Skip to Content.
Sympa Menu

cat-users - RE: [[cat-users]] Strange behaviour in geteduroam (Windows version)

cat-users AT lists.geant.org

Subject: The mailing list for users of the eduroam Configuration Assistant Tool (CAT)

List archive

RE: [[cat-users]] Strange behaviour in geteduroam (Windows version)


Chronological Thread 
  • From: Carlos Maqueda Aroca <carlos.maqueda AT externo.uam.es>
  • To: Paul Dekkers <paul.dekkers AT surf.nl>
  • Cc: "cat-users AT lists.geant.org" <cat-users AT lists.geant.org>
  • Subject: RE: [[cat-users]] Strange behaviour in geteduroam (Windows version)
  • Date: Tue, 18 Jun 2024 08:01:02 +0000
  • Accept-language: es-ES, en-US
  • Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=externo.uam.es; dmarc=pass action=none header.from=externo.uam.es; dkim=pass header.d=externo.uam.es; arc=none
  • Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=LkyEyo8LVeRCzfbJaHk9wGElnWwkrK0c+b82374UZmY=; b=A7cTDphyJabNiHKyYaWx80ZEUZeVKf8VfEanuhWi+APRWG5XGIuNxBbv93J8UUbmn14LHtpQmIen1rcsH/hvS2RvC0Oredbrkr/GtG3zil1i1/coGh058w8TxGloiCq7kclQEq6UbBS4dCPHf7NYyYyqN+T+i87E5navvi9fT0M+Z+T4MnC75YKOBN3zyNqPj1pBb1ZSOCYm70Zz8qUGuPyefLzeI9BSwI9LY0ZxzEnkF1Jrddjwcj5m47DBubNP6kzAwlcWVfEI3yBc7fcHbc+ceUqs6UTbt8I0N4Q9GgfR/EOeMBPpfTGsyXZRyn9/IBDzphZqIrw1Hp4ha1tn6w==
  • Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=V0NPH977ca2DAuexaAqbuOemn+KoMgQ4PNr8B5E/BFAtsNdqX+fnrTDrwUVKggBZwrmCqxXCqdJ+6dgtJoKV+yjjUryVlrmxqUjh63hcdGDXs6g8yhxwnfjvSgV+Zdt8tef4J14NuhwJg7ngWuXWv8paBQAhuauA5b/nEzfqvdGjkex8zz/xHU5SY4eC3yMmDlpZWJJwGch1U1VKaco4Hv4cRNd6si6iqxdi4rlpRIemSWB/qRAFBgbjegclX6DfBmqdQ72vOU9oPNbsJ/b1gD9vpv4Tnqzupa8JSSi/CCKKSlNeVRChEXZpM8IxiDc2j8x5be7QRiE3a5YYNUcmeQ==
  • Authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=externo.uam.es;

Hi Paul, thanks for your reply.

 

About the private CA, we agree that the user must be informed before installation in the initial step, once the institution and the profile to be installed have been selected, the message appears informing that the defined certificate is going to be installed.

 

But the problem we are reporting is that in the step where you enter the credentials, when you click on next, the message of the screenshot I attached appears, is that the application itself informs if you want to uninstall the certificate that in the previous step had been authorised to install, this is the reason we are reporting.

 

If you click on No, the process continues, if you click on Yes, the message from the initial step appears again informing you that the certificate is going to be installed.

 

This can be confusing for the end user.

 

Regards.

 

Carlos Maqueda Aroca
Unidad Técnica de Comunicaciones

Tecnologías de la Información
Universidad Autónoma de Madrid • Campus de Cantoblanco
c/ Fco Tomás y Valiente nº 11. Edificio B EPS, despacho TI-204 - 28049, Madrid
Tel.: 91 497 50 42 – carlos.maqueda AT externo.uam.es - www.uam.es

LinkedIn | Twitter | Facebook | Youtube
¿Eres de la Autónoma? 
Hazte AlumniUAM

https://www.uam.es/id/firma/hojita.pngAntes de imprimir este correo piense si es necesario. Cuidemos el medioambiente

 

 

