<!DOCTYPE HTML> <html lang="" > <head> <meta charset="UTF-8"> <meta content="text/html; charset=utf-8" http-equiv="Content-Type"> <title>Obtaining a certificate 路 eduroam at CERN</title> <meta http-equiv="X-UA-Compatible" content="IE=edge" /> <meta name="description" content=""> <meta name="generator" content="GitBook 3.2.2"> <meta name="author" content="Quentin Barrand"> <link rel="stylesheet" href="../gitbook/style.css"> <link rel="stylesheet" href="../gitbook/gitbook-plugin-alerts/style.css"> <link rel="stylesheet" href="../gitbook/gitbook-plugin-terminal/plugin.css"> <link rel="stylesheet" href="../gitbook/gitbook-plugin-highlight/website.css"> <link rel="stylesheet" href="../gitbook/gitbook-plugin-search/search.css"> <link rel="stylesheet" href="../gitbook/gitbook-plugin-fontsettings/website.css"> <meta name="HandheldFriendly" content="true"/> <meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=no"> <meta name="apple-mobile-web-app-capable" content="yes"> <meta name="apple-mobile-web-app-status-bar-style" content="black"> <link rel="apple-touch-icon-precomposed" sizes="152x152" href="../gitbook/images/apple-touch-icon-precomposed-152.png"> <link rel="shortcut icon" href="../gitbook/images/favicon.ico" type="image/x-icon"> <link rel="next" href="generic.html" /> <link rel="prev" href="../" /> </head> <body> <div class="book"> <div class="book-summary"> <div id="book-search-input" role="search"> <input type="text" placeholder="Type to search" /> </div> <nav role="navigation"> <ul class="summary"> <li class="chapter " data-level="1.1" data-path="../"> <a href="../"> Introduction </a> </li> <li class="header">CERN users</li> <li class="chapter active" data-level="2.1" data-path="download_certificate.html"> <a href="download_certificate.html"> Obtaining a certificate </a> </li> <li class="chapter " data-level="2.2" data-path="generic.html"> <a href="generic.html"> Configuring your device </a> <ul class="articles"> <li class="chapter " data-level="2.2.1" data-path="windows.html"> <a href="windows.html"> Windows </a> <ul class="articles"> <li class="chapter " data-level="2.2.1.1" data-path="windows/7.html"> <a href="windows/7.html"> Windows 7 </a> </li> <li class="chapter " data-level="2.2.1.2" data-path="windows/8.html"> <a href="windows/8.html"> Windows 8 </a> </li> <li class="chapter " data-level="2.2.1.3" data-path="windows/10.html"> <a href="windows/10.html"> Windows 10 </a> </li> <li class="chapter " data-level="2.2.1.4" data-path="windows/11.html"> <a href="windows/11.html"> Windows 11 </a> </li> </ul> </li> <li class="chapter " data-level="2.2.2" data-path="apple.html"> <a href="apple.html"> Apple </a> <ul class="articles"> <li class="chapter " data-level="2.2.2.1" data-path="apple/macos.html"> <a href="apple/macos.html"> macOS </a> </li> <li class="chapter " data-level="2.2.2.2" data-path="apple/ipad.html"> <a href="apple/ipad.html"> iPad </a> </li> <li class="chapter " data-level="2.2.2.3" data-path="apple/iphone.html"> <a href="apple/iphone.html"> iPhone </a> </li> </ul> </li> <li class="chapter " data-level="2.2.3" data-path="android.html"> <a href="android.html"> Android </a> <ul class="articles"> <li class="chapter " data-level="2.2.3.1" data-path="android/android10.html"> <a href="android/android10.html"> Android 10 </a> </li> <li class="chapter " data-level="2.2.3.2" data-path="android/android11.html"> <a href="android/android11.html"> Android 11 </a> </li> <li class="chapter " data-level="2.2.3.3" data-path="android/android13.html"> <a href="android/android13.html"> Android 13 </a> </li> <li class="chapter " data-level="2.2.3.4" data-path="android/android14.html"> <a href="android/android14.html"> Android 14 </a> </li> </ul> </li> <li class="chapter " data-level="2.2.4" data-path="linux.html"> <a href="linux.html"> Linux </a> <ul class="articles"> <li class="chapter " data-level="2.2.4.1" data-path="linux/rhel.html"> <a href="linux/rhel.html"> CentOS / Fedora </a> </li> <li class="chapter " data-level="2.2.4.2" data-path="linux/ubuntu.html"> <a href="linux/ubuntu.html"> Ubuntu </a> </li> <li class="chapter " data-level="2.2.4.3" data-path="linux/wpa_supplicant.html"> <a href="linux/wpa_supplicant.html"> All distributions (not recommended) </a> </li> </ul> </li> </ul> </li> <li class="header">Visiting users</li> <li class="chapter " data-level="3.1" data-path="../visiting_users/accepting_oc5.html"> <a href="../visiting_users/accepting_oc5.html"> Accepting the OC5 rules </a> </li> <li class="divider"></li> <li> <a href="https://www.gitbook.com" target="blank" class="gitbook-link"> Published with GitBook </a> </li> </ul> </nav> </div> <div class="book-body"> <div class="body-inner"> <div class="book-header" role="navigation"> <!-- Title --> <h1> <i class="fa fa-circle-o-notch fa-spin"></i> <a href=".." >Obtaining a certificate</a> </h1> </div> <div class="page-wrapper" tabindex="-1" role="main"> <div class="page-inner"> <div id="book-search-results"> <div class="search-noresults"> <section class="normal markdown-section"> <h1 id="obtaining-a-certificate">Obtaining a certificate</h1> <p>CERN uses certificates to authenticate its users, both on its campus or during roaming.</p> <ul> <li>Certificates are personal and automatically generated by the <a href="https://cern.ch/ca/" target="_blank">CERN Certification Authority (CA)</a>.</li> <li>User can generate as many eduroam certificates as he / she wants.</li> <li>A certificate can be configured and used on several devices at the same time.</li> <li>Each certificate has a lifetime of two years; before it expires, you will receive an email explaining how to renew it.</li> </ul> <p>The tutorial on this page will show you how you can download your own private certificate.</p> <blockquote> <p><strong>[info] Apple users can skip this step</strong></p> <p>The CERN CA website will conveniently generate a Configuration Profile that includes all the certificates and settings for macOS and iOS devices. Please head to the appropriate section to learn more.</p> </blockquote> <h2 id="downloading-the-cern-ca-root-2-certificate">Downloading the CERN CA Root 2 certificate</h2> <p>Please right-click on <a href="https://cafiles.cern.ch/cafiles/certificates/ CERN%20Root%20Certification%20Authority%202.crt" target="_blank">this link</a>, and download the <code>CERN Root Certification Authority 2.crt</code> file somewhere on your computer.</p> <h2 id="generating-a-new-eduroam-certificate">Generating a new eduroam certificate</h2> <p>Please head to the <a href="https://cern.ch/ca/" target="_blank">CERN CA website</a> and click on the <em>New EduRoam certificate</em> link under the <em>EduRoam</em> section. You need to be logged in.</p> <p><img src="images/cernca_1.png" alt="CERN CA webpage"></p> <p>Your eduroam certificate will be automatically generated and ready to be downloaded. Right-click on the <em>New EduRoam Certificate</em> button and download the <code>eduroam.p12</code> file somewhere on your computer.</p> <p><img src="images/cernca_2.png" alt="eduroam certificate generation webpage"></p> <p>The certificate is automatically encrypted during its creation, so please make sure you <strong>note down the certificate password</strong> as your device may ask for it when you configure your system.</p> </section> </div> <div class="search-results"> <div class="has-results"> <h1 class="search-results-title"><span class='search-results-count'></span> results matching "<span class='search-query'></span>"</h1> <ul class="search-results-list"></ul> </div> <div class="no-results"> <h1 class="search-results-title">No results matching "<span class='search-query'></span>"</h1> </div> </div> </div> </div> </div> </div> <a href="../" class="navigation navigation-prev " aria-label="Previous page: Introduction"> <i class="fa fa-angle-left"></i> </a> <a href="generic.html" class="navigation navigation-next " aria-label="Next page: Configuring your device"> <i class="fa fa-angle-right"></i> </a> </div> <script> var gitbook = gitbook || []; gitbook.push(function() { gitbook.page.hasChanged({"page":{"title":"Obtaining a certificate","level":"2.1","depth":1,"next":{"title":"Configuring your device","level":"2.2","depth":1,"path":"cern_users/generic.md","ref":"cern_users/generic.md","articles":[{"title":"Windows","level":"2.2.1","depth":2,"path":"cern_users/windows.md","ref":"cern_users/windows.md","articles":[{"title":"Windows 7","level":"2.2.1.1","depth":3,"path":"cern_users/windows/7.md","ref":"cern_users/windows/7.md","articles":[]},{"title":"Windows 8","level":"2.2.1.2","depth":3,"path":"cern_users/windows/8.md","ref":"cern_users/windows/8.md","articles":[]},{"title":"Windows 10","level":"2.2.1.3","depth":3,"path":"cern_users/windows/10.md","ref":"cern_users/windows/10.md","articles":[]},{"title":"Windows 