Contacts

NOC (Network Operations Center)

Traffic statistics

Network management

more

Fault reporting

Procedure

Trouble Ticket System

go to TTS

Other networks connections

more

Customized connectivity

more

Security

go to GARR CERT

Documents

go to Documents

FAQs

NOC Team

Meet the team

The trouble ticket system allows tracking of all interventions involving service interruptions, software/hardware updates, and maintenance of GARR equipment and lines.

Trouble tickets are issued and managed by the NOC in response to:

• Identification of an issue following an alarm generated by NOC monitoring procedures
• Identification of an issue by the NOC
• Notification from an APM (Access Port Manager) of GARR network users
• Notification from telecommunication operators

The NOC monitors the evolution of the issue and provides appropriate updates following relevant status changes. Upon completion of operations, the trouble ticket is closed, reporting details about the nature of the intervention/problem.
The responsible individuals for access to the GARR network are informed of the existence of an issue by sending an email to the APM mailing list for every opening/modification/closure of a trouble ticket.
The names of the Access Port Managers (APMs) are communicated to the NOC by the GARR Directorate.

The GARR NOC can only be directly contacted by the GARR users' Access Port Managers (APMs).

Each APM represents a single entity/institution connected to GARR and is responsible for managing the configuration of the user router through which access to GARR is established. They also interact with the NOC whenever issues arise with the connections that affect this access.

Upon request, GARR provides end-to-end connectivity services to establish direct, physical, or virtual links between two or more locations in order to extend its data centers geographically or to segregate data from specific applications and share resources transparently.

 Dedicated connectivity is a fee-based service.

Contacts

GARR NIC (Network Information Center)

statistics

Domain Name Registration for .IT

more

Domain Name Registration for .EU

more

whois

REFERENCES AND INFORMATION

more

Statistics

more

Organization data modification form

go to the form

Forms and Documentation

more

AAMS filters

more

FAQs

Go to LOCAL INTERNET REGISTRY - LIR

go to LIR

Any organization authorized to access the GARR network can request domain names from the GARR NIC

From 08/02/2011, the GARR-NIC has become a Registrar. Now, it's possible to manage the registration and maintenance procedures of ".it" domains synchronously on behalf of all entities belonging to the GARR Community.
The synchronous registration of a ".it" domain allows the GARR-NIC to complete, in real-time, both the procedures for updating already registered domains and for registering new domain names, without requiring the registering entity to send any paper documentation to the Registry

REQUEST PROCEDURE

To register a new ".it" domain name, you need to::

• To download the registration form for the request and maintenance of a domain
• Submit the registration request signed by the Legal Representative (APA) of the requesting Entity .
• The registration requests for a new '.it' domain name should be sent via email to This email address is being protected from spambots. You need JavaScript enabled to view it. and cc'd to: This email address is being protected from spambots. You need JavaScript enabled to view it.
  
  Fill in by indicating:
  • In the request, you need to provide the details of the entity requesting the domain (registrant), the administrative contact for the domain (admin), and the technical contact (APM) for the domain, such as the DNS manager.
  • Within the form, there is a section dedicated to the authoritative nameservers for the domain name zone you intend to register. You must specify the primary nameserver and at least one secondary nameserver. If you do not have a secondary nameserver, you can request to use GARR's secondary DNS service.
  • The DNS must be configured in accordance with the specifications outlined in rfc1912
  • Before initiating a request for a new .it domain, it is recommended to read the service description and, in case of any doubts, contact the GARR NIC

ADDRESSES WITH ACCENTS IN THE .IT DOMAIN

Starting from July 11, 2012, it will be possible to register domain names in the .it level even using words with accents. For example, we could use web addresses that contain words like university, health, or city. Those that are technically referred to as Internationalized Domain Names (IDNs) will be accepted, meaning accented words and non-Latin names, including characters commonly used in French such as ç or in German such as ß.

We would like to inform you that there is no initial period allowing owners of names, trademarks, and logos to benefit from any sort of pre-emption right. Therefore, the assignment will be made on a first-come, first-served basis.

For users who are part of the GARR network, the rules for requesting domain name assignments remain unchanged. The request, signed by the Legal Representative of their organization (APA), must be sent as usual to the GARR NIC service.

