Networks and authentication methods

The available networks and the authentication methods depend on the type of connection used.
The types of connection are:

Available networks

Wired Access

  • "Wired avanzato ", network without speed restrictions (permanent connection);
  • "Wired base", download speed: 8 Mbps (temporary connection).

Wi-Fi Access

For permanent connection, the available networks are:

  • "eduroam": recommended for security purposes and for the performance. Thanks to the “roaming” agreements, Politecnico di Milano’s login details can be used, apart from at the University, wherever there is a signal from the "eduroam" network (other universities or research institutions in Italy or abroad).
  • "polimi-protected": same connection profile in terms of security and performance as the "eduroam" network, but with a local value only, i.e. it is only possible to browse inside Politecnico di Milano. It can be used, for instance, when one does not intend to configure the roaming.

For temporary connections, the network used is "polimi", which offers a limited connection speed and allows authentication by being redirected to a Captive Portal. The login details that can be used are those of the University or those generated ad hoc at the time of events and conferences.

Authentication methods (for both Wi-Fi and Wired access)

For permanent connection, the authentication can take place:

    1. with certificate (TLS): secure authentication method, based on a user certificate issued by the Politecnico and installed on one’s devices.
      The initial certificate installation complexity contrasts with the practicality of configuring it once and then using it freely.

    2. with personal code and password (TTLS): secure authentication method, which employs as username/password the University’s login details and presents a Politecnico certificate in the authentication phase.
      From a security viewpoint, this method is comparable to the EAP-TLS one, although it is ultimately based on the username/password mechanism; this means that it is subject to password updating (quarterly frequency).

For temporary connection, the authentication takes place through the Captive Portal; the start of the connection is intercepted by a web page, the Captive Portal in fact, which displays a login screenshot to the user.

More information on the authentication service is found on the ICT Services website, in the section Services > Authenication and authorisation.

  Italiano    English