De: Paul Dekkers <paul.dekkers AT surf.nl>
Enviado el: lunes, 17 de junio de 2024 14:44
Para: Carlos Maqueda Aroca <carlos.maqueda AT externo.uam.es>
CC: cat-users AT lists.geant.org
Asunto: Re: [[cat-users]] Strange behaviour in geteduroam (Windows version)

 

Hi,

There are no new steps on installation of a server/CA certificate, in fact, we removed this prompt if the CA was already installed/known on the system. It looks like you're using a private CA for your RADIUS server, in which case it will indeed prompt you to install it. The older version also did that (though I'm not sure what previous version you documented). This is a warning that Windows provides (and rightfully so, the private CA can be abused for other purposes, which is why I myself like to go with a public CA for the RADIUS server - but that's a personal preference and the considerations, pros and cons to both can be found online).

There are a lot of fixes in the new version, but for users with non-psuedo accounts (so account that are not using EAP-TLS) there is one bug in that we don't store the ID properly of the IdP from the discovery. This is a known bug, and caused the repair/reauthenticate buttons to fail. Considering most of the users of the geteduroam Apps are on pseudo-accounts (they have no other option), we still felt it was worth a release, and we'd fix this on the next development cycle. This is later this month, so I expect this as a minor improvement soon.

Paul

 

On 17/06/2024 13:56, Carlos Maqueda Aroca wrote:

Hello,

 

We have not received any information to our inquiry.

 

Regards.

 

Carlos Maqueda Aroca
Unidad Técnica de Comunicaciones

Tecnologías de la Información
Universidad Autónoma de Madrid • Campus de Cantoblanco
c/ Fco Tomás y Valiente nº 11. Edificio B EPS, despacho TI-204 - 28049, Madrid
Tel.: 91 497 50 42 – carlos.maqueda AT externo.uam.es - www.uam.es

LinkedIn | Twitter | Facebook | Youtube
¿Eres de la Autónoma? 
Hazte AlumniUAM

Antes de imprimir este correo piense si es necesario. Cuidemos el medioambiente

 

 

De: cat-users-request AT lists.geant.org <cat-users-request AT lists.geant.org> En nombre de Carlos Maqueda Aroca
Enviado el: jueves, 30 de mayo de 2024 13:46
Para: cat-users AT lists.geant.org
Asunto: [[cat-users]] Strange behaviour in geteduroam (Windows version)

 

Hello to all.

 

After the update of the geteduroam application (Windows version) we have decided to update the user manuals to bring the screenshots in line with the new design of the application.

 

For this we have used a computer with the factory operating system and we have started the installation and configuration process to indicate the steps to follow in the manual.

 

Our surprise has been to see that there is a step that was not there before, forcing the user to click on install the certificate, but the problem has been when in the step of entering the credentials when clicking on connect, a message has appeared informing if you want to uninstall the certificate that had previously been installed.

 

 

 

Is this behaviour in this step of the installation correct or is it a bug?

 

We have also checked that new functionalities have been added, some of them work and some of them do not:

 

- Delete certificate and delete profile: they work.

- Update credentials: does nothing.

- Reauthenticate: unknown profile error appears.

- Repair your account: unknown profile error appears.

 

It is appreciated that the application is being developed and new functionalities are being added, but we consider that if they are in the testing phase and do not work correctly, these functionalities should not appear in the application to avoid incidents with users.

 

Regards.

 

Carlos Maqueda Aroca
Unidad Técnica de Comunicaciones

Tecnologías de la Información
Universidad Autónoma de Madrid • Campus de Cantoblanco
c/ Fco Tomás y Valiente nº 11. Edificio B EPS, despacho TI-204 - 28049, Madrid
Tel.: 91 497 50 42 – carlos.maqueda AT externo.uam.es - www.uam.es

LinkedIn | Twitter | Facebook | Youtube
¿Eres de la Autónoma? 
Hazte AlumniUAM

https://www.uam.es/id/firma/hojita.pngAntes de imprimir este correo piense si es necesario. Cuidemos el medioambiente

 

 




Archive powered by MHonArc 2.6.24.

Top of Page