FAQ - eduroam (WiFi) (EN)
The login data are to be used only for one device. In case the user name and/or the password have been forgotten or compromised, new login data can be generated via the eduroam Devicemanager. For this reason saving of the login data is not necessary.
The login data cannot be changed the way you would like, because due to safety reasons it is necessary to differentiate them from other login data used for IT-services.
Because of wide spread and easy accessable information about the way the eduroam log-in works, an "Evil-Twin" attack is possible. This means that an attacker organises a prepared access point to search for eduroam login data. Mobile devices such as smartphones are especially endangered as they are constantly searching for familiar WIFI connections and connect to them.
If the WIFI login data were not differentiated from other login data, it would be possible for the attacker, in case his attack had been successful, to get access to other IT-services, e.g. RWTHonline. With the help of the login data valid for WIFI access only such attacks may be prevented.
In case the login data have been compomised or the user name and/or passwort have been forgotten, new login data for the device can be generated via eduroam device manager.