Page 1
SAGEM Défense Sécurité
TM
MORPHOACCESS
Installation Guide
MorphoAccess
TM
200/220/300
July 2006
Page 2
2
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 3
CONTENTS
INTRODUCTION 9
SAFETY INSTRUCTIONS 10
REPLACEMENT OF THE BATTERY LOCATED ON THE MOTHERBOARD 11
GENERAL DESCRIPTION 12
INSTALLATION PROCEDURE 13
STAGE 1: DRILLING THE MOUNTING HOLES 13
STAGE 2: MOUNTING THE METAL CHASSIS ASSEMBLY 14
STAGE 3: CONNECTING THE CHASSIS ASSEMBLY TO THE COVER ASSEMBLY 15
STAGE 4: CLOSING MORPHOACCESS™ 16
HOW TO UPGRADE MORPHOACCESS™ 200 TO 300 17
ELECTRICAL INTERFACE 18
TERMINAL BLOCK BOARD 18
POWER SUPPLY CABLE 19
COM1 RS422 SERIAL PORT WIRING 19
COM1 DEISTER WIRING (OPTIONAL) 20
ETHERNET WIRING 20
COM2 RS232 WIRING 21
WIEGAND OUTPUT WIRING 21
WIEGAND INPUT WIRING 22
DATA CLOCK OUTPUT WIRING 22
DATA CLOCK INPUT WIRING 23
OUTPUT RELAYS AND TAMPER SWITCHES 24
WIEGAND / DATACLOCK: MOTHERBOARD CONFIGURATION 25
USER INTERFACE 27
ACCESS CONTROL BY IDENTIFICATION (MORPHOACCESS™ 200) 28
ACCESS CONTROL BY IDENTIFICATION (MORPHOACCESS™ 300) 29
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
3
Page 4
ACCESS CONTROL BY AUTHENTICATION – ID SENT ON WIEGAND OR
DATACLOCK 31
CONTACTLESS AUTHENTICATION WITHOUT DATABASE 33
ID ONLY MODE 34
TEMPLATES OR BIOPIN CODE MODE 35
PIN CODE MODE 36
PIN CODE THEN TEMPLATES OR BIOPIN CODE MODE 37
CARD DEFINED MODE 39
CONTACTLESS AUTHENTICATION WITH : STANDARD CARD 40
CONTACTLESS AUTHENTICATION WITH DATABASE: BINARY ID 42
PROXY MODE 45
MERGED MODE 46
AUTHENTICATION MODE WITH DATABASE: USING KEYBOARD ID 47
SOFTWARE ADMINISTRATOR INTERFACE 48
BIOMETRIC MANAGEMENT OPERATIONS 49
BIOMETRIC MANAGEMENT BETWEEN TERMINAL AND MORPHOACCESS™ MANAGEMENT
SYSTEM (MMS) 49
BIOMETRIC MANAGEMENT IN STAND-ALONE MODE 50
INSERT TEMPLATE/ID IN DATABASE 51
REMOVE TEMPLATE/ID FROM DATABASE 51
REMOVE ALL TEMPLATE/ID FROM DATABASE 52
RESET CONFIGURATION TO FACTORY SETTINGS 52
WARM-UP RESET 52
ACCESS THE SET UP FUNCTIONS OF THE SYSTEM 54
CONFIGURATION MENU 56
HOW TO EDIT PARAMETERS? NETWORK PARAMETERS EXAMPLE 57
SYSTEM AND ADMIN PASSWORDS 59
MORPHOACCESS™ SYSTEM ADMINISTRATOR PIN 59
MORPHOACCESS™ ADMINISTRATOR PIN 59
4
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 5
SETTING UP HOST COMMUNICATION. 60
SETTING UP MATCHING PARAMETERS 61
SETTING UP JUVENILE RECOGNITION 61
SETTING UP ANTI-LATENCY 61
SETTING UP RECOGNITION MODE 62
MATCHING THRESHOLD 64
USER INTERFACE SETTINGS 66
MULTILINGUAL APPLICATION 66
IDENTIFICATION INFORMATION 67
CLOCK 68
IDLE MODE 68
DISPLAY PERSONALIZATION 69
SETTING UP CONTACTLESS READER PARAMETERS 70
LOG FILE 72
SETTING UP TIME MASK 73
SETTING UP DOWNLOAD AGENT - (SDL) 74
WIEGAND / DATACLOCK CONFIGURATION 75
NOTE 75
WIEGAND / DATACLOCK : ID SENDING 75
WIEGAND / DATACLOCK : ADVANCED INFORMATIONS 76
WIEGAND : FACILITY CODE 76
WIEGAND : FACILITY CODE VERIFICATION 77
DATACLOCK : DATA AND STROBE LEVELS 77
WIEGAND / DATACLOCK : LED OUT – CARD PRESENT SIGNALS 77
WIEGAND / DATACLOCK : LED IN SIGNAL 79
SETTING UP WIEGAND INTERFACE 80
ID SENDING ON UDP 82
ID SENDING ON RS232 OR RS422 83
ID SENDING ON « COM1 » 83
ID SENDING ON « COM2 » 83
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
5
Page 6
SERIAL PORT PARAMETERS 85
