|
|
System Parameters Configuration |
The System parameters dialog allows the System Administrator to modify parameters that define the EntraPass system.
Server Parameters
Under the Server tab, you can define
E-mail Server
EntraPass offers users the ability to send reports using email capabilities. This function can also be used with SMTP servers asking for a user authentication.
NOTE: SSL secured connections are not supported.
1 - In the Email server (SMTP or Exchange server) field, enter the IP address of the Email server that will be used for sending emails.
2 - In the Email Port field, enter the number of the port that will be used for sending emails (usually 25).
3 - Select the encryption method.
• Unsecured (No SSL/TLS)
• Gmail(SSL/TLS)
• Secured (SSL/TLS)
• Office 365 (STARTTLS)
4 - Enter a valid Email address in the Email sender field. This email address will be used for authenticating the email server.
5 -
•
•
•
6 -
7 -
NOTE:
Use the Operator auto-deactivate feature to automatically deactivate an operator if there is no activity on their account for a certain amount of days. The default is 90 days. When you install EntraPass for the first time or update from a previous version, this feature is turned off. When you turn on the Operator auto-deactivate feature, at midnight EntraPass checks the database for activated operators, and in the absence of activity, automatically sends an e-mail 10 days before the deactivation to notify the operator of their imminent disconnection.
NOTE: The Operator must complete their e-mail field to receive the notification e-mail. If their e-mail field is not complete, the deactivation occurs without the e-mail notification.
The auto-deactivate feature does not apply to LDAP operators, or the default EntraPass operators: administrator, installer, and operator.
To prevent deactivation the operator must log on to EntraPass using the workstation, web or mobile device before the deactivation date. If an Operator is deactivated, they have to manually enable the operator. To do this, click the System tab, and click Operator from the menu. Select the appropriate Operator and clear the Operator disabled check box.
In the event of a failure from the primary server, the feature continues to work fully on the redundant server. If the server and the redundant server are down on the day the notification e-mail is due to send, the notification e-mail is not sent but the Operator is deactivated as scheduled.
Setting the Operator auto-deactivate feature
To set the Operator auto-deactivate feature, complete the following steps:
1 - Click the Options tab, and click System Parameters from the menu.
2 - In the System Parameters window, click Server, and click the Password rules tab.
3 - Select the Automatically deactivate operator check box.
4 - In the Days field, click the arrows to select the amount of applicable days. Click OK. Thirty days is the minimum amount of days and 365 days is the maximum.
Server Logs
You can define the maximum number of records to store in the system logs and the system error logs (up to 100,000). Records include transactions such as: login to server, logout from server, disconnection, connection, stop or start server, registration requested, etc. These records are kept with the date/time, the workstation (where the event or error came from), the operator and the description of the transactions.
To make the Audit trail functionality available, select the Audit trail check box, and select one of the following data retention options:
• To define how many days to retain the audit data, select a number from the Audit retention days list. The default setting is 365 days, the minimum number is 30 days, and the maximum number is five years.
• To define how many records the system retains, select a number from 1 to 15 in the Audit retention records field. The default setting is five days.
In the Audit trail selected component area, select the components you want to appear in the Audit trail report. If you select the Primary check box, the component name is available in the audit trail. If you select the Secondary check box, the component list information is available in the audit trail.
The Disk Space feature has been developed as a protection against system failures that may be caused by the lack of disk space. This feature allows you to monitor the amount of free disk space for optimal system operation or for generating reports. In fact, EntraPass offers the ability to have the system abort the execution of a report if the free disk space has reached a specified threshold.
• Disk free space threshold (MB) : scroll-down list: specify a disk free space threshold that indicates when you want the system to send a message when the amount of free space falls below the value indicated. This value is in mega bytes. The range value is 2000 up to 99999 MB.
• Time between notifications (hh:mm) : enter the amount of time between notifications when the disk free space has reached the quota specified in the Disk free space threshold field. For example, if you enter 00:30 in the field, a system warning will be displayed every half hour. The time range value is 00:10 to 24:00.
• Archival Path: Enter the archival path. Saving historical data on a different drive will improve system performance.
Redundant Server
NOTE: The Redundant Server component will be available only if it has been previously registered.
You can define the Auto-restart delay (m:ss) for the Mirror Database and Redundant Server. The time range value is 1:00 to 9:59.
Quick synchronize: When this option is checked, the main server does not close the tables during the synchronization with the mirror database. Messages can still be received and the database viewed. A yellow button is then displayed on the left to indicate that the system is in read only mode.