Any organization authorized to access the GARR network can request domain names from the GARR NIC

Before initiating a request for a new .eu domain, it is necessary to read the service description, and, in case of doubts, contact the GARR NIC

REQUEST PROCEDURE

To register a new ".eu" domain name, you need to:

• Read the documentation available in the Forms Section
• To download the registration form for the Request and Maintenance of a domain.
• The completed form with the registration request must be sent by email to This email address is being protected from spambots. You need JavaScript enabled to view it. and copied to This email address is being protected from spambots. You need JavaScript enabled to view it..
  
  Fill in by indicating:
  • Organization
  • Contact Person: First Name, Last Name
  • Phone
  • address
  • Valid Email Address. A valid email address is important, being the only means through which to contact you: it will be used as a communication tool. EURid reserves the right to revoke a domain name if not accompanied by a valid email address.
• Registrations are made on a "first come, first served" basis, meaning that the Registry processes the registration of a domain name based on the first request received. The registration of a .eu domain name lasts for one year. Unless otherwise notified in advance by EURid through GARR-NIC, the domain name will be renewed upon its expiry.
• A domain name must be unique. To check the availability of a name, use the WHOIS search tool .
• Domain names must meet certain technical requirements:
  • at least 2 characters between 'a' and 'z'
  • numbers from '0' to '9' and the hyphen '-'
  • a maximum of 63 characters
  • must not begin or end with a hyphen
  • cannot contain a hyphen '-' in the third and fourth position.

In accordance with EU Regulation 733/2002 and CE Regulation 874/2004, certain names cannot be registered, and others are reserved for use by EU institutions or the governments of member states, EEA countries, and candidate countries.

The ability to use special Latin characters, as well as characters from the Greek and Cyrillic alphabets (without mixing different alphabets) for registering domain names under the .eu extension in Latin was introduced in December 2009. In 2016, EURid introduced the .eu extension in Cyrillic (.ею), and in 2019, the .eu extension in Greek (.ευ). With the introduction of these two new extensions, a rule was implemented stating that the alphabet used for the .eu extension must match the alphabet used for the domain name (latin.latin, cyrillic.cyrillic, and greek.greek).

For more information about .eu IDN domains, please visit these links:

EURid's Timeline

Domain names (IDNs)

TERMS AND CONDITIONS FOR REGISTRATION

At the time of registering a domain name, it is necessary to consent to the terms and conditions for end-users. This includes being bound to an extrajudicial resolution of disputes if a third-party claimant with recognized rights to the domain name alleges that your registration was made for speculative or abusive purposes. GARR-NIC will submit these conditions to you at the time of registration for formal signature. Non-compliance with these conditions may result in the loss of the domain name.

UPDATE OF THE NAME SERVER

our domain name will be active only after the EURid name server is updated. The update is performed five times a day. Of course, this will be possible only if GARR-NIC has also made the necessary changes.

WHOIS

Once registered, your domain name will be immediately stored in the WHOIS database. Some of your data will be publicly available through the WHOIS lookup function, which allows interested parties to find out who owns a specific domain name or associated website. Of course, the WHOIS database will be subject to restrictions to prevent misuse and comply with data protection requirements. Anyone accessing information through WHOIS will be subject to a disclaimer, which essentially states that the information cannot be used for commercial purposes.

GARR, for its institutional purposes, is the holder of the authorization granted by the Ministry of Economic Development to operate as the manager of the public network dedicated to the Italian academic and research community.

For this reason, it is subject to the provisions of the State Customs and Monopoly Agency, which require the inhibition of domain names related to unauthorized websites offering online gambling or tobacco and inhalation liquid products
The inhibition provisions are indeed an obligation for the entities holding the authorization granted by the Ministry of Economic Development to operate as managers of a public network.

The national list of companies authorized to provide electronic communication services to the public is available on the website of the Ministry of Economic Development.

WEBSITES SUBJECT TO INHIBITION

The list of websites subject to inhibition is available on the website of the Customs and Monopolies Agency, in the Monopolies section.