COM1 PORT (SER0) 85
USING A DEISTER CONTACTLESS READER ON COM1 86
COM2 PORT (SER1) 86
RELAY ACTIVATION 87
TIME AND ATTENDANCE 88
THE VERSION MENU 91
THE SERIAL NUMBER MENU 92
THE SETTING MENU 93
ACCESS THE MIFARE KEYS UPDATE MENU (MORPHOACCESS 220) 95
CONTACTLESS CARD DATA STRUCTURE (MORPHOACCESS 220 ONLY) 97
DATA STRUCTURE 97
MORPHOACCESS™ TAGS 97
ADMIN CARD FORMAT (MORPHOACCESS 220 ONLY) 99
SAGEM KEYS 99
MAPPING 100
COMMUNICATION PROTOCOL 101
MORPHOACCESS TECHNICAL CHARACTERISTICS 102
DISPLAY 102
KEYBOARD 102
FUSE 102
MEMORY 102
PERIPHERALS INTERFACES 102
POWER SUPPLY 102
SIZE AND WEIGHT 103
ENVIRONMENTAL CONDITIONS 103
STORAGE CONDITIONS 103
CLEANING PRECAUTIONS 103
RECOMMENDATIONS 104
6
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 7
AREAS CONTAINING COMBUSTIBLES 104
GENERAL PRECAUTIONS 104
ETHERNET CONNECTION 104
DATE / TIME SYNCHRONISATION 105
WARNING 105
APPENDIX 1 - ETHERNET COLOR STANDARD 106
RJ45 PINOUT 106
APPENDIX 2 - WIEGAND DATA FORMAT 107
EXAMPLES 108
APPENDIX 3 - ISO 7811/2-1995 - TRACK 2 DATACLOCK FORMAT 109
DATA ENCODING TABLE 109
DATACLOCK LEVELS 111
APPENDIX 4 - RESERVED CONFIGURATION 112
APPENDIX 5 - FINGERPRINT PLACEMENT RULES 113
APPENDIX 6 – RECOGNITION MODES 114
BIBLIOGRAPHY 115
DRILLING TEMPLATE 116
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
7
Page 8
8
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 9
IINNTTRROODDUUCCTTIIOONN
Congratulations for choosing the SAGEM MorphoAccess™
Fingerprint Recognition Terminal. MorphoAccess™ provides an innovative
and effective solution for access control or time and attendance
applications using Fingerprint Verification or/ and Identification.
Among a range of alternative biometric techniques, the use of finger
imaging has significant advantages : each finger constitutes an unalterable
physical signature which develops before birth and is preserved until
death. Unlike DNA, a finger image is unique to each individual - even
identical twins.
The MorphoAccess™ terminal integrates SAGEM image processing
and feature matching algorithms (MorphoSoft™ and MorphoImaging™).
This technology is based on lessons learned during 18 years of experience
in the field of biometric identification and the creation of literally millions of
individual fingerprint identification records.
We believe you will find the SAGEM MorphoAccess™ fast, accurate, easy
to use and suitable for physical access control or time and attendance.
The SAGEM MorphoAccess™ offers the following advantages:
1
Automatic
• High quality optical scanner.
• Supports multiple input/output interfaces used in the physical
access control industry.
• Local area network interface for easy interaction with other host
systems.
• Compact size for easy installation and integration into your
available office space.
• Intuitive interface that is easy to use in both setup and
operational modes.
• Extensive, flexible flash memory for data storage (user data,
biometric templates, etc.).
To e n s u r e th e m o s t e f f e ct i v e u s e o f y o u r S A G E M MorphoAccess™, we
recommend that you read this Installation Guide totally.
1
The SAGEM logo and trademark are the property of SAGEM Défense Sécurité.
