Installing and configuring eduroam CAT on your server
Here, you will learn everything you need to know!
Table of Contents
Introduction
eduroam Configuration Assistant Tool (CAT) is a user-oriented
system helping to configure various wireless devices for eduroam.
The CAT database contains information provided by local eduroam admins, i.e.
items like supperted EAP methods, trusted RADIUS server names, trusted server
certificates, etc.
CAT configurators are device dependant entities (Windows installers, XML profiles,
etc.), which carry all institution-depenent information. Such a configurator is
created when a user selects his/her instition, possibly also user group and one
of supported devices.
See Glossary for a more detailed description of terms used in this text.
Installing eduroam CAT
We are still early on in the process of alpha testing, so please forgive us if
the list of prerequisites below is still incomplete.
The eduroam CAT generates installers for numerous operating systems. Consequently,
many console tools need to be installed for all the profile generators to work
correctly.
- Apache Web Server - to run the web interface
- PHP5.3 - to run the web interface
- wine - to execute the NSIS Installer package
- NSIS 2.46 or higher - to create the Windows installer .exe file
- zip - to zip installer files
- rad_eap_test and wpa_supplicant - to send RADIUS connectivity test probes
- OpenSSL - to run dynamic discovery reachability tests
Configuring eduroam CAT
Again, we are early in the process.
- Apache: the Directory web/user/User_files needs to have "AllowOverrides FileInfo" set
- Apache: the Directories under web/ need to be accessible from DocumentRoot
- NSIS: you need to install the NSIS plug-ins "NSISArray", "GetVersion", "ZipDLL"
- NSIS: the tool "makensis" needs to be in your $PATH and executable
- PHP: you need the extensions "gettext", "openssl" and "PECL:IMagick"
- rad_eap_test: you need to have it in the $PATH, and it needs to be configured to use wpa_supplicant correctly. The >1500 Bytes packet inflation currently needs a slight patch, which is available on request.
- openssl: needs to be in your $PATH
The main CAT configuration is in config/config.php. There is a template file config-template.php
- you can simply copy it to have a config.php.
Edit the file to your needs. In particular, adapt paths as needed, and set
appropriate Google Maps and Google Places API keys. A full description of the
config options in this file can be read by clicking on "Classes: Config" on the
left-hand side.
Glossary
Device:
An operating system instance which covers a group of wireless client devices; it may be just a group of oerating systems like "Microsoft Windows Vista and newer" or "Android smartphones" or "iOS devices"
Profile:
A group of users which share the same network configuration parameters (except for user credentials), thus a profile shares the same supported EAP methiods, the same trusted servers etc. Even if the entire institution needs only one profile it will always be created; configurators are prepared per (profile, device) touple.