NOTE:
Logout and Idle
You will access this tab to specify the EntraPass applications behaviour when idle (when there is no action on the keyboard from the operator).
•
•
•
•
•
NOTE:
The Schedule tab is where you will be able to upgrade to advanced schedule capability. In fact, EntraPass offers users more flexibility and ease of use by grouping schedules per gateway, connection or system logical components. This option is not automatically enabled upon installation of version 3.18 and higher of EntraPass.
NOTE:
Schedules are grouped as follows:
•
•
•
•
•
•
Icon Status
The Status time out delay (m:ss) parameter allows you to define a period of time before the workstation queries the server for the latest button statuses. The higher the delay, the lower the button refresh rate will be, therefore creating less traffic on the network. The maximum time out delay is 1 min. 30 seconds.
Service Login Information
The information entered here is required when the Server runs as a service and network resources need to be accessed from the Server. Service Login Information is required for the Backup Scheduler when using a network drive.
•
•
NOTE:
The purpose of this feature is to add more parameters to the operator’s password.
1 - From the Options menu, select System parameters.
You must create passwords using the following rules:
• A minimum of 8 characters and a maximum of 20.
• A minimum of 1 numerical character.
• A minimum of 1 special character.
• A minimum of 1 uppercase letter.
• Passwords are case sensitive.
• Passwords cannot include the word kantech.
NOTE: After you select this option, all newly created or modified operators must comply with the password rules.
This section contains all the information pertaining to controllers, gateways, and IP communication module, as well as the section to update you firmware.
NOTE: The KTES tab will be available only if a KTES controller have been previously defined in the system. See Kantech Telephone Entry System (KTES) Configuration for more information.
KT-100
The KT-100 tab specifies the location of the folder containing the firmware for KT-100 controllers. The system will use this data to update the installed controllers (not available in EntraPass KTES Edition).
KT-300
The KT-300 tab specifies the location of the folder containing the firmware for KT-300 controllers. The system will use this data to update the installed controllers (not available in EntraPass KTES Edition).
KT-400
The KT-400 tab specifies the location of the folder containing the firmware for KT-400 controllers. The system will use this data to update the installed controllers .
• When checked, the Enable TFTP KT-400 updater option will allow operators to upgrade the KT-400 firmware from the Update firmware button from the Operation > Site dialog in EntraPass.
• Enable automatic firmware update: Select to make an update of each KT-400 with a different firmware version.
NOTE: The automatic firmware update function applies only to KT-400s that support it.
NOTE: The multi-site Gateway must be restarted in order to enable the TFTP KT-400 updater.
• For security reasons, you may decide, as a System Administrator to disable this option and not allow operators to update the firmware.
KT-1
The KT-1 tab specifies the location of the folder containing the firmware for KT-1 controllers. The system will use this data to update the installed controllers.
• When checked, the Enable TFTP KT-1 updater option will allow operators to upgrade the KT-1 firmware from the Update firmware button from the Operation > Site dialog in EntraPass.
• Enable automatic firmware update: Select to make an update of each KT-1 with a different firmware version.
NOTE: The automatic firmware update function applies only to KT-1s that support it.
NOTE: The multi-site Gateway must be restarted in order to enable the TFTP KT-1 updater.
• For security reasons, you may decide, as a System Administrator to disable this option and not allow operators to update the firmware.
• Select the Firmware flashing mode to apply.
KTES
The KTES tab specifies the location of the folder containing the firmware for the KTES. The system will use this data to update the installed KTES.
Kantech IP Link
The IP Link tab specifies the location of the folder containing the firmware for the Kantech IP Link module . The system will use this data to update the installed firmware .
• When checked, the Enable TFTP IP Link updater option will allow operators to upgrade the IP Link firmware from the Update firmware button from the Operation > Site dialog in EntraPass.
NOTE: The Multi-site Gateway must be restarted in order to enable the TFTP IP Link updater.
• For security reasons, you may decide, as a System Administrator to disable this option and not allow operators to update the firmware.
ioSmart reader
• The ioSmart reader tab specifies the location of the folder containing the firmware for ioSmart readers. The system will use this data to update the installed readers.
The ioModule tab specifies the location of the folder containing the firmware for the ioModules. The system uses this data to update the installed ioModules.
KT-401
The KT-401 tab specifies the location of the folder containing the firmware for KT-401 controllers. The system will use this data to update the installed controllers .
