Govroam

The Roaming solution for the public sector

User Tools

Site Tools

You are here: start » public » faq
public:faq

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision 		Previous revision
Next revision Both sides next revision
public:faq [2018/08/14 13:58]
admin [Technical] 		public:faq [2019/05/17 06:58]
admin
Line 7: Line 7:
 A: Contact <govroam@jisc.ac.uk> and you'll be sent all the appropriate documentation for joining. A: Contact <govroam@jisc.ac.uk> and you'll be sent all the appropriate documentation for joining.
  
-The {{ :public:171005_gov011_govroam_full_boarding_form_v2.0.docx |Full Boarding form}} needs filling out completely. It asks for contact information, information about your RADIUS servers and for a letter of consent from someone senior e.g:+The {{ :public:20180815_full_boarding_v3.0_gov011.docx |full boarding form}}  needs filling out completely. It asks for contact information, information about your RADIUS servers and various other pieces of informationThe form refers to a {{ :public:federationregistry.xls |Registry}} document - if you're joining as a Federation, please fill that in too. Send them to <govroam@jisc.ac.uk>.
  
-<code> +Once we have properly completed forms then we'll sort out the appropriate payments, shared secrets for RADIUS servers, access to the CAT, the Govroam App, subscribe you to the support mailing lists and add your support details to our Support Matrix.
-"Dear Sir/Madam, +
- +
-Re: Govroam +
- +
-Please accept this letter as authority of behalf of <insert organisation here> for the provision of the Govroam service over our network infrastructure as a full member. +
- +
-Your faithfully, +
- +
-<Director of IT>" +
-</code> +
- +
-scan it to a PDF and send it to <govroam@jisc.ac.uk>+
- +
-Submit the form back to us, and then we'll sort out the appropriate payments, shared secrets for RADIUS servers, access to the CAT, the Govroam App, subscribe you to the support mailing lists and add your support details to our Support Matrix.+
  
 ===Q: We're a public sector organisation and would like to join Govroam as a Visited Only site, what are the next steps?=== ===Q: We're a public sector organisation and would like to join Govroam as a Visited Only site, what are the next steps?===
Line 29: Line 15:
 A: Contact <govroam@jisc.ac.uk> and you'll be sent all the appropriate documentation for joining. A: Contact <govroam@jisc.ac.uk> and you'll be sent all the appropriate documentation for joining.
  
-The {{ :public:170921_gov012_govroam_visited_only_form_v2.0.docx |Visited Only Boarding form}} needs filling out completely. It asks for contact information, information about your RADIUS servers and for a letter of consent from someone senior e.g:+The {{ :public:20180820_visited_boarding_v3.0_gov012.docx |Visited Only Boarding form}} needs filling out completely. It asks for contact information, information about your RADIUS servers and for a letter of consent, on corporate headed paper, from someone senior e.g:
  
 <code> <code>
Line 52: Line 38:
  
   - Take your existing eduroam configuration, duplicate the part of it related to visitors, change the 'eduroam' bits to 'govroam'. So that should cover the SSID, 802.1x setting on your wireless controllers, a VLAN to put the visitors on, an address range for them, firewall settings (same as eduroam). Then the RADIUS config should be able to send unknown realms to our NRPS.    - Take your existing eduroam configuration, duplicate the part of it related to visitors, change the 'eduroam' bits to 'govroam'. So that should cover the SSID, 802.1x setting on your wireless controllers, a VLAN to put the visitors on, an address range for them, firewall settings (same as eduroam). Then the RADIUS config should be able to send unknown realms to our NRPS. 
-  - Download the {{ :public:170921_gov012_govroam_visited_only_form_v2.0.docx |Visited Only Boarding form}}, fill it out and send it back to <govroam@jisc.ac.uk>+  - Download the {{ :public:20180820_visited_boarding_v3.0_gov012.docx |Visited Only Boarding form}}, fill it out and send it back to <govroam@jisc.ac.uk>
-  - Have your Director of IT (or someone suitably senior) write a brief letter of authorisation along the lines of+  - Have your Director of IT (or someone suitably senior) write a brief letter of authorisation, on corporate headed paper, along the lines of
 <code> <code>
 "Dear Sir/Madam, "Dear Sir/Madam,
Line 165: Line 151:
  
 A: A:
-  - Gather the details of their RADIUS server(s), realm(s) and a technical contact. This would include IP address(es)/hostname(s), non standard ports, any load balancing and whether they support Status Server. +  - For each site gather the details of their RADIUS server(s), realm(s) and a technical contact. This would include IP address(es)/hostname(s), non standard ports, any load balancing and whether they support Status Server. 
- +  - Configure your RRPS for the abovegenerating suitable shared secrets. The configuration should, obviously, include the client/server information to allow communications between RADIUS servers and suitable routing of the realms.
-  - Configure your Federation RADIUS servers for the above generating suitable shared secrets. The configuration should, obviously, include the client/server information to allow communications between RADIUS servers and suitable routing of the realms. +
   - Share these shared secrets and the details of your RADIUS server with the site technical contact, securely.   - Share these shared secrets and the details of your RADIUS server with the site technical contact, securely.
- 
   - The site should then configure their end.   - The site should then configure their end.
- +  RFO should then provide Jisc with the following information about the site (This is all put onto our wiki and made available to all sites for troubleshooting, incident and audit purposes):
-  SWAN should then provide Jisc with the following information about the site: +
     - Realm(s)     - Realm(s)
     - Name and location of the site     - Name and location of the site
     - Name, position, email and phone number of the technical contact for the site     - Name, position, email and phone number of the technical contact for the site
-    -Help desk (website, phone number, openings times) for the site. +    - Help desk (website, phone number, openings times) for the site. 
- +  - The site can then test outgoing connectivity either using credentials supplied by the Federation, or the ones provided by Jisc. Incoming connectivity can be tested using the website provided by Jisc with local site credentials.
-    (This is all put onto our wiki and made available to all sites for troubleshooting, incident and audit purposes). +
- +
-  - The site can then test outgoing connectivity either using credentials supplied by SWAN, or the ones provided by Jisc. Incoming connectivity can be tested using the website provided by Jisc with local site credentials. +
   - The site is provided with a login to Jisc's App site so that they can populate Govroam locations on a map.   - The site is provided with a login to Jisc's App site so that they can populate Govroam locations on a map.
  
 +This {{ :public:federationregistry.xls |spreadsheet}} can be used as a template for the information that should be collected for sending to Jisc.
public/faq.txt · Last modified: 2023/06/22 08:43 by emily_sadler

Page Tools

Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
CC Attribution-Share Alike 4.0 International Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki