Safran MA SIGMA, MA SIGMA WR, MA SIGMA iCLASS, MA SIGMA iClass WR, MA SIGMA Multi Administration Manual
...
COPYRIGHT© 2016-2017 Morpho
MorphoAccess® SIGMA Family
Administration Guide
Osny, France
MorphoAccess® SIGMA Family Administrator Guide
Introduction
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
2
July 17
WARNING
COPYRIGHT© 2016-2017All rights reserved.
Information in this document is subject to change without notice and do not represent a
commitment on the part of Morpho. No part of this document may be reproduced or
transmitted in any form or by any means, electronic or mechanical, including photocopying or
recording, for any purpose without the express written permission of Morpho.
This legend is applicable to all pages of this document.
This manual makes reference to names and products that are trademarks of their respective
owners.
PROPRIETARY RIGHTS
This document contains information of a proprietary nature to Morpho and is submitted in
confidence for a specific purpose. The recipient assumes custody and control and agrees that
this document will not be copied or reproduced in whole or in part, nor its contents revealed in
any manner or to any person except to meet the purpose for which it was delivered.
This caveat is applicable to all the pages of this document.
MorphoAccess® SIGMA Family Administrator Guide
Revision History
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
3
July 17
Version
Date
Description
01
April 2017
First version MorphoAccess® SIGMA Family Administration Guide
Created from:
2014_0000002196_v11- MA SIGMA - Administration Guide
2015_2000010196_v8 - MorphoAccess® SIGMA Lite Series
Administrator Guide
02
June 2017
OSDP support added
Seos card support added
Note about partionned usb key that should not be used
Note about encoding card with only one finger that is not supported
Note about encoded name and first name that are limited to 20
caracters
Note about the behavior during second biometric attempt with MALite
Note about transaction logs that should be erase
Replace alphanumeric PIN by numeric PIN in webserver
03
July 2017
New administrator profile : Limited database admin (refer to Section 5
: MorphoAccess® Terminal Administration Menu)
Update first boot-up for MALITE terminal in LED – Buzzer Sequence
chapter
Revision History
The table below contains the history of changes made to the present document.
MorphoAccess® SIGMA Family Administrator Guide
Introduction
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
4
July 17
Table of Contents
WARNING ............................................................................................................................ 2
REVISION HISTORY ............................................................................................................... 3
SECTION 1 : INTRODUCTION ............................................................................................... 14
MorphoAccess® SIGMA Family Series Terminal................................................................ 15
Scope of the document ................................................................................................... 16
About Biometrics ............................................................................................................ 18
About fingerprint biometrics ............................................................................................... 18
Templates supported ........................................................................................................... 19
Notation ............................................................................................................................... 20
SECTION 2 : CONNECTING THE TERMINAL TO A PC .............................................................. 22
General .......................................................................................................................... 23
Why would one connect the terminal to a PC? ................................................................... 23
Connection methods ............................................................................................................ 23
Network parameter initialization ........................................................................................ 23
Point to Point Ethernet Connection ................................................................................. 24
Connection through only one Ethernet switch ................................................................. 25
Connection through a LAN .............................................................................................. 26
Description ........................................................................................................................... 26
LAN with DNS Server............................................................................................................ 26
LAN without DNS Server ...................................................................................................... 27
Static IP address (DHCP disabled) ........................................................................................ 27
Dynamic IP address (DHCP enabled) ................................................................................... 27
Wi-Fi™ Network configuration ........................................................................................ 28
Requirements ....................................................................................................................... 28
Configuration ....................................................................................................................... 28
Troubleshooting ................................................................................................................... 28
SECTION 3 : TERMINAL CONFIGURATION AND ADMINISTRATION ....................................... 29
Understanding MorphoAccess® Configuration ................................................................. 30
Presentation ........................................................................................................................ 30
Modifying the value of a parameter ................................................................................... 30
Configuring a Networked MorphoAccess® ....................................................................... 31
Introduction ......................................................................................................................... 31
Network factory settings ..................................................................................................... 32
MorphoAccess® SIGMA Family Administrator Guide
Introduction
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
5
July 17
Date/Time settings .............................................................................................................. 32
SSL Securing ......................................................................................................................... 32
Network Wi-Fi™ configuration ............................................................................................ 33
MorphoAccess® Terminal Database Management .......................................................... 34
General ................................................................................................................................ 34
Adding a user to the database ............................................................................................ 34
Removing a user from the database ................................................................................... 34
Database Size ...................................................................................................................... 35
MorphoAccess® Terminal License Management .............................................................. 36
User licenses ........................................................................................................................ 37
Log licenses .......................................................................................................................... 37
Communication licenses ...................................................................................................... 38
Access Control license .......................................................................................................... 38
Time and Attendance (T&A) license .................................................................................... 39
Basic Licenses ...................................................................................................................... 39
Getting a license for a MorphoAccess® SIGMA Family terminal ......................................... 39
Checking licenses installed in the terminal with license manager application ................... 39
Installing a new license ........................................................................................................ 42
Terminal Firmware Upgrade ........................................................................................... 43
How to get latest version of firmware ................................................................................. 43
How to upgrade the firmware ............................................................................................. 43
Firmware upgrade using a USB Mass Storage Key ............................................................. 43
Firmware upgrade tool for expert users .............................................................................. 43
MorphoAccess® SIGMA Family Modes ............................................................................. 45
MorphoAccess® 500 or J Series legacy mode ...................................................................... 45
L-1 Bioscrypt 4G Series legacy mode ................................................................................... 45
MorphoAccess® SIGMA Family native mode ....................................................................... 47
SECTION 4 : MORPHOACCESS® TERMINAL FIRST BOOT ASSISTANT ...................................... 48
Assistant Initialization .................................................................................................... 49
Date & Time Configuration ............................................................................................. 51
Trigger Event .................................................................................................................. 55
Language Configuration ................................................................................................. 57
Show/Hide Language Icon .............................................................................................. 59
Ethernet Interface Settings ............................................................................................. 60
Wi-Fi™ Configuration ...................................................................................................... 63
Protocol Configuration .................................................................................................... 70
MorphoAccess® SIGMA Family Administrator Guide
Introduction
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
6
July 17
Password Configuration .................................................................................................. 72
First Boot Assistance At Next Boot Configuration ............................................................ 74
Recover Corrupted Components ...................................................................................... 76
SECTION 5 : MORPHOACCESS® TERMINAL ADMINISTRATION MENU ................................... 77
Access to Administration Menu ....................................................................................... 78
User Menu ...................................................................................................................... 80
User Enrollment in Database ............................................................................................... 81
User Enrolment in Card........................................................................................................ 97
User Enrolment in Card & Database ................................................................................. 100
Update User Information................................................................................................... 102
Authenticate User .............................................................................................................. 105
Delete User ........................................................................................................................ 106
Card Manager .................................................................................................................... 111
Multimedia menu ......................................................................................................... 146
Audio Settings .................................................................................................................... 147
Video Settings .................................................................................................................... 150
Images Settings ................................................................................................................. 153
System Menu ................................................................................................................ 156
Terminal Configurations .................................................................................................... 157
Network Time Protocol Server (NTP Server) ...................................................................... 160
Transaction Log ................................................................................................................. 178
Miscellaneous Settings ...................................................................................................... 184
Web Server ........................................................................................................................ 188
Error Log Configuration ..................................................................................................... 189
Sensor Log Configuration .................................................................................................. 191
Communication menu ................................................................................................... 193
Security recommendation ................................................................................................. 194
Ethernet Network Configuration ....................................................................................... 194
Wi-Fi™ Network Configuration .......................................................................................... 196
Mobile Network Configuration .......................................................................................... 196
Configure Hostname .......................................................................................................... 200
Serial Parameters .............................................................................................................. 201
Security Menu .............................................................................................................. 204
User Control Settings ......................................................................................................... 205
Anti-Tamper Switch For Terminal Security ........................................................................ 220
Network & Communication Security Settings ................................................................... 224
MorphoAccess® SIGMA Family Administrator Guide
Introduction
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
7
July 17
Terminal Settings > Communication > Communication Channels Configuration ............. 236
Additional User Verification Settings................................................................................. 240
Change LCD Password ....................................................................................................... 243
Additional User Control Settings ....................................................................................... 245
USB Menu..................................................................................................................... 251
Format USB Mass Storage device ...................................................................................... 252
Initialize USB Mass Storage device .................................................................................... 254
Import Data into Terminal ................................................................................................. 256
How to Import User Database ........................................................................................... 257
How to Import Contectless key .......................................................................................... 260
How to Import Language ................................................................................................... 262
Export Data in USB Mass Storage Device .......................................................................... 265
How to Export & View Transaction Logs ........................................................................... 266
How to Export Error Logs ................................................................................................... 269
How to Export User Database ........................................................................................... 271
How to Export Contectless key .......................................................................................... 273
Information Menu ........................................................................................................ 276
View Device Details ........................................................................................................... 277
View Firmware Information .............................................................................................. 279
View Sensor Revision Information ..................................................................................... 280
View Communication Parameters ..................................................................................... 281
View Memory Status ......................................................................................................... 284
View User Status ................................................................................................................ 285
View Transaction Log Status ............................................................................................. 287
Reboot Terminal ........................................................................................................... 288
SECTION 6 : MORPHOACCESS® TERMINAL : VIDEOPHONE FACILITY ................................... 290
Introduction to Videophone .......................................................................................... 291
Configure Video Phone Server ....................................................................................... 292
Viewing Video Phone Server Details .............................................................................. 295
Delete Video Phone Server ............................................................................................ 296
How User can make Video Call ...................................................................................... 298
SECTION 7 : TERMINAL MENU FOR MORPHOACCESS® SIGMA LITE+ SERIES ....................... 301
MorphoAccess® SIGMA Lite+ Series terminal Screens .................................................... 302
Terminal Home Screen....................................................................................................... 302
Terminal Information Menu .............................................................................................. 302
Terminal Details ................................................................................................................. 303
MorphoAccess® SIGMA Family Administrator Guide
Introduction
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
8
July 17
Communication Details ..................................................................................................... 304
Steps to Setup Wallpaper .............................................................................................. 305
Recover Corrupted Components .................................................................................... 306
Display Screens and Actions .......................................................................................... 307
SECTION 8 : TERMINAL CONFIGURATION THROUGH WEBSERVER ..................................... 311
Access to Administration Menu through Webserver ...................................................... 312
Login to Webserver ............................................................................................................ 314
User Enrollment in Database ............................................................................................. 315
User Enrolment in Card...................................................................................................... 321
User Enrolment in Card & Database ................................................................................. 323
Update User Information................................................................................................... 325
Delete User ........................................................................................................................ 327
Card Manager .................................................................................................................... 329
SECTION 9 : USB SCRIPTS .................................................................................................. 343
USB Scripts ................................................................................................................... 344
SECTION 10 : ACCESS CONTROL .................................................................................... 345
Access control presentation .......................................................................................... 346
Typical architecture of an access control system .............................................................. 346
Typical access control process ........................................................................................... 347
Preliminary: adding a biometric template in local database .......................................... 348
MorphoAccess® SIGMA Family terminal operating modes ............................................. 349
Standalone mode or Slave mode ....................................................................................... 349
Standalone mode: Identification and/or Authentication .................................................. 349
Access Control Process in Identification Mode .................................................................. 350
Access Control Process in Authentication Mode ............................................................... 351
Access Control Process for VIP Users ................................................................................. 352
Access Control Result .................................................................................................... 353
Information for the User .................................................................................................... 353
Information for the Administrator..................................................................................... 353
Integration in an Access Control System ........................................................................... 353
Access Granted .................................................................................................................. 354
Access Denied .................................................................................................................... 354
SECTION 11 : ACCESS CONTROL BY IDENTIFICATION ......................................................... 355
Identification Mode Description .................................................................................... 356
Identification Process ........................................................................................................ 356
Access Control by Identification ........................................................................................ 356
MorphoAccess® SIGMA Family Administrator Guide
Introduction
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
9
July 17
Result of the access control request .................................................................................. 356
User’s Data required in the terminal ................................................................................. 356
Identification Modes (database extension licenses) ......................................................... 356
Compatibility with Access Control Systems ....................................................................... 357
User Interface .................................................................................................................... 358
SECTION 12 : ACCESS CONTROL BY AUTHENTICATION ....................................................... 359
Authentication Process ................................................................................................. 360
Introduction ....................................................................................................................... 360
Authentication process ...................................................................................................... 360
Access control by authentication ...................................................................................... 360
Contactless Smart Card ..................................................................................................... 361
List of contactless cards validated ..................................................................................... 361
Authentication Process Options ........................................................................................ 363
Manual bypass of biometric control .................................................................................. 363
Automatic bypass of biometric control ............................................................................. 365
Result of access control check ........................................................................................... 365
Compatibility with Access Control Systems ....................................................................... 365
Selection of user’s contactless card type (MIFARE® and/or DESFire®).............................. 366
Biometric check, biometric data on user's card .............................................................. 368
Description ......................................................................................................................... 368
User’s data required in the terminal ................................................................................. 368
User’s data required on the user’s card ............................................................................ 368
Activation key .................................................................................................................... 368
User Interface .................................................................................................................... 369
PIN verification - PIN stored on card .............................................................................. 370
Description ......................................................................................................................... 370
User’s data required in the terminal ................................................................................. 370
User’s data required on the user’s card ............................................................................ 370
Activation key .................................................................................................................... 371
User Interface .................................................................................................................... 372
BIOPIN verification - BIOPIN stored on card ................................................................... 373
Description ......................................................................................................................... 373
User’s data required in the terminal ................................................................................. 373
User’s data required on the user’s card ............................................................................ 373
Activation key .................................................................................................................... 373
User Interface .................................................................................................................... 374
MorphoAccess® SIGMA Family Administrator Guide
Introduction
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
10
July 17
Biometric check and biometric data in local database ................................................... 375
Description ......................................................................................................................... 375
User’s data required in the terminal ................................................................................. 375
User’s data required on the user’s card ............................................................................ 375
Activation key .................................................................................................................... 376
User interface .................................................................................................................... 376
Authentication with local database: User ID entered from keyboard ............................. 377
Description ......................................................................................................................... 377
Activation key .................................................................................................................... 377
Authentication with local database: ID input from Wiegand or Clock & Data ................. 378
Description ......................................................................................................................... 378
Activation key .................................................................................................................... 378
Wiegand Frame Configuration .......................................................................................... 380
Site-code Propagation ....................................................................................................... 381
Wiegand frame example (26 bits) ..................................................................................... 381
No biometric check, no User ID check ............................................................................ 382
Description ......................................................................................................................... 382
User’s data required in the terminal ................................................................................. 382
User’s data required on the user’s card ............................................................................ 382
Activation key .................................................................................................................... 383
User Interface .................................................................................................................... 383
No biometric check, User Identifier in the database ....................................................... 384
Description ......................................................................................................................... 384
User’s data required in the terminal ................................................................................. 384
User’s data required on the user’s card ............................................................................ 384
Activation key .................................................................................................................... 385
User Interface .................................................................................................................... 386
Authentication process specified by User's card ............................................................. 387
Description ......................................................................................................................... 387
User’s data required in the terminal ................................................................................. 387
User’s data required on the user’s card ............................................................................ 387
Activation key .................................................................................................................... 388
User Interface .................................................................................................................... 388
Allowed format for User's identifier .............................................................................. 390
TLV structured data ........................................................................................................... 390
Binary Data ........................................................................................................................ 392
MorphoAccess® SIGMA Family Administrator Guide
Introduction
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
11
July 17
SECTION 13 : MULTIFACTOR ACCESS CONTROL MODE ...................................................... 395
Multi-factor Mode ........................................................................................................ 396
Description ......................................................................................................................... 396
User Interface .................................................................................................................... 396
User’s data required in the terminal ................................................................................. 396
User’s data required on the user’s card ............................................................................ 396
Activation keys ................................................................................................................... 397
SECTION 14 : TAMPER SETTINGS FOR TERMINAL SECURITY ............................................... 398
Tamper Setting for Terminal Security ............................................................................ 399
SECTION 15 : WIEGAND CONFIGURATIONS ....................................................................... 400
Wiegand Parameters Settings ....................................................................................... 401
Wiegand Parameters Configuration through Webserver ................................................. 402
SECTION 16 : THREAT LEVEL CONFIGURATIONS ................................................................ 405
Threat Level Configuration ............................................................................................ 406
Threat Level Configuration through Webserver ................................................................ 406
SECTION 17 : TIME AND ATTENDANCE CONFIGURATION ................................................... 408
Time and Attendance Synoptic ...................................................................................... 409
T&A Mode in MorphoAccess® SIGMA Lite+ Series ............................................................ 411
T&A Mode Mandatory or Optional Scenarios ................................................................... 415
Time and Attendance configuration through Webserver ................................................. 416
T&A - Mandatory Mode Work Flow Diagram ................................................................... 418
T&A - Non Mandatory Mode Work Flow Diagram ............................................................ 419
SECTION 18 : CONFIGURING SCHEDULES ........................................................................... 420
Configuring Schedules ................................................................................................... 421
Define Access Schedule ...................................................................................................... 421
Define Holiday Schedule .................................................................................................... 425
SECTION 19 : CONTROLLER FEEDBACK .............................................................................. 429
Controller Feedback ...................................................................................................... 430
SECTION 20 : OSDP PROTOCOL SUPPORT .......................................................................... 434
Description ......................................................................................................................... 435
Configurations ................................................................................................................... 435
OSDP Commands and Responses ................................................................................... 436
SECTION 21 : USER CONTROL CONFIGURATIONS ............................................................... 441
User Control Configurations .......................................................................................... 442
SECTION 22 : EVENT CONFIGURATIONS ............................................................................ 446
Event Configurations .................................................................................................... 447
MorphoAccess® SIGMA Family Administrator Guide
Introduction
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
12
July 17
SECTION 23 : MMI (MAN-MACHINE INTERFACE) CONFIGURATIONS .................................. 449
MMI (Man-Machine Interface) Menu ............................................................................ 450
SECTION 24 : PROXY MODE .............................................................................................. 452
Presentation of Proxy (or slave) mode ........................................................................... 453
Process ............................................................................................................................... 453
Local signals ....................................................................................................................... 454
Proxy mode use sample ..................................................................................................... 455
Proxy mode activation ....................................................................................................... 455
SECTION 25 : POLLING MODE ........................................................................................... 456
Presentation of Polling mode ........................................................................................ 457
Process ............................................................................................................................... 457