• When checked, the Enable TFTP KT-401 updater option will allow operators to upgrade the KT-401 firmware from the Update firmware button from the Operation > Site dialog in EntraPass.
• Enable automatic firmware update: Select to make an update of each KT-401 with a different firmware version.
NOTE: The automatic firmware update function applies only to KT-401s that support it.
NOTE: The multi-site Gateway must be restarted in order to enable the TFTP KT-401 updater.
• For security reasons, you may decide, as a System Administrator to disable this option and not allow operators to update the firmware.
Image Parameters
The Image section is where you will define parameters for the badging features. You will define image quality for picture, signature and background images.
• If you are using the badging feature, it is recommended to leave the jpeg quality to default. Reducing the image quality may affect the quality of the pictures imported from badges.
• If you are not using the badging feature, you may reduce the jpeg quality of your images so that they will not occupy a large space in the database. You must take in consideration, however, that reducing the quality of the saved images may affect the quality of the photos imported into badges.
A parameter allows you to save cards and visitor card pictures, signatures and background graphics to a file instead of directly to the database. We are offering this option for sites that have large banks of pictures and graphics. The picture, signature and graphic database can currently contain up to 2 Gb of data each. The parameter will be used in instances where a site may need more space to save pictures, signatures and graphics.
Picture and Badging
The picture and badging feature allows you to adjust the image and signature quality for use with the Badging feature.
• Unchecking Use JPEG format for pictures, signatures and badges tells the system to save pictures (or signatures) in a tiff format.
NOTE: Remember that this may affect the image quality. If you are not an advanced user, leave these values to default.
• The User picture, Signature, Badge background and Badge picture indicate the quality of the image that will be saved. If you choose 10, the saved image quality will be poor; 100 indicates an excellent quality.
• Select the location of the Picture (Signature) transparent colour position for pictures and signature. Four choices are available (top-right, top-left, bottom-right and bottom-left). By default, the system chooses the bottom left-hand corner for the transparent background colour. EntraPass allows operators to choose a more suitable colour.
•
When
checking the
Save card pictures and signatures in a file
box,
the system will create
Picture
and
Signature
directories
under
•
When
checking the
Save visitor pictures and signatures in a file
box,
the system will create
Picture
and
Signature
directories
under
NOTE: When modifying an existing picture or signature, EntraPass will save it to the appropriate file and delete the corresponding entry in the database.
Graphic
The graphic feature allows you to adjust the graphic quality for use with the EntraPass software.
• Unchecking Use JPEG format for graphics tells the system to save graphics in a tiff format.
NOTE: Remember that this may affect the image quality. If you are not an advanced user, leave these values to default.
• The JPEG quality value for Graphic background ( picture ) indicates the quality of the image that will be saved. If you choose 10, the saved image quality will be poor; 100 indicates an excellent quality.
•
When
checking the
Save graphics in a file
box,
the system will create a
Graphic
directory
under
NOTE: When modifying an existing graphics, EntraPass will save it to the appropriate file and delete the corresponding entry in the database.
Report Parameters
The Report tab enables users to define the field separator for reports, disk free space threshold and user name format.
CSV
Under the CSV tab, you can define the field separator for your reports.
• By default, the system uses a comma (,) as the Field separator . You can modify the comma for another character. Other options are: Period, Equal, Semicolon, Colon, Space and tab.
• It is recommended to check the Date and time on separate fields option . When selected, CSV (comma separated values) as the output process for your reports, by default, the system includes the date and the time in a single field. When you select this option, the system will separate the date and the time fields.
This feature is a protection when for instance a huge report has been requested. In this case, the system will abort the execution of the report and displays an alert message indicating the reason of the cancellation.
• Abort report if free space lower than (MB): scroll-down list allows you to specify the minimum amount of free disk space required for the execution of reports. The range value is 2000 to 999,999 MB.
• Maximum event for email report scroll-down list allows you to specify the maximum number of events that can be sent via an email report. The range value is 100 to 100,000 events.
• Maximum event for standard report scroll-down list allows you to specify the maximum number of events that can be sent in a report. The range value is 1000 to 500,000 events.
• Simultaneous report process: specify the maximum number of reports that can be generated simultaneously. Up to 10 reports can be executed simultaneously without affecting the performance of the system.
NOTE: When the number of events for reports exceeds the maximum number, some events will not be included in the report. This will create the event Report event quota exceeded. This will be displayed in the desktop Messages and be added to the report.
User Name Format
Specifying the user name format will tell the system how card holder’s names will be displayed in EntraPass.
