam Managed IdP, contact your National Roaming Operator (NRO).
More information is available in the IdP Administrator Manual.
For eduroam users
When your institution administrator creates user credentials in Managed eduroam IdP for you, you will receive an invite email with details how to download your setup for eduroam.
For more information contact your institution.