Polling mode activation ..................................................................................................... 458
SECTION 26 : MESSAGES SENDING .................................................................................... 459
Principle ....................................................................................................................... 460
Events .......................................................................................................................... 461
Sending Interfaces ........................................................................................................ 462
SECTION 27 : COMPATIBILITY WITH AN ACCESS CONTROL SYSTEM ................................... 463
Internal Relay activation on Access Granted result ........................................................ 464
Description ......................................................................................................................... 464
Activation key .................................................................................................................... 465
Configuration key .............................................................................................................. 466
External activation of the internal relay ........................................................................ 467
Description ......................................................................................................................... 467
Activation key .................................................................................................................... 468
Configuration key .............................................................................................................. 468
Access Request Result Log File ...................................................................................... 469
Description ......................................................................................................................... 469
Log File management ........................................................................................................ 469
Log File size ........................................................................................................................ 469
Activation key .................................................................................................................... 470
Sending an Access Control Result Message .................................................................... 471
Presentation ...................................................................................................................... 471
Ports and protocols ............................................................................................................ 471
Serial Port (Output only) .................................................................................................... 472
Ethernet port ..................................................................................................................... 474
Wi-Fi™ Channel .................................................................................................................. 474
MorphoAccess® SIGMA Family Administrator Guide
Introduction
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
13
July 17
Note about Terminal Clock Deviation ................................................................................ 475
SECTION 28 : TERMINAL USER INTERFACE ......................................................................... 476
Audio Man Machine Interface ....................................................................................... 477
Audible signal .................................................................................................................... 477
Terminal States .................................................................................................................. 478
Enrolment .......................................................................................................................... 481
LED – Buzzer Sequence ...................................................................................................... 483
SECTION 29 : COMPATIBILITY ACCESSORIES, SOFTWARE LICENSES AND SOFTWARE
APPLICATIONS.................................................................................................................. 486
Compatible Accessories & Software Licenses ................................................................. 487
Compatible software applications ................................................................................. 488
SECTION 30 : RECOMMENDATIONS .................................................................................. 489
Warning ....................................................................................................................... 490
General precautions .......................................................................................................... 490
Areas containing combustibles .......................................................................................... 490
Specific precautions for terminals fitted with a contactless smartcard reader ................ 490
SD card ............................................................................................................................... 491
Ethernet connection .......................................................................................................... 491
Date / Time synchronization ............................................................................................. 491
Cleaning precautions ......................................................................................................... 491
Recommended Conditions for Face Detection .................................................................. 492
ANNEX 1 : FINGER PLACEMENT RECOMMENDATION ....................................................... 493
ANNEX 2 : COMPARISON OF AUTHENTICATION MODE WITH CONTACTLESS CARD ........... 500
ANNEX 3 : BIBLIOGRAPHY ............................................................................................... 503
ANNEX 4 : GLOSSARY, ACRONYMS AND ABBREVIATION .................................................. 511
ANNEX 5 : SUPPORT ........................................................................................................ 515
MorphoAccess® SIGMA Family Administrator Guide
Introduction
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
14
July 17
Section 1 : Introduction
MorphoAccess® SIGMA Family Administrator Guide
Introduction
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
15
July 17
MorphoAccess® SIGMA Family Series Terminal
Congratulations for choosing a MorphoAccess® SIGMA Family Series Automatic Fingerprint
Recognition Terminal.
MorphoAccess® SIGMA Family provides an innovative and effective solution for access control
applications using Fingerprint identification.
Amongst a range of alternative biometric technologies, the use of finger imaging has significant
advantages, i.e., each finger constitutes an unalterable physical signature, developed before
birth and preserved until death. Unlike DNA, a finger image is unique for each individual; even
identical twins.
The MorphoAccess® SIGMA Family Series terminals integrate Morpho image processing and
feature matching algorithms. This technology is based on lessons learned during 25 years of
experience in the field of biometric identification and the creation of literally millions of
individual fingerprint identification records.
Designed for physical access control applications, MorphoAccess® SIGMA Family Series
terminals feature a compact, attractive design, coupled with high reliability and security. These
th
5
generation terminals are both robust and easy to use for a variety of applications, including
office, headquarters and administrative building security, as well as protection of external
access points.
To ensure the most effective use of terminal, an administrator should read this User Guide
thoroughly.
MorphoAccess® SIGMA Family Administrator Guide
Introduction
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
16
July 17
Terminal
Series
Terminal Name
Biometrics
Contactless smartcard reader
Outdoor
iCLASS®
iCLASS®
SE
MIFARE®
DESFire®
NFC®
Prox
®
MorphoAccess®
SIGMA Series
MorphoAccess® SIGMA
MorphoAccess® SIGMA
WR
MorphoAccess® SIGMA
iCLASS®
MorphoAccess® SIGMA
iCLASS® WR
MorphoAccess® SIGMA
Multi
MorphoAccess® SIGMA
Multi WR
MorphoAccess® SIGMA
Prox
MorphoAccess® SIGMA
Prox WR
MorphoAccess®
SIGMA Lite
Series
MorphoAccess® SIGMA
Lite
MorphoAccess® SIGMA
Lite+
Scope of the document
This document is intended to guide administrators on ‘How to setup and use’ the
MorphoAccess® SIGMA Family Series terminal. It also talks about capabilities, and the possible
configurations that can be done along with detailed steps and snapshots. On top of this an
administrator can learn about access control processes, compatibility with access control
systems, Time & Attendance mode and how terminal is configurable through Webserver.
In order to setup and use the MorphoAccess® SIGMA Family terminal in the most efficient way,
it is recommended for the Administrator to thoroughly read this guide.
MorphoAccess® SIGMA Family Administrator Guide
Introduction
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
17
July 17
Terminal
Series
Terminal Name
Biometrics
Contactless smartcard reader
Outdoor
iCLASS®
iCLASS®
SE
MIFARE®
DESFire®
NFC®
Prox
®
MorphoAccess® SIGMA
Lite iCLASS®
MorphoAccess® SIGMA
Lite + iCLASS®
MorphoAccess® SIGMA
Lite Multi
MorphoAccess® SIGMA
Lite + Multi
MorphoAccess® SIGMA
Lite Prox
MorphoAccess® SIGMA
Lite + Prox
MorphoAccess®
SIGMA Extreme
Series
MorphoAccess® SIGMA
Extreme iCLASS®
MorphoAccess® SIGMA
Extreme Multi
MorphoAccess® SIGMA
Extreme Prox
MorphoAccess® SIGMA
Extreme FFD iCLASS®
MorphoAccess® SIGMA
Extreme FFD Multi
MorphoAccess® SIGMA
Extreme FFD Prox
NOTE: Here, WR indicates terminal is Weather Resistant.
