Security Center 5.12.0.0 includes the following access control enhancements.
New maintenance task: Enhanced cardholder access rights
- Filters common to both tasks
-
- Doors - Areas - Elevators
- Restrict your search to specific doors, areas, or elevators for which you would like to investigate the access rights.
- Cardholders
- Restrict your search to specific cardholders.
- Filters only found in the Enhanced cardholder access rights task
-
- Cardholder groups
- Restrict your search to specific cardholder groups.
- Cardholder status
- Restrict your search to active, inactive, or expired cardholders.
- Expand cardholder groups
- List the members of the selected cardholder groups in the report instead of the cardholder groups themselves.
- Expand cardholder credentials
- List the credentials of the cardholder in the report alongside the cardholder.
- Include perimeter entities
- Include the perimeter entities of the selected areas in the report.
- Custom fields
- Cardholder and cardholder group custom fields can also be used to filter this report.
- Filters only found in the Cardholder access rights task
-
- Ignore access denied
- Exclude cardholders and visitors who have only been denied access, and have not been granted access.
- Report columns
- You can include many more columns with the Enhanced cardholder access rights task than with the Cardholder access rights task. In particular, the Credential column in the Enhanced cardholder access rights task lists all the credentials held by a given cardholder, separated by commas.
For more information, see Overview of the Enhanced cardholder access rights task.
New configuration task: Synergis IX intrusion detection area mapping
For more information, see Configuring intrusion detection area mapping for Security Center 5.12 and later on TechDoc Hub.
Native pivCLASS reader configuration
Starting with Security Center 5.12, pivCLASS reader configurations are natively supported. Custom fields (DoorInReaderType and DoorOutReaderType) are no longer required. Define the assurance profiles assigned to your pivCLASS readers in the General settings view of the Access control task in Config Tool. This feature requires the Security Center license for Personal Identity Verification.
For more information, see Configuring pivCLASS readers for Security Center 5.12 or later on TechDoc Hub.
DESFire configuration enhancements
- Comprehensive key management
- The MIFARE DESFire configuration task has been improved in many
areas to provide comprehensive key management.
- The Key transfer page was renamed to Key vault because you can do more than just transfer keys on that page. You need the Access to Key vault page privilege to see this page.
- The maximum number of keys has been increased from 32 to 1024.A search field has been added to the drop-down to make it easier to select an available index. A key version is used to allow the usage of the same index for more than one key.
- A random key generator is now available wherever a cryptographic key is needed. This feature eliminates the use of an external tool. Click Generate random key () to fill the adjacent field with a random key. For information about key management, see Cryptographic key management in the MIFARE DESFire configuration task on the TechDoc Hub.
- The Reader settings page was renamed to Encoder
settings. This new page now replaces the
STidReaderSettings.xml file. You need the Access to
Encoder settings page privilege to see this page.
- Synergis™ Softwire 11.4 introduced the diversification mode AN0945 by using an XML file. You can now configure the AN0945 mode directly from the MIFARE DESFire configuration task without having to edit an XML file.
- Security Center 5.11.3 introduced the encoding of fixed-size (32 bits) empty
applications. You can now set aside empty files with the size you want.Limitation: Custom-sized empty files are backward compatible with Security Center 5.11.3, but not earlier versions. For example, a configuration exported from a 5.12.0 system can be imported into a 5.11.3 system, but not into a 5.10.4 system.
- Fingerprint credential support
- You can now encode fingerprint credentials in a MIFARE DESFire badge.In the MIFARE DESFire configuration task, you can now define a Fingerprint file.You have the following options:
- Fingerprint template: Suprema, ANSI 378, or ISO 1974-2
- Number of fingerprints to enroll
- Fingerprint card format: Suprema or STidLimitation: Currently, Suprema readers only support the HID H10302 37-bit and H10304 37-bit card formats.
- Template size (bytes)
All fingerprint readers are supported by design. Only the BioMini Plus 2 fingerprint reader is certified.
Reporting enhancements
- Combining door and elevator events using the Unified report
- You can now add conditions based on custom fields when you use the Unified report investigation task. With this enhancement, you can now combine door and elevator events in a single report without having to export your reports to Excel. For more information, see Investigating record types.
- New report filter
-
- Creation date
- Date range when a cardholder, visitor, or credential entity was created. This filter was added to the following tasks:
- Cardholder configuration
- Cardholder management
- Credential configuration
- Credential management
- Visitor management
- New report column
-
- Creation date
- Date when a cardholder, visitor, or credential entity was created. For federated
entities, it is the original creation date, not when the entity was federated. For
federated systems earlier than 5.12, the creation date is displayed as a dash
(-).This column has been added to the following tasks:
- Cardholder configuration
- Cardholder management
- Credential configuration
- Credential management
- Visitor management
- Visit details