Ubuntu 12.04 Instructions


How to connect a Ubuntu computer to the Eduroam service

The wireless service enables members of the University to connect to the University network and the Internet using their own computers and devices at various locations around the University and Halls of residence. This guide contains instructions to connect a computer to the eduroam wireless service.


We allow the Ubuntu package management service to work through our restricted wireless service on SwanseaUni-setup, so you can update your system and any software you need to secure your computer before you connect to the internet and eduroam. (The main ubuntu mirrors are open, others will not be.)


How to configure Ubuntu Video

Dont forget to register your ubuntu device on the registration page first if you have not done so yet.

Step 1 - Configure Eduroam

The rest of this document assumes that you have already registered your device.

Install Certificate

Download the certificate to your ubuntu device by clicking on this link: Swansea University Root Certificate (DER).
You should be prompted to save the certificate, keep note of the location where the file is saved.

The next thing you need to do is configure the Eduroam connection. To do this we will use the NetworkManager service.:

1. To check you have NetworkManager installed as well as your wireless adapter working in Ubuntu you need to click the wireless icon in the top right corner of the screen and check you can see the eduroam wireless network. See the image below:

1.1 If you can not see any wireless adapter or the NetworkManager then you will need to instlal yrou wireless adapter and/or install NetworkManager using apt-get.
2. Now you have identified the NetworkManger icon, left click on it and select eduroam
3. A window will appear asking you to enter information about eduroam, as seen in the image below:

4. The information you need to enter can be seen in the image below.
Security=WPA & WPA2 ENterprise
Authentication=Protected EAP (PEAP)
Anonymous Identity=123456@swansea.ac.uk (replace 123456 with your username)
CA Certificate=swansea-ca.der (You will need to browse to the directory)
PEAP=Version 0
Inner Authentication=MSCHAPv2
User Name= You Swansea University email address. (123456@swansea.ac.uk)
Password= Your Swansea University email password.

5. Now click Connect...
6. You will notice the NetworkManager icon change to a animated icon, and then you should get a message saying you are connected to eduroam.

7. To check that you are connected corrently right click on the NetworkManager icon and select Connection Information.
8. You shoudl see you have a IP Address that begins with 137.44..

9. It is now important that you set your broswer proxy settings, along with any other applications that use port 80 (HTTP).
10. You should set browsers to Automatically detect proxy settings.
If you do not have this option, you will need to hardcode the proxy server settings host=wwwcache.swan.ac.uk on port=3128 with NO authentication.

Step 2 - Configuring your Browser

If you want to browse the web to reach any web sites outside the University you must configure your browser to use the web proxy.

Firefox



1. Run Firefox.
2. From the Tools drop down menu select Options...
3. In the Options panel click the 'Advanced' icon/tab.
4. Select the 'Network' tab.
5. Click the 'Settings...' button.
6. Tick the Auto-Detect Proxy Settings for this network button.
7. Choose OK and then in the Options panel choose OK again to finish
8. Close and restart the browser.

Install security updates


Any computer connected to the University network and the Internet is a target for unauthorised users who can try to access your system. Intruders could watch all your actions on the computer, cause damage by deleting files or changing your data, or steal valuable information such as passwords or credit adaptor numbers. Alternatively intruders may not be interested in your data and instead want control of your computer so they can use it to launch attacks to disrupt other systems. Some attacks known as worms spread automatically from one vulnerable system to another. Don't think 'an attacker would never be interested in me': an automated worm can infect and disrupt millions of computers.


There are three main ways in which an attack on your computer could be successful:

* New vulnerabilities (holes) are always being discovered in computer software. These holes can be exploited to gain access. Software vendors fix the holes by producing patches or new versions, but it is up to you to obtain and install these fixes.
* You could be enticed to run a trojan or virus. A trojan looks like something else to encourage you to click on it but its real purpose is to open up a back door on your computer. Viruses spread by infecting other legitimate computer programs. Trojans and viruses are often spread through email attachments, file-sharing and messaging, and may appear to come from someone you know who is also infected.
* Some software has settings (sometimes the default settings) that allow other users to access your computer unless you change the settings to be more secure. For example, file-sharing built-in to Windows can allow other users to view, modify or add files on your hard disk, which is an obvious risk unless turned off or configured carefully.

To ensure your computer is not vulnerable to attack you need to:

* Install software patches and new versions to fix known holes.
* Follow advice to change software settings to be more secure, or not run known insecure software at all.
* Don't run unknown files and unsolicited attachments to avoid trojans or viruses.
* Run up-to-date anti-virus software.
* Keep backup copies on disk, CD or a network server of important data.