MorphoAccess® SIGMA Family Administrator Guide
Introduction
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
18
July 17
About Biometrics
About fingerprint biometrics
Fingerprints are permanent and unique. They are formed before birth and last throughout one's
life. Classification and systematic matching of fingerprints for different purposes have been in
use since the late 19th century.
The skin on the underside of fingers is different from the skin on other areas of a human body.
This skin has raised lines called; ‘ridges’.
These ridges do not run continuously from one side to the other, rather they may curve, end, or
divide into two or more ridges (bifurcation and endings). Barring accidental or intentional
mutilation, the ridge arrangement is permanent.
Fingerprints can be divided into three major ridge patterns such as Whorls, Loops and Arches.
Unique characteristics known as Minutiae identify those points of a fingerprint wherein the
ridges become either bifurcation or endings, as illustrated in Figure 1. These minutiae are the
unique features, which form the basis of any system using fingerprint comparison techniques
for identification and verification purposes.
Figure 1: Minutiae are classified in two categories i.e. ridge ending and bifurcation
Fingerprint is a mature biometrics, in use for various applications based on individual’s
authentication or identification, as it offers an excellent trade-off between criterias such as user
acceptance, easiness of use, performance, stability, cost effectiveness and interoperability.
Since the early eighties, Morpho has carried an extensive research in the field of studying
fingerprints and continually refined its expertise in the domain of fingerprint based recognition
systems. It has lead the market in studied fingerprint characteristics and continually refined its
expertise in fingerprint identification technology, developing first AFIS systems (Automated
Fingerprint Identification Systems) and then applying its unique know-how and worldwide
leading position to markets such as physical access control (premises), logical access control
(computers and networks), secure payment transactions and OEM applications.
MorphoAccess® SIGMA Family Administrator Guide
Introduction
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
19
July 17
Templates supported
Morpho terminals are able to manage external templates. Following is the list of supported
templates.
Morpho private fingerprint template formats
PK_COMPV2, fingerprint template format (minutiae).
PK_MAT, little endian fingerprint template format (minutiae).
PK_LITE, fingerprint template format (minutiae).
Morpho private multimodal template formats
PK_FVP multimodal template format.
L-1 Bioscrypt private fingerprint template formats
TEM from 4G, fingerprint template format (pattern) (only used for 1/1 matching)
VUR from 4G, fingerprint template format (pattern) (only used for 1/1 matching)
BUR from 4G, fingerprint template format (pattern and minutiae) (used for 1/1 and 1/N
matching)
Public fingerprint template formats
ANSI INCITS 378-2004, fingerprint template format
ISO/IEC 19794-2 2004, Finger Minutiae Record
ISO/IEC 19794-2 2004, Finger Minutiae Card Record:
Normal Size
Compact Size
Compact Size, minutiae ordered by Ascending Angle
MINEX_A, fingerprint template format
DIN V66400, Compact Size fingerprint template format (minutiae)
DIN V66400, Compact Size fingerprint template format (minutiae ordered by Ascending Angle)
MorphoAccess® SIGMA Family Administrator Guide
Introduction
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
20
July 17
Feature/Function name
SIGMA Series
SIGMA Extreme Series
SIGMA Lite Series
Feature 1
✔
✖
Feature 2
✔
✔
Feature
SIGMA Series
SIGMA Extreme Series
SIGMA Lite Series
Terminal Administration Menu
✔
✖
Webserver Application
✔
✔
Notation
Product support notation:
In this document, the term “MorphoAccess® SIGMA Family terminal” is considered either
“MorphoAccess® SIGMA” or “MorphoAccess® SIGMA Lite” or “MorphoAccess® SIGMA
Extreme” Series terminal, unless it is explicitly mentioned. The term “MorphoAccess® SIGMA
Lite” is also considered “MorphoAccess® SIGMA Lite+” Series terminal, unless it is explicitly
mentioned. The applicability of feature for SIGMA/SIGMA Extreme and SIGMA Lite product is
described using following table format :
As MorphoAccess® SIGMA Series and MorphoAccess® SIGMA Extreme Series have almost the
same functionalities, they are ususally in the same column except when it is necessary to detail.
MorphoAccess® SIGMA Series have a 5’’ touchscreen color LCD in landscape mode.
MorphoAccess® SIGMA Extreme Series have a 5’’ touchscreen color LCD in portrait mode.
For example, “Terminal Administration Menu” is available to SIGMA/SIGMA Extreme Series
product and not available to SIGMA Lite Series product. “Webserver Application” is available
to SIGMA and SIGMA Lite Series.
MorphoAccess® SIGMA Family Administrator Guide
Introduction
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
21
July 17
Parameter name
Value
Description
_ _ _
Parameter name
Value
Description
auth_param.additional_bio_c
heck_nb_attempt
1, 2 or 3
A value of “2” means that after a first incorrect
identification or authentication a second chance
is given to place finger on the biometric sensor.