• Parse user name should be checked if you want to select a method of parsing the user’s name in the system.
• User name format lets you select the parsing method. Options are: Begin with last name, Begin with first name.
• Parse user name with lets you select the character that will be used to parse the user name fields. Options are: Comma, Period, Equal, Semicolon, Colon, Space.
• Strict search on card field should be left empty unless you wish to keep the previous method (EntraPass Version 3.17 and lower) of strict searching a card field for reports.
NOTE: Prior to version 3.18 of EntraPass, the system used a strict search method that required Administrators to enter specific upper and lower boundaries to attain specific results. For example, for generating a report that included all users whose last name started with A, the lower boundary had to be A and the upper boundary had to be AZZZZZ. Now, the system will display all user names that start with an A just by entering A as a lower and upper boundary.
Video Parameters
The Video section will display only if the Video integration option is enabled in the EntraPass system. You will define the time synchronization, remote video process and JPEG format for video images.
Parameters
The Parameters tab allows you to define parameters for the video process.
• Disable manual time synchronization will keep the EntraPass server from updating the video server date and time following a manual modification of time. This feature is useful when, for example, you want to keep all recording events that occurred at the video server regardless of the actual time at the EntraPass server.
• The Remote video process control parameters section contains parameters that define remote management of video processes between the EntraPass Server and the video servers connected to EntraPass. It manages all the tasks (controls) related to: recordings, polls, events, and presets and patterns.
○ Preset and pattern control application field allows you to enter the number of applications that will be simultaneously launched for processing presets and patterns. The system is preset with a range value of 1 to 8 concurrent applications.
NOTE: A Preset and Pattern Control application is launched each time a video recording is started following a trigger on a preset. If you set this number to 1 and if there are for instance more than 1 video servers with presets and patterns defined, the control application will process presets on all video servers. If you decide to increase the number of Preset and Pattern Control Applications, keep in mind that running many concurrent applications takes a great amount of system resources.
• Reset remote video process application will allow the system to terminate and automatically restart the Remote Video Process application a few seconds later. This option may be used in instances when the video events are not being displayed.
• Reset remote video process applications control will allow the system to terminate the Control applications (recordings, polls, events and preset and patterns) and automatically restart the Remote Video Process application.
•
Log
Video process error
will
allow the system to keep a log of all video process errors in the EntraPass
server files. Video process errors are logged in
○ RVP_LOG_00.txt (errors generated by RVP0.exe)
○ RVPPoll_LOG_01.txt (errors generated by RVPPOLL1.exe)
○ RVPEvent_LOG_02.txt (errors generated by RVEVENT3.exe)
○ RVPRecord_LOG_03.txt (errors generated by RVPRECORD3.exe).
○ RVPControl_LOG_04.txt (errors generated by RVPCONTROL4.exe).The system will generate as many log files as there are control applications running concurrently (RVPControl_LOG_05 to 08). The number of error log files will be equal to the number defined in the Preset and pattern control application field .
Snap:
The Snap option allows you to define the image quality that will display in the video thumbnails.
○ The Video image snap indicates the quality of the image that will be saved as a thumbnail for each video. If you choose 10, the saved image quality will be poor; 100 indicates an excellent quality.
Intellex:
The Intellex options allow you to define the bandwidth allowed for the video process (for Intellex only).
○ Disable DirectX will disable DirectX, a Windows® technology that enables higher performance when working or viewing graphics and other multimedia contents, including video and sound. By default, DirectX is enabled with the Video feature. You may sometimes need to disable it if, for example, video images are not correctly displayed or are not displayed at all.
NOTE: The system will use more system resources when DirectX is disabled
○
Limit video bandwidth
allows
you to reduce or increase the bandwidth required to stream live video
without compromising video storage quality and computer performance. The
range value is between 64 KB/s to 8192 KB/s. The value will apply to all
workstations
○ Video vault save delay is used to indicate the time delay before the video vault recording can be played back.
NOTE:
HDVR:
○
TVR:
○ Video vault save delay is used to indicate the time delay before the video vault recording can be played back.
Time Parameters
The Time section allows you to specify which gateway will be used to automatically adjust the time of all the computers connected to the EntraPass server. This feature is very useful when managing remote sites.
NOTE:
•
•
• By Server will automatically synchronize the time of all computers at regular intervals. You must also select the rate of Hours between refreshes in the adjacent selection box. The range value is 1 to 9999 hours.
