About managing OSS Standard Offline locks - Security Center 5.12

Security Center Administrator Guide 5.12

Product
Security Center
Content type
Guides > Administrator guides
Version
5.12
Language
English
Last updated
2024-09-13

Access rights for offline locks are stored on card credentials. Locks that are compliant with the access control standard, OSS Standard Offline, can read the access rights on cards and interpret them in the same way. You can manage these locks by encoding the cards in Security Center.

Supported hardware

The following offline devices are certified compatible with Security Center:
NOTE: Other devices that comply with the OSS Standard Offline are supported by design.
ASSA ABLOY
  • Aperio E100 wireless escutcheon
  • Aperio C100 wireless cylinder
DOM
  • ENiQ Pro digital cylinder
  • ENiQ LoQ digital furniture lock
  • Guard Wideline digital handle
Uhlmann & Zacher
  • CX8120

About encoding cards for OSS Standard Offline

In the MIFARE DESFire configuration task in Config Tool, you can create configurations that comply with the OSS Standard Offline. These configurations use an application type and contain file types specific to the OSS Standard Offline. After creating this type of configuration for the first time, custom fields are automatically created in Config Tool. The custom fields ensure that the proper access rights can be encoded on cards and the correct entities can be linked to events.

You can encode cards with the OSS Standard Offline configuration using a smart card encoding station configured for OSS.

Access rights and blacklists on cards

Access rights are stored on the card and must periodically be renewed, based on a revalidation period. This revalidation period defines the period during which the card is valid. By default, the revalidation period is seven days, but can be configured. When a card is no longer valid, it cannot unlock any doors.

To renew the access rights on a card, you must present it to a reader that is configured to update the information on cards.

If a valid card is lost, you can add it to a blacklist by deactivating the credential in Security Center. Blacklisted credentials cannot unlock doors and are not updated when presented to a reader for update.
IMPORTANT: Once a credential is blacklisted, you cannot manually remove it from the blacklist, even if you reactivate the credential in Security Center. After the revalidation period of the card ends, the card is automatically removed from the blacklist. At this point, you can reactivate the credential in Security Center if not already done, and then present the card to a reader for update. The revalidation period then restarts and the card can once again access doors according to its encoded access rights.

Event monitoring and reporting

When a card is presented to a door controlled by an offline lock, events from the lock are written onto the card. When the card is updated through a reader, the information is written to the Access Manager database. The event types and the number of events stored on the card are configured in the OSS Standard Offline configuration.

The events are displayed as custom events in the Security Desk Monitoring task. You can generate reports on them using the Door activities task.
NOTE: If the lock is low on battery, it writes an event with the timestamp of the latest scan of the battery.