Access control enhancements in Security Center 5.12.0.0 - Security Center 5.12.0.0

Security Center Release Notes 5.12.0.0

Product
Security Center
Content type
Release notes
Version
5.12
Release
5.12.0.0
Language
English
Last updated
2024-07-02

Security Center 5.12.0.0 includes the following access control enhancements.

New maintenance task: Enhanced cardholder access rights

The Enhanced cardholder access rights task complements the existing Cardholder access rights task. The differences between the two tasks are as follows:
Filters common to both tasks
Doors - Areas - Elevators
Restrict your search to specific doors, areas, or elevators for which you would like to investigate the access rights.
Cardholders
Restrict your search to specific cardholders.
Filters only found in the Enhanced cardholder access rights task
Cardholder groups
Restrict your search to specific cardholder groups.
Cardholder status
Restrict your search to active, inactive, or expired cardholders.
Expand cardholder groups
List the members of the selected cardholder groups in the report instead of the cardholder groups themselves.
Expand cardholder credentials
List the credentials of the cardholder in the report alongside the cardholder.
Include perimeter entities
Include the perimeter entities of the selected areas in the report.
Custom fields
Cardholder and cardholder group custom fields can also be used to filter this report.
Filters only found in the Cardholder access rights task
Ignore access denied
Exclude cardholders and visitors who have only been denied access, and have not been granted access.
Report columns
You can include many more columns with the Enhanced cardholder access rights task than with the Cardholder access rights task. In particular, the Credential column in the Enhanced cardholder access rights task lists all the credentials held by a given cardholder, separated by commas.

For more information, see Overview of the Enhanced cardholder access rights task.

New configuration task: Synergis IX intrusion detection area mapping

The Synergis™ IX intrusion detection area mapping task is an administration task that detects missing or incorrect mappings to Security Center areas. Using this task, you can correct all faulty settings from a single page.
Synergis™ IX intrusion detection area mapping task overview.

For more information, see Configuring intrusion detection area mapping for Security Center 5.12 and later on TechDoc Hub.

Native pivCLASS reader configuration

Starting with Security Center 5.12, pivCLASS reader configurations are natively supported. Custom fields (DoorInReaderType and DoorOutReaderType) are no longer required. Define the assurance profiles assigned to your pivCLASS readers in the General settings view of the Access control task in Config Tool. This feature requires the Security Center license for Personal Identity Verification.

For more information, see Configuring pivCLASS readers for Security Center 5.12 or later on TechDoc Hub.

DESFire configuration enhancements

The MIFARE DESFire configuration task has the following enhancements.
Overview of the MIFARE DESFire configuration task in Config Tool with a sample configuration.
Comprehensive key management
The MIFARE DESFire configuration task has been improved in many areas to provide comprehensive key management.
  • The Key transfer page was renamed to Key vault because you can do more than just transfer keys on that page. You need the Access to Key vault page privilege to see this page.
  • The maximum number of keys has been increased from 32 to 1024.
    A search field has been added to the drop-down to make it easier to select an available index. A key version is used to allow the usage of the same index for more than one key.
    Key configurations dialog box in the Key vault page of the MIFARE DESFire configuration task in Config Tool.
  • A random key generator is now available wherever a cryptographic key is needed. This feature eliminates the use of an external tool. Click Generate random key () to fill the adjacent field with a random key. For information about key management, see Cryptographic key management in the MIFARE DESFire configuration task on the TechDoc Hub.
  • The Reader settings page was renamed to Encoder settings. This new page now replaces the STidReaderSettings.xml file. You need the Access to Encoder settings page privilege to see this page.
    Encoder settings page in the MIFARE DESFire configuration task in Config Tool.
  • Synergis™ Softwire 11.4 introduced the diversification mode AN0945 by using an XML file. You can now configure the AN0945 mode directly from the MIFARE DESFire configuration task without having to edit an XML file.
  • Security Center 5.11.3 introduced the encoding of fixed-size (32 bits) empty applications. You can now set aside empty files with the size you want.
    Empty file configuration in the MIFARE DESFire configuration task in Config Tool.
    Limitation: Custom-sized empty files are backward compatible with Security Center 5.11.3, but not earlier versions. For example, a configuration exported from a 5.12.0 system can be imported into a 5.11.3 system, but not into a 5.10.4 system.
Fingerprint credential support
You can now encode fingerprint credentials in a MIFARE DESFire badge.
In the MIFARE DESFire configuration task, you can now define a Fingerprint file.
Fingerprint file configuration in the MIFARE DESFire configuration task in Config Tool.
You have the following options:
  • Fingerprint template: Suprema, ANSI 378, or ISO 1974-2
  • Number of fingerprints to enroll
  • Fingerprint card format: Suprema or STid
    Limitation: Currently, Suprema readers only support the HID H10302 37-bit and H10304 37-bit card formats.
  • Template size (bytes)

All fingerprint readers are supported by design. Only the BioMini Plus 2 fingerprint reader is certified.

Reporting enhancements

Combining door and elevator events using the Unified report
You can now add conditions based on custom fields when you use the Unified report investigation task. With this enhancement, you can now combine door and elevator events in a single report without having to export your reports to Excel. For more information, see Investigating record types.
New report filter
Creation date
Date range when a cardholder, visitor, or credential entity was created.
This filter was added to the following tasks:
  • Cardholder configuration
  • Cardholder management
  • Credential configuration
  • Credential management
  • Visitor management
New report column
Creation date
Date when a cardholder, visitor, or credential entity was created. For federated entities, it is the original creation date, not when the entity was federated. For federated systems earlier than 5.12, the creation date is displayed as a dash (-).
This column has been added to the following tasks:
  • Cardholder configuration
  • Cardholder management
  • Credential configuration
  • Credential management
  • Visitor management
  • Visit details