Customs and Monopolies Agency website

• Web Link IANA
  The Internet Assigned Numbers Authority (IANA) is responsible for the global coordination of the DNS Root, IP addressing, and other Internet protocol resources
• Web Link ICANN
  To reach another person on the Internet you have to type an address into your computer - a name or a number. That address has to be unique so computers know where to find each other. ICANN coordinates these unique identifiers across the world. Without that coordination we wouldn't have one global Internet.
• Web Link CENTR
  CENTR is an association of Internet Country Code Top Level Domain Registries such as .uk in the United Kingdom and .es in Spain. Full Membership is open to organisations, corporate bodies or individuals that operate a country code top level domain registry.
• Web Link Registro.it
  The Registry is the registry of .it Internet domains, the Internet plate of Italy. In December 1987, IANA (Internet Assigned Numbers Authority) assigned the management of .it to the National Research Council (Cnr) arrow in virtue of the technical and scientific expertise gained by its researchers, among the first in Europe to adopt the IP protocol. Thus, the .it Registry was born, which today is based at the Institute of Informatics and Telematics of the Cnr in Pisa.
• Web Link Archivio RFC
  Funded by the Internet Society to edit and publish RFCs online. The RFC Editor maintains the master repository of RFCs as well as RFC meta-data, which can be searched online. The search results include the meta-data, links to the RFC text itself, and links to any errata.
• Web Link GARR LIR
  The GARR-LIR (Local Internet Registry) is the service responsible for managing the allocation of IPv4 and IPv6 addresses for entities within the GARR community.

source: GARR annual report 2023 

Support and Contacts

GARR CS (Certification Service)

statistics

Types of Certificates Issued

more

Server Certificates

more

Personal certificates

more

Documents

go to documents

SECTIGO membership

Download the forms

GARR participates in the Trusted Certificate Service (TCS)M promoted by Géant for the benefit of European research networks.

Through this service, GARR provides its community with digital x.509 certificates (also available in e-Science version, valid for authentication on GRID resources) issued by one of the major commercial Certification Authorities: Sectigo Limited, automatically recognized by nearly all existing web browsers.

As of May 1, 2020, the service provider for TCS is Certification Authority Sectigo Limited.

Guide for TCS Administrators

For generating certificate requests (CSRs), refer to the instructions provided by GARRCS

Guidelines

For submitting certificate requests, refer to the Registration Authority Officers at your organization.

Organization's Administrators

REFERENCES

• DCV Methods for Domain Validation
• Sectigo SCM Manual in English
• Sectigo Service Status Summary Page

Users can request and renew personal and personal grid certificates by accessing the dedicated Sectigo website for GARR. You will need to authenticate using your organization's IDEM credentials.

From the request form, you can select the following types of certificates:

• GÉANT Personal email signing and encryption
  Personal certificates issued by a public CA for email signing and encryption purposes. Not suitable for document signing and client authentication.
• GÉANT Personal Authentication
  Personal certificates issued by a private CA for use in grid/IGTF environments and for client authentication. Not suitable for email signing and encryption, or for document signing.
• GÉANT Personal Automated Authentication Personal robot certificates issued by a private CA for use in software agents authenticating on behalf of the user (grid/IGTF environment). Not suitable for email signing and encryption, or for document signing.

Request a personal certificate

Entities affiliated with the IDEM Federation can activate the service for their users by following the configuration instructions:

SAML Configuration Instructions

Follow the tutorials for requesting personal certificates on Sectigo

openssl req -newkey rsa:2048 -keyout nome_cognome-key.pem -out nome_cognome-csr.pem -subj "/CN=Nome Cognome"

openssl pkcs12 -export -in mario_rossi.crt -inkey private.key -out mioCertificato.p12

Personal TCS certificates can only be issued to members of organizations affiliated with IDEM and enabled for the service

OpensslIt is software available for Linux, macOS, and Windows systems.

source: GARR annual report 2023 

Contacts

IDP in the Cloud (Identity as a Service)

idp in the cloud Portal

Who is IDP in the Cloud designed for?

more

A SECURE and easy-to-use service

more

How to apply for the service?

more

IDP in the Cloud portal

go to the portal

FAQs

IDEM service website

go to the website

IdP in the Cloud is the Identity as a Service (IDaaS) solution for organizations within the GARR community, designed to comply with the IDEM Federation and eduGAIN Interfederation standards. This service provides secure access to thousands of federated web resources.

