Re: Eduroam and Student Usage

[Bill Kyle <bill.kyle () JHU EDU>]

Jim,

At Johns Hopkins we allow everyone to use eduroam. If you log in with Hopkins’ credentials you are given an address in 
the Hopkins’ enterprise eduroam wireless network and are placed on out intranet. There we restrict access via our 
internal firewalls. Our Internet firewall allows the minimum ports in the eduroam specification. If you log into 
eduroam with non-Hopkins credentials you are given an address in our eduroam guest network. There the guest eduroam 
user has access to the Internet via our Guest firewall using the same policy of the minimum ports in the eduroam 
specification.

Sincerely,
Bill Kyle
Network Security Engineer III
Johns Hopkins Network Security
Johns Hopkins University and Medical Institutions

On Aug 26, 2014, at 11:47 AM, Pardonek, Jim <jpardonek () LUC EDU> wrote:

> I am sorry if this has been discussed before, but we have recently turned up and eduroam ssid on campus and have 
> noticed a mass exodus from our secured (with NAC) ssid over to eduroam where we are not posturing computers.  We have 
> our normal concerns such as being able to quarantine a DMCA offender or a computer with malware until we can find it 
> and get it cleaned, etc. 
>  
> If you are an eduroam school I would be interested in what you are doing do discourage or prevent students or even 
> faculty/staff from using it in lieu of the secured ssid.
>  
> I apologize for bothering the non-eduroam schools. 
>  
> Jim
>  
> James Pardonek, MS, CISSP, CEH
> Information Security Officer
> Loyola University Chicago 
> 1032 W. Sheridan Road | Chicago, IL  60660
>
> (: (773) 508-6086