Presumably university IT would have been able to provide more precise demographically identifying data than the ISP. It's unlikely the ISP was running the RADIUS server.
You're right, I hadn't considered that. Identifying individual students within public areas of the network was only possible through the schools ID system. Otherwise public access would be anyones guess as to who was using the computer.