All other trademarks or product names are trademarks or product names of the respective title
holders.
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
9
Page 10
SSAAFFEETTYY IINNSSTTRRUUCCTTIIOONNSS
The installation of this product should be made by a qualified service
Person and should conform to all local codes.
It is strongly recommended to use a class II power supply at 12 V ±5% and
2.5 A/min according with Safety Electrical Low Voltage (SELV). The 12 V
power supply cable length should not exceed 3 meters.
This product is intended to be installed in accordance with the NEC Class
2 requirements; or supplied by a listed external Power Unit marked Class
2, Limited Power source, or LPS and rated 12 V DC, 2.5 A minimum.
In case of building to building connection it is recommended to connect 0V
to ground. Ground cable must be connected with the terminal block board
fixation screw marked with universal ground symbol.
Warning:: The user could connect the MorphoAccess™ 0V to
Ground only if the MorphoAccess™ was before connected and tested in
working.
Europe : SAGEM hereby declares that the SAGEM MorphoAccess™
has been tested and found compliant with the below listed standards as
required by the EMC Directive 89/336/EEC: EN55022 (1994)/EN55024
(1998) and by the low voltage Directive 73/23/EEC amended by
93/68/EEC: EN60950 (2000).
USA: This equipment has been tested and found compliant with Class B
digital device requirements, pursuant to part 15 of the FCC Rules. These
requirements are designed to ensure reasonable protection against
harmful RF interference in a residential installation.
This equipment generates, uses and can radiate radio frequency energy
and, if not installed and used in accordance with the instructions, may
interfere with radio communications. If this equipment interferes with radio
or television reception - which can be determined by disconnecting and reconnecting the unit – the user is encouraged to try to correct the
interference by one or more of the following measures :
• Reorient or relocate the receiving antenna.
• Increase the separation between the equipment and receiver.
• Connect the equipment into an outlet on a circuit different from that
to which the receiver is connected.
• Consult the dealer or an experienced radio/TV technician for help.
10
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 11
RREEPPLLAACCEEMMEENNTT OOFF TTHHEE BBAATTTTEERRYY LLOOCCAATTEEDD OONN TTHHEE MMOOTTHHEERRBBO
O
CAUTION
Danger of explosion if battery is incorrectly
replaced.
Replace only with the same or equivalent type
recommended by the manufacturer.
Must be disposed of properly.
ATTENTION
ll y a danger d’explosion s’il y a remplacement
AARRDD
incorrect de la batterie.
Remplacer uniquement avec une batterie du
même type ou d’un type équivalent recommandé
par le constructeur.
Éliminer de façon appropriée.
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
11
Page 12
r
r
t
y
GGEENNEERRAALL DDEESSCCRRIIPPTTIIOONN
Display
136 x 34 dots
Function keys
Keyboard
Senso
MIFARE
Card reade
(MA220 only)
Mounting keyholes
Cable entry
Anti-thef
entr
Metal chassis
12
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 13
IINNSSTTAALLLLAATTIIOONN PPRROOCCEEDDUURREE
SSttaaggee 11:: DDrriilllliinngg tthhee mmoouunnttiinngg hhoolleess
Mounting and cable entry hole location (rear view)
a) Drill the 2 holes for the screws for the mounting keyholes so that the
cable entry is in a suitable position for your cabling, using the dimensional
drawing above.
b) Drill the hole for the third screw in the centre of the slot so that it is
possible to correct the position later, if necessary.
c) The mounting screws must be 5 mm diameter maximum.
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
13
Page 14
y
SSttaaggee 22:: MMoouunnttiinngg tthhee mmeettaall cchhaassssiiss aasssseemmbbllyy
Tamper switch
a) Disconnect the ribbon cable between the motherboard and the terminal
block board so that the assembly shown above can be detached from the
rest of MorphoAccess™.
b) Pass the connecting cables through the cable entry.
Chassis bold receivers
Cable entr
Terminal block board
c) Position the chassis assembly against the wall using the two screws in
the mounting keyholes.
d) Hold the chassis in place with a screw through the mounting slot.
e) Adjust the position, and fix in place by tightening all three screws.
f) Connect cables to terminal blocks (see the detailed instructions in the
following sections).
14
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 15
y
y
SSttaaggee 33:: CCoonnnneeccttiinngg tthhee cchhaassssiiss aasssseemmbbllyy ttoo tthhee ccoov
Ribbon cable connector location
Tamper switch
veerr aasssseemmbbllyy
Cover assembly