[KBA-01050] HID firmware upgrade procedure for legacy units - Security Center | HID

Security Center | HID

[KBA-01050] HID firmware upgrade procedure for legacy units

This article explains how to upgrade the firmware on an HID legacy access control unit.


This procedure should only be attempted by an advanced user, as any errors could result in a defective or unusable unit. If assistance is required, contact the Genetecâ„¢ Technical Assistance Center.

The procedure only applies to legacy HID units. For EVO units, refer to KBA-01134.

HID recommends taking the following precautionary measures before proceeding with the upgrade:
  • Turn off the firewall on the computer used for the upgrade.
  • Make sure that the unit and the computer used for this upgrade are on a private local network, or use a crossover cable connected between them to limit network interference.
  • Have a battery backup available to power the unit during the upgrade process.
Note that after the firmware update, the credentials for accessing the unit are reset to their default values:
  • username: root
  • password: pass or btfsplk


IMPORTANT: The doors assigned to the unit being upgraded will not function during the upgrade process.
  1. Before upgrading, we recommend that you create a backup copy of the Directory database.
  2. Stop communication between the Access Manager role and the unit one of the following ways:
    • Deactivate the Access Manager role that is connected to the unit.
      NOTE: Deactivating the Access Manager causes all units to go red until the role is reactivated.
    • Change the password of the unit:
      1. In Config Tool, open the Access control task.
      2. Select the unit and click the Network tab.
      3. Change the password of the unit to an invalid one and click Apply.
      4. Telnet to the unit and restart it by typing and entering: reboot.
  3. Obtain the required firmware from Genetec Inc.
    You can find the firmware files below. For additional information on firmware limitations and known issues, refer to KBA-01137.
  4. Copy the firmware to the root drive on your computer (for example, C:\).
  5. In Windows, open a command prompt and establish an FTP session to the unit by typing and entering: ftp x.x.x.x (where x.x.x.x is the IP address of the unit).
    NOTE: If you are using Windows Vista or higher, make sure you open the command prompt using 'Run as administrator'.
  6. Connect to the unit using the root credentials.

    The default root password is pass or btfsplk

  7. Change the FTP transfer mode to binary by typing and entering: bin.
  8. Upload and perform the flashing process by typing and entering: put c:\<filename.ext> flash_all_force (where <filename.ext> is the firmware filename for the unit you are upgrading, such as V1000.img or V2000.img or E400.img).
    IMPORTANT: After flashing is complete, Telnet, FTP, and SSL features are disabled. You must log into the unit's web page and manually enable the Telnet, FTP, and SSL features for the unit to successfully return online.

  9. (Optional) After flashing is complete, HID recommends that you upgrade the EEPROM on each interface connected to the unit as follows:
    NOTE: Upgrading the EEPROM restores each interface (v100, v200 or V300) to its default settings, so you will have to reconfigure them.
    The current version of each interface is:
    • v100 : Program Version 113, EEPROM Version 110
    • v200 : Program Version 106, EEPROM Version 105
    • v300 : Program Version 107, EEPROM Version 104
    1. Open the unit's web page and go to the supplemental configuration page.
    2. On the right-hand side of the page, click the last icon ().
    3. Select all of the v100, v200, or v300 icons and click Update.
    4. Wait until all the icons turn green.

      Each interface can take up to 2 minutes to upgrade.

  10. After the upgrade is complete, telnet to the unit and restart it by typing and entering reboot.
  11. Enable connection between the Access Manager role and the unit one of the following ways:
    • If you deactivated the Access Manager role in step 2, reactivate it now.
    • If you changed the unit password in step 2, change it back to the original password.

After you finish:

If you do not receive any access granted or access denied events in Security Desk after upgrading the firmware, try rebooting the unit one more time.