By subscribing to the service, institutions can significantly reduce the costs associated with federated access, particularly the integration of their digital identity management systems with IDEM and eduGAIN.

The service is tailored for organizations with limited resources, small IT staff, or smaller, partitioned communities (such as IRCCS, Scientific Institutes for Research, Hospitalization, and Healthcare). Currently, it serves 41 institutions, supporting around 3,500 users and handling 8,000 authentications annually.
While these may not seem like large numbers in absolute terms, IdP in the Cloud is vital for enabling these institutions to access a wide range of GARR services (Filesender, GARR Cloud, GARR Meet, SCARR, GINS), research services, bibliographic resource reservation systems (such as Nilde), scientific journals, and more.

SIMPLE
Immediate activation of the IdP even without specialized skills in Identity & Access Management technologies.

FAST
Activation and deactivation of users, on-premise and cloud applications, and access from any device, including mobile.

SECURE
Ensuring the integrity of access for each user, utilizing security standards (SAML), and complying with IDEM and eduGAIN requirements.

UNIFIES ACCESS
Provides access to hundreds of selected and approved applications by the organization.

SECURES EVERY DEVICE
Ensures secure access from the office, laboratory, home, and on the go.

APPLIES ACCESS POLICIES
Defines roles, privileges, assurance levels, and strengthened authentication contexts.

SIMPLIFIES REPORTING
Provides easy statistics on who accessed what.

To activate the IdP in the Cloud service, you can contact the IDEM service at idem-help@garr.it.

Your IdP in the Cloud account allows you to access all federated resources registered within the IDEM Federation and all resources in the eduGAIN inter-federation.

Note: Access for end users may be subject to agreements or contracts between your institution and the resource provider. To find out if an agreement has been established for accessing a specific resource, please contact your institution's Identity Provider administrator. Refer to the IDEM Identity Services page for a list of contacts.

Contacts

eduVPN

what is a VPN?

more

eduVPN for researchers

more

Download the eduVPN client app

download eduVPN

eduVPN for institutions

more

An international community project

more

A VPN, or Virtual Private Network, is a tool that establishes a secure connection between a user’s device—such as a computer, tablet, or smartphone—and a remote server over the internet. By using a VPN, all transmitted data is encrypted, making it unreadable to anyone attempting to intercept it. This is especially useful when browsing on public networks (like Wi-Fi in airports, malls, or cafes), where data is more exposed. A VPN also hides the user’s IP address, adding an extra layer of privacy and security. This process safeguards browsing activity, ensuring that data remains private and protected from hackers or anyone attempting to track online behavior.

eduVPN is a service designed for students, faculty, and researchers who can easily access trusted networks (global research networks) using their IDEM credentials provided by their institution, avoiding the need to connect to public Wi-Fi hotspots.

A VPN is especially useful for the education and research community and offers several advantages.

Protection on public and unsecured networks: When studying or conducting research off-campus, many people rely on public Wi-Fi networks in places like libraries, cafes, or airports, which are often vulnerable to cyber attacks. A VPN helps protect personal and research data while browsing, ensuring that sensitive information and login credentials are encrypted and protected from potential interception.

Unrestricted access to international resources: Certain research tools and educational content may only be accessible from specific regions. A VPN can help bypass these geographic restrictions, allowing students and researchers to access international academic resources and relevant information, enhancing the effectiveness and quality of their work.

Secure collaboration and data transfer: Conducting research and collaborating often requires sharing files or discussing data and findings. A VPN ensures these communications and data transfers are secure, providing added peace of mind for those handling sensitive projects requiring discretion and confidentiality.

International mobility: For researchers in particular, a VPN allows access to the same university resources while traveling, enabling them to work securely and continuously even off-campus and during international mobility periods

download eduVPN

With eduVPN, organizations connected to the GARR network have the opportunity to provide their employees, students, and researchers with access to a private corporate network for accessing resources located within the local network.

To use the service in “Institute Access” mode and ensure access to the corporate VPN, the organization must handle the configuration procedures on its own.

eduVPN was established in 2015 as a project of the Dutch research network SURF, which continues to play a leading role in the development of the service.

Within the international community, the service has expanded widely to over twenty countries.