Authentication to the UC Berkeley wireless networks (including eduroam) is protected by a SSL certificate similar to the way HTTPS allowed protected access to web sites.
SSL Certificates must be renewed every year due to a built-in expiration date. Because a certificate with the same name has already been accepted by user devices those users may be asked to accept the new certificate in place of the old.
Whether or not the user is prompted, or whether or not the new certificate is listed as valid, is controlled by the device manufacturer. This means bIT does not have the ability to changer if or how users are prompted for the change.
Some examples of the prompt are as follows: