Berkeley-IoT FAQs

What is Berkeley-IoT?

The Berkeley-IoT Wi-Fi network provides service for Internet of Things (IoT) devices as well as any other devices that require a pre-shared key instead of a username and password. IoT provides Wi-Fi to devices that don’t support eduroam.

• Uses a passphrase like Wi-Fi at home.
• Provides the same service as eduroam
• Can replace a physical ethernet cable in most situations

What is the difference between Berkeley-IoT and eduroam and when should it be used?

The Berkeley-IoT network provides the same network access as eduroam, our primary Wi-Fi network, to devices that do not support username and password based Wi-Fi networks. In general it should be used when a device is unable to join eduroam, but a detailed description of the UC Berkeley Wi-Fi networks and their users can be found on the Technology Wi-Fi information page.

Berkeley-IoT is available to everyone who uses eduroam: Faculty, staff, students, associates, and special purpose accounts (SPA)

Can I use Berkeley-IoT for P3 and P4 data?

The standard Berkeley-IoT Wi-Fi service by itself is not appropriate for protection level 3 and 4 data. Devices requiring access to, or transmission of, P3 and P4 data must use the bSecure Remote Access Service (GlobalProtect) in addition to eduroam to ensure compliance with data protection requirements. 

If a department requires the use of Wi-Fi networking for their P3 or P4 data please open an Other Data Networking Service TelCat Request to request a consultation.

Why is Berkeley-IoT harder to use than my home network?

Home Wi-Fi networks are designed to be as simple as possible for people to use: one password you share with your family and friends. Every device uses that one password to quickly and easily connect.

The Berkeley-IoT Wi-Fi network is an enterprise network that has been made simpler to use, but it is still an enterprise network that requires specific settings. Berkeley-IoT needs to verify individual devices instead of allowing everything and everyone to connect.

We've made it as easy as we can, but unfortunately, it can't be as easy as at home.

Why do I have to disable private and random MAC security?

The Berkeley-IoT Wi-Fi network uses the devices wireless MAC address to identify it on the network. This is how the passwords are mapped to devices. If private, random, or MAC security is enabled the device changes its MAC address every time it connects. Changing the MAC keeps Berkeley-IoT from being able to identify the device.

Why does every Berkeley-IoT device have a different password?

When using Berkeley-IoT Wi-Fi, each device is like a separate user, and all users need to have passwords to connect to and use services at UC Berkeley.

Can I use a SPA account to manage my Berkeley-IoT devices?

Just like with eduroam, if your department, team, or lab has shared devices you can use a SPA, or Special Purpose Account, to manage access. This allows device accounts to be managed by more than one person and is better than having everything under an individual account. Learn more about SPA accounts on the CalNet website: calnet.berkeley.edu.

Why does my device tell me UPnP Not Successful?

UPnP is something home networks do to make it easier for the internet to talk to your device. UPnP is needed for things like multiplayer games on PlayStation and XBox so the game systems can talk to each other over the internet. Enterprise networks like Berkeley-IoT do not support UPnP, but you can follow these steps to get your device working:

• Edit the device that needs UPnP on the Berkeley-IoT device management page. On the edit window there is a checkbox for "Public IP?" select it and click “Save Changes.”
• The next time your device connects to Berkeley-IoT it will be given a different type of internet address, one that doesn't need UPnP. If your device is already connected you will need to reboot it so it can reconnect and get the new address.

Please be aware that your device is now on the internet without any protections, so be sure it's up to date and if it has a firewall it is enabled. 

My Berkeley-IoT devices disappeared

If you've changed your CalNet username the Wi-Fi system will view you as a new user with all of your devices still associated with your old username. Your devices will continue to work for some time like this, but you will be unable to modify (rename, delete, change settings) them in any way until they are reassigned to your new username.

If this is what you've run into please contact the service desk and ask for your Berkeley-IoT devices to be ported from your old username to your new username.