Set this parameter to “1” to offer only one
attempt to place finger.
Set this parameter to “3” to offer 3 attempts.
Parameter description:
In this document a parameter is described using this format:
For example to allow additional attempt for biometric authentication:
MorphoAccess® SIGMA Family Administrator Guide
Connecting the Terminal to a PC
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
22
July 17
Section 2 : Connecting the
Terminal to a PC
MorphoAccess® SIGMA Family Administrator Guide
Connecting the Terminal to a PC
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
23
July 17
IP address Mode
Parameter
Factory value
Static
Terminal IP address
192.168.1.10
Gateway IP address
192.168.1.254
Sub network mask
255.255.254.0
Host name
MAsigma/MAsigma-lite/MAsigma-liteplus/MAextreme
General
Why would one connect the terminal to a PC?
The MorphoAccess® SIGMA Family terminal is designed to be able to run in standalone mode,
it means without any connection to a master system. But sometimes, a connection with a PC is
useful to perform tasks like:
Configuring the terminal.
Maintaining terminal: firmware upgrade, add a license (to unlock an optional feature)
Managing the database, i.e., adding or deleting or modifying the user data.
Managing log files, i.e., get or delete the log files.
Configuring the Wi-Fi™ connection.
Connection methods
The MorphoAccess® SIGMA Family terminal can be connected to a PC by an Ethernet cable,
either directly or through a LAN. The LAN can be reduced to only one Ethernet switch.
Once physically connected, the MorphoAccess® SIGMA Family terminal can be configured using
an application such as MorphoBioToolbox.
A POE (Power over Ethernet) current injector is mandatory if the MorphoAccess® SIGMA Family
terminal is not powered by the +12VDC/GND wires block.
Network parameter initialization
The ‘default’ network parameters of the MorphoAccess® SIGMA Family terminal are:
If the terminal’s default network parameter values cannot be used, it is recommended to refer
to the “Communication menu” to change these values.
MorphoAccess® SIGMA Family Administrator Guide
Connecting the Terminal to a PC
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
24
July 17
Point to Point Ethernet Connection
The MorphoAccess® SIGMA Family terminal can be connected directly to a PC by an Ethernet
cable.
The administrator needs to consider the points mentioned below prior to connecting the
terminal directly to a PC via an Ethernet cable.
If the Ethernet port of the PC does not support the Auto-MDIX feature, then a crossover
Ethernet cable is mandatory. If no crossover Ethernet cable is available, then a switch can be
used (please refer to “Connection through only one Ethernet switch”).
If the PC that the administrator uses is already connected to a LAN, then it must be either
disconnected from the LAN, or equipped with a 2nd network interface board. This 2nd network
board will be dedicated to the connection with the terminal. The administrator may need to
modify the network parameters of the PC, in that case a Network or LAN administrator should
be contacted for seeking the best solution.
Figure 2: Direct Point to Point Ethernet Connection
MorphoAccess® SIGMA Family Administrator Guide
Connecting the Terminal to a PC
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
25
July 17
Connect an administrator
computer to the Ethernet
(1, 2, 3 or 4) port.
Connect terminal
to Ethernet
Connection through only one Ethernet switch
The MorphoAccess® SIGMA Family terminal can be connected to a PC through an Ethernet
switch. This is useful when no crossover cable is available, in that case the administrator can use
one Ethernet switch and two Ethernet standard cables.
WARNING: an Ethernet HUB doesn’t allow a connection between two of its ports. An
Ethernet switch is really mandatory.
Figure 3: Connection through an Ethernet switch
MorphoAccess® SIGMA Family Administrator Guide
Connecting the Terminal to a PC
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
26
July 17
Connection through a LAN
Description
The administrator can also connect the MorphoAccess® SIGMA Family terminal to a PC via Local
Area Network (LAN) by specifying a unique IP address or host name.
The IP address could be static or dynamically assigned by the DHCP server in the network. If the
administrator chooses to specify the host name of the terminal as its unique identifier, then in
that case the ‘terminal name’ must be added to the DNS server database by the network
administrator.
Figure 4: Connection through LAN
The administrator is recommended to connect MorphoAccess® SIGMA Family terminals on a
dedicated network in order to reduce possibilities of fraudulent access to the configuration of
the terminal. It is advised to contact the network administrator for more information on LAN
security strategies.
Before the administrator connects the MorphoAccess® SIGMA Family terminal to a LAN, it is
necessary to configure the LAN parameters into the terminal. The values of these parameters
are to be provided and/or approved by the network administrator.
LAN with DNS Server
When a DNS server is available in the LAN, the PC can request the connection to the
MorphoAccess® SIGMA Family terminal by using its host name instead of its IP address.
The network administrator must add the MorphoAccess® SIGMA Family terminal host name to
the DNS server database, otherwise a TCP open session request using the terminal’s hostname
will fail.
MorphoAccess® SIGMA Family Administrator Guide
Connecting the Terminal to a PC
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
27
July 17
It is useful to specify the MorphoAccess® SIGMA Family terminal by its host name, when the
DHCP mode is enabled, as the IP address of the terminal can change after a power up.
