If system security is a priority for your organization, we recommend that you follow the hardening advice for interface modules.
This section only presents the hardening tips that apply to all interface modules. Manufacturer-specific hardening tips are tagged with Hardening in each manufacturer's respective integration topics. For hardening guidelines for the entire system, see the Security Center Hardening Guide.
Use the latest interface module firmware
Never use default passwords
Many access control devices are shipped with their default administrative passwords. These passwords are not private nor secure. Change these passwords on each device's web page before enrolling them on your Synergis unit. The most secure way to change the passwords is to set up a separate network over which you can do this; ideally, this should be done over HTTPS.
Delete unused interface modules from your hardware configuration
Delete any unused interface modules from your Synergis appliance's hardware configuration. Certain interface modules can leave open ports that make your appliance vulnerable to attacks. You can delete the unused interface modules either from the Synergis™ Appliance Portal or from Config Tool. For more information, see the topics corresponding to each interface module manufacturer.
Enable DESFire EV2 secure communication
If you have STid SSCP readers or OSDP transparent readers in your system, we recommend that you enable the DESFire EV2 secure communication on all your workstations and Synergis units. For more information, see Enabling DESFire EV2 secure messaging.