Credentials Parameters
Card
Under the Card tab, System Administrators will be able to migrate their EntraPass system to enhanced user management where users are managed by their user name as well as their card number(s). Each card holder will be handled by user name and have up to 5 different numbers. This will allow for creating cards without assigning card number to the new cards, see Issuing a New Card in Enhanced User Management EnvironmentThis option will be used with the EntraPass Web for card management. For more information on the EntraPass Web, please refer to the EntraPass Web Help.
NOTE: Enabling the migrate to enhanced user management is NOT REVERSIBLE through the software . However, when the system is migrating data, a backup is performed in EntraPass, so this can be restored to return to its previous action.
• Migrate to enhanced user management: The option is checked by default. EntraPass will migrate to the enhanced user management (see Issuing a New Card in Enhanced User Management Environment for more details).
Workstation
Toolbar Buttons
The
toolbar buttons size can be increased up to 2.5 times the original size,
in order to improve visibility of the text below the button.
Assign a New Connection to a Site
NOTE: Please refer to Connection Configuration for more details
To enable or disable the feature, select an option:
• Prompt: System will prompt the user to specify the site to be connected to (optional) when creating a new connection.
• Mandatory: System will prompt the user to specify the site to be connected to (mandatory) when creating a new connection.
• Disable (default)
NOTE: No reference will be made virtual sites unless at least one has been created previously (see Site Configuration for details).
The Integration tab allows the user to select third party hardware that has been integrated to EntraPass by Kantech.
DLL registration: The available DLL in this menu will be used to specify which type of hardware the customer will connect to EntraPass.
• Click on Add to integrate another DLL. For additional details, see Integrated Panel Configuration.
NOTE:
Virtual keypad: The Virtual keypad tab allows the user to customize the virtual keypad screen display. Three different display modes can be selected: Floating, Modal or Stay on top.
Web Interface
Web tab
Use the Web interface button to configure EntraPass Web parameters.
• Allow messages to EntraPass Web: Select to allow the operator to see messages in EntraPass Web.
• Maximum web messages: Select a maximum from the counter.
• Signature pad pen width: Select a width value for the pen used with the signature pad.
• Maximum request simultaneously by session:Select the maximum number of report requests that can be done simultaneously.
• Message filter for web messages: From the drop-down list, select a filter for the messages to be displayed.
• Badge image ratio for web: Use the selector to increase the image printing quality (default value is 2). Note that increasing the ratio value will also increase the file size.
Web Customization tab
• Custom color: Click to change the color used in the interface (menus perimeter lines for example).
• Page logo: Click to insert (or change) a logo in the top left corner of the interface.
If you register the go Pass mobile application, the go Pass tab appears. Use go Pass with a smartphone, or an Apple watch to lock or unlock a door. For convenience, you can control a door from a remote location. For a higher level of security use an ioSmart reader with the door, ioSmart readers use BLE technology. To cater for a range of security levels, select an option from the Proximity Restriction list.
1 - To display a cardholder's encrypted personal profile in the notification e-mails, select the Display viable notification information check box. Cardholders use their personal profile details or a link in the e-mail to gain access to the go Pass application.
2 - To resend all go Pass notification e-mails to all valid cardholders, click the Resend go Pass notification for all valid cardholders button.
3 - To control how and when SmartLink responds to invalid go Pass commands, define all three settings in the Security area:
a - To set how many invalid requests occur before SmartLink responds, enter a number in the Notification debounce on wrong request field.
a - To set the time to pass before SmartLink responds, enter a number in the Debounce delay (ss) field.
b - To prevent SmartLink responding to any go Pass request for a certain amount of time, enter a number in the Disable go Pass when notification (m:ss) field.
For example, # of invalid requests within # seconds = # seconds before SmartLink responds to go Pass request + event Too many go Pass failed requests made displays.
4 - Select one of the following options from the Proximity Restriction list:
• None - there is no restriction, the go Pass cardholder can lock, and unlock doors remotely, and at the door. EntraPass ignores BLE technology.
• Strict (ioSmart BLE only) – if the go Pass cardholder presents go Pass at an ioSmart reader, the go Pass cardholder has to be within range of the door.
• Hybrid (BLE when available) – use for go Pass cardholders who have access to ioSmart readers and non-ioSmart readers. If the go Pass cardholder is at an ioSmart door, the cardholder has to be within range, if it is a non-ioSmart door the cardholder can control the door remotely.
NOTE: If you fail to select the BLE checkbox in the reader template that the controller uses, the Proximity Restriction selection is redundant.