LAN without DNS Server
This section helps the administrator in connecting the MorphoAccess® SIGMA Family terminal
to a LAN that does not have a DNS server or when host name cannot be added to the DNS Server
database.
The PC is not able to establish a connection with a terminal using its host name. An IP address
of the MorphoAccess® SIGMA Family. terminal is the only way to specify the terminal.
For standard use (excluding unscheduled maintenance operations), it is recommended that the
administrator should not enable DHCP mode in this case. This is because in the DHCP mode the
IP address for the terminal can change each time it is restarted.
Static IP address (DHCP disabled)
This is the easiest way for an administrator to connect a MorphoAccess® SIGMA Family terminal
to a LAN. In this case, the IP address of the terminal remains the same after each reboot and
the Host System needs to know only this IP address in order to establish a connection with the
terminal.
The IP address of the MorphoAccess® SIGMA Family terminal must be reserved in the router by
the network administrator. The network administrator must also provide and/or approve the
network parameter values for the terminal, i.e.:
The MorphoAccess® SIGMA Family terminal IP address,
Gateway IP address,
Local subnet masks value.
WARNING: If the MorphoAccess® SIGMA Family terminal uses an IP address already
assigned in the network, the connection to the terminal will be unstable.
Dynamic IP address (DHCP enabled)
When the administrator enables the DHCP mode in the terminal, the terminal IP address and
other networking parameters are assigned automatically from the DHCP Server (network
routers). This address could be different after each start-up as it depends on the DHCP strategy
defined for the LAN.
MorphoAccess® SIGMA Family Administrator Guide
Connecting the Terminal to a PC
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
28
July 17
Wi-Fi™ Network configuration
Requirements
Wi-Fi™ connection is available under the following mandatory conditions:
The administrator must have plugged in a Morpho Wi-Fi™ USB adapter in the rear USB
port of the terminal.
Please refer to “MorphoAccess® SIGMA Series terminal USB port with a Wi-Fi™ adapter”
for MorphoAccess® SIGMA Series and for MorphoAccess® SIGMA Lite terminal refer to
MorphoAccess® SIGMA Lite Series Quick User Guide.
The administrator must ensure that a Wi-Fi™ license (dedicated to this terminal) must
be present in the terminal (as described in “Communication licenses”),
After the above operations ensure to reboot the terminal.
Configuration
The Wi-Fi™ network configuration is described in the section “Wi-Fi™ Network Configuration”
The Wi-Fi™ configuration parameters are described in the MorphoAccess® 5G Series –
Parameters Guide document.
Troubleshooting
If the administrator has configured the terminal to use the Wi-Fi™ connection with the Wi-Fi™
USB adapter plugged in and if there is no WI-FI™ license present, the MorphoAccess® SIGMA
Family terminal will emit a short-low tone.
To solve this issue, the administrator needs to unplug the Wi-Fi™ USB adapter and restart the
terminal.
The Wi-Fi™ configuration parameters are described in the MorphoAccess® 5G Series –
Parameters Guide document.
MorphoAccess® SIGMA Family Administrator Guide
Terminal Configuration and Administration
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
29
July 17
Section 3 : Terminal
Configuration and
Administration
MorphoAccess® SIGMA Family Administrator Guide
Terminal Configuration and Administration
2017_2000025464-v03
This document and the information therein are the property of Morpho. They must not
be copied or communicated to a third party without the prior authorization of Morpho
30
July 17
Feature
SIGMA Series
SIGMA Extreme Series
SIGMA Lite Series
Terminal Administration Menu
✔
✖
Webserver Application
✔
✔
Distant system Application
✔
✔
USB Scripts
✔
✔
Morpho Bio Toolbox
✔
✔
Understanding MorphoAccess® Configuration
Presentation
MorphoAccess® SIGMA Family terminal has factory default settings or reset values for all the
supported functionalities. The administrator can configure the terminal depending on the
desired level of security using one of the methods described below:
Terminal Administration Menu: The administrator can login to terminal and access
several functionalities under administration menu. This allows administrator to
perform configuration, add users, upload multimedia, download logs, etc. The
complete menus are covered in the subsequent sections of this document;
Webserver Application: Webserver can be termed as a remote configuration panel of
MorphoAccess® SIGMA Family terminal. Using Webserver, the administrator can
configure any parameter of the terminal while connected remotely. Webserver is
connected to the terminal through Ethernet or Wi-Fi™ network. Only an administrator
with full administrative rights can login to Webserver. Webserver also has a ‘Complete
Configuration’ tab from which the administrator can configure all possible
parameters.For detailed description of all the parameters, please refer to
MorphoAccess® 5G Series – Parameters Guide document.
Modifying the value of a parameter
There are two ways an administrator can modify the value of a terminal parameter:
Remotely through Ethernet or Wi-Fi™, with a client application/interface running on
the Host System (such as MorphoBioToolbox or a web browser connected to the
embedded Webserver),
With a USB mass storage key, which contains a script prepared on a PC using
MorphoBioToolBox.
Loading...