Steps:
* From Navigate to the home screen, press the menu button and choose "Settings"→"Wireless & networks"→"list of Wi-Fi settings"networks.* Remove "Forget" any existing entries for eduroam.
* From the "WiFi networks" listing, click on eduroam.
* Choose PEAP as the EAP method and MSCHAPv2 as the phase two authentication mechanism.
* For the CA certificate, select "Use system certificates"
* Optionally, import the root CA from above, and select that instead for better security.
* For the domain, enter ```eduroam.nis.vt.edu```
* Enter your pid@vt.edu for the identity
* Enter "anonymous@vt.edu" for the anonymous identity
* Press "Connect".
'''TODONOTE:''' Older versions of Android certificate validation Quick and dirty options for validating do not allow not verifying the eduroam server certificate, in order from least secure to most secure: # Do not validate: you will get online, but are vulnerable to leaking your network credentials and connecting to a rouge network.# (Android 7.1+ only) Use system certificates: This will check to make sure Setting both the certificate chains back to some root CA in and the system cert store. This is significantly better than no validation, but still not very good. You may also need to specify a domain. If so, use "eduroam.nis.vt.edu" or "nis.vt.edu"# Download and import the USERTrust Root CA: detailed instructions to come. Since you are still not checking the CN, it is only marginally better than using system certificates.# Use the [https://play.google.com/store/apps/details?id=uk.ac.swansea.eduroamcat eduroam CAT] tool: this will setup the whole wireless profile and use the correct CA and verify the CN. As such, it is the preferred method. Warning, it is ugly. If you have an existing "eduroam" profile, you will need to remove it. When it prompts essential for the username and password, use <YOUR-PID>@vt.edu and protecting your network passwordcredentials. It relies on geolocation to prompt for the profile for the right school. You may need to go outside to Although older versions will get a good GPS signal. If it is able to do geo-ip (e.g., you are connected to the "VirginiaTech" SSID), it gets you close enough. NOTE: Android 11 does not allow not verifying the server certificateuse at your own risk.
==Frequently Asked Questions==