11","level":"2.2.1.4","depth":3,"path":"cern_users/windows/11.md","ref":"cern_users/windows/11.md","articles":[]}]},{"title":"Apple","level":"2.2.2","depth":2,"path":"cern_users/apple.md","ref":"cern_users/apple.md","articles":[{"title":"macOS","level":"2.2.2.1","depth":3,"path":"cern_users/apple/macos.md","ref":"cern_users/apple/macos.md","articles":[]},{"title":"iPad","level":"2.2.2.2","depth":3,"path":"cern_users/apple/ipad.md","ref":"cern_users/apple/ipad.md","articles":[]},{"title":"iPhone","level":"2.2.2.3","depth":3,"path":"cern_users/apple/iphone.md","ref":"cern_users/apple/iphone.md","articles":[]}]},{"title":"Android","level":"2.2.3","depth":2,"path":"cern_users/android.md","ref":"cern_users/android.md","articles":[{"title":"Android 10","level":"2.2.3.1","depth":3,"path":"cern_users/android/android10.md","ref":"cern_users/android/android10.md","articles":[]},{"title":"Android 11","level":"2.2.3.2","depth":3,"path":"cern_users/android/android11.md","ref":"cern_users/android/android11.md","articles":[]},{"title":"Android 13","level":"2.2.3.3","depth":3,"path":"cern_users/android/android13.md","ref":"cern_users/android/android13.md","articles":[]},{"title":"Android 14","level":"2.2.3.4","depth":3,"path":"cern_users/android/android14.md","ref":"cern_users/android/android14.md","articles":[]}]},{"title":"Linux","level":"2.2.4","depth":2,"path":"cern_users/linux.md","ref":"cern_users/linux.md","articles":[{"title":"CentOS / Fedora","level":"2.2.4.1","depth":3,"path":"cern_users/linux/rhel.md","ref":"cern_users/linux/rhel.md","articles":[]},{"title":"Ubuntu","level":"2.2.4.2","depth":3,"path":"cern_users/linux/ubuntu.md","ref":"cern_users/linux/ubuntu.md","articles":[]},{"title":"All distributions (not recommended)","level":"2.2.4.3","depth":3,"path":"cern_users/linux/wpa_supplicant.md","ref":"cern_users/linux/wpa_supplicant.md","articles":[]}]}]},"previous":{"title":"Introduction","level":"1.1","depth":1,"path":"README.md","ref":"README.md","articles":[]},"dir":"ltr"},"config":{"plugins":["alerts","terminal"],"styles":{"website":"styles/website.css","pdf":"styles/pdf.css","epub":"styles/epub.css","mobi":"styles/mobi.css","ebook":"styles/ebook.css","print":"styles/print.css"},"pluginsConfig":{"alerts":{},"terminal":{"copyButtons":true,"fade":true,"style":"flat"},"highlight":{},"search":{},"lunr":{"maxIndexSize":1000000,"ignoreSpecialCharacters":false},"sharing":{"facebook":true,"twitter":true,"google":false,"weibo":false,"instapaper":false,"vk":false,"all":["facebook","google","twitter","weibo","instapaper"]},"fontsettings":{"theme":"white","family":"sans","size":2},"theme-default":{"styles":{"website":"styles/website.css","pdf":"styles/pdf.css","epub":"styles/epub.css","mobi":"styles/mobi.css","ebook":"styles/ebook.css","print":"styles/print.css"},"showLevel":false}},"theme":"default","author":"Quentin Barrand","pdf":{"pageNumbers":true,"fontSize":12,"fontFamily":"Arial","paperSize":"a4","chapterMark":"pagebreak","pageBreaksBefore":"/","margin":{"right":62,"left":62,"top":56,"bottom":56}},"structure":{"langs":"LANGS.md","readme":"README.md","glossary":"GLOSSARY.md","summary":"SUMMARY.md"},"variables":{"cern_ca_website":"https://cern.ch/ca/","cern_ca_cert_filename":"CERN Root Certification Authority 2.crt"},"title":"eduroam at CERN","links":{"contribute":"https://gitlab.cern.ch/network/eduroam-docs","sharing":{"google":null,"facebook":null,"twitter":null}},"gitbook":"*"},"file":{"path":"cern_users/download_certificate.md","mtime":"2025-01-09T16:57:14.251Z","type":"markdown"},"gitbook":{"version":"3.2.2","time":"2025-01-09T16:57:19.183Z"},"basePath":"..","book":{"language":""}}); }); </script> </div> <script src="../gitbook/gitbook.js"></script> <script src="../gitbook/theme.js"></script> <script src="../gitbook/gitbook-plugin-alerts/plugin.js"></script> <script src="../gitbook/gitbook-plugin-terminal/plugin.js"></script> <script src="../gitbook/gitbook-plugin-search/search-engine.js"></script> <script src="../gitbook/gitbook-plugin-search/search.js"></script> <script src="../gitbook/gitbook-plugin-lunr/lunr.min.js"></script> <script src="../gitbook/gitbook-plugin-lunr/search-lunr.js"></script> <script src="../gitbook/gitbook-plugin-sharing/buttons.js"></script> <script src="../gitbook/gitbook-plugin-fontsettings/fontsettings.js"></script> </body> </html>