Creating and configuring a Security Center Federation role - To connect to a remote Security Center system using Security Center Federation™, you must create and configure a Security Center Federation role on your system using the credentials for your Federation™ user. - Security Center 5.13

To connect to a remote Security Center system using Security Center Federation™, you must create and configure a Security Center Federation role on your system using the credentials for your Federation™ user.

1. From the Config Tool homepage, open the System task and click the Roles view.
2. Click Add an entity () and select Security Center Federation™.
3. In the Directory field, enter the name or IP address of the remote Security Center Directory.
4. Enter the username and password for the Federation user.
   The Federation role uses these credentials to sign in to the remote Security Center system.
   Best Practice:

   • Give the Federation user a descriptive name. That way, if multiple hosts federate the same system, it is easy for the federated system to tell which Federation host is connected to their system.
   • Ensure that Use secure communication is enabled in the Media Router on both systems. This ensures secure communication and allows Live/Playback streaming requested from Federation to be logged in the Activity trails report. This applies to 5.11.1.0 or later.
5. (Optional) Select the Reclaim ownership of local entities option.
   This option enables the role to reclaim ownership of entities that were released to your local Security Center system when a previous Federation role was deleted.
   
6. In the Federated events tab, select the events that you want to receive from the federated system.
   
7. In the Federated entity types tab, select the entities that you want to monitor from the federated system.
   
   NOTE: After creating the role, you can change the selection of federated events and federated entity types in the Properties page of the Federation role.
8. Click Next.
9. On the Basic information page, enter a name and description for the role.
10. Select the partition that this role belongs to and click Next.
    All federated entities are created in this partition. Only users in this partition can view or modify those entities.
11. Click Next > Create > Close.
12. Select the new Federation role () and click the Properties tab.
    The connection status is either Synchronizing entities or Connected.
13. To reduce the loss of a role in case of connection interruption, configure the following settings:

    Resilient connection

    Enable this option for the Security Center Federation role to reconnect to the federated Security Center Directory server after a connection interruption. After attempting to reconnect for a specified period, the connection is considered lost and the role enters a warning state.

    NOTE: Activating Resilient connection is highly recommended for remote systems that might have an unstable connection to the cloud.

    Reconnection timeout

    Specify the number of seconds that the Security Center Federation role attempts to reconnect to the Directory before the connection is considered lost.

14. (Optional) Configure the additional options for the Security Center Federation role:

    Forward Directory reports

    Enable this option to view user activities (viewing cameras, activating the PTZ, and so on) and configuration changes performed at the federated site. This information is provided from the Activity trails and Audit trails reports on the Federation host, provided the Federation™ user has the privileges and access rights to view them. You can also view the federated units in the Hardware inventory task.

    IMPORTANT: To return federated entities in reports generated on the Federation host, Forward Directory reports must be enabled.

    Network

    Select the gateway network to establish the connection:

    Auto-detect

    This is the default option. The system automatically selects the appropriate local network for the connection.

    Specific

    Choose a specific gateway network from the federated system. This option prevents conflicts that might occur when the local and federated networks have overlapping private IP address ranges.

    Reclaim ownership of local entities

    Enable this option to reclaim ownership of entities that were released to your local Security Center system when a previous Federation role was deleted. For more information, see About releasing or reclaiming ownership of entities from a role.

    Default live stream

    Select the default video stream that is used for viewing live video from federated Security Center cameras. Remote is selected by default.

    If your workstation doesn’t require specific video stream settings for Federation, you can use the default stream settings from Security Desk instead.

    Enable playback requests

    Enable this option for users to view playback video from federated Security Center cameras.

    Enable Record Fusion queries

    Enable this option to synchronize data sources. This option allows the Record Fusion Service role to forward queries to the federated Security Center systems. Record types are configurable on the Properties page of the Record Fusion Service role.

    Federate map providers

    Enable this option to synchronize map providers from the remote Map Manager, which allows users to view federated online maps. This isn’t necessary to display image maps.

    Federate custom icons

    Enable this option for federated entities to share custom icons with the Federation host. Entity icons in the Federation host appear identical to the icons on the federated system. It can take a few minutes to synchronize custom icons.

    Enable inbound alarm acknowledgment source

    Gets the Acknowledgment source on the host system for alarms that are acknowledged on the federated system. Acknowledgment source is available in the Report pane columns for the Alarm report task.

    Enable outbound alarm acknowledgment source

    Sends the Acknowledgment source to the federated system for alarms that are acknowledged on the host system. Acknowledgment source is available in the Report pane columns for the Alarm report task.

    Federated events

    Select the events that you want to receive from the federated Security Center system. Events are necessary if you plan to monitor the federated entities in Security Desk, or to configure event-to-actions for the federated entities.

    Federated entity types

    Select the entity types that you want to monitor from the federated Security Center system.

15. Click Apply.
16. Change the default multicast addresses used by the Media Router for local and federated streams.

After you finish

In the Area view task, expand the Security Center Federation role () and verify that all federated entities were imported by the role.

The entity hierarchy corresponds to the Area view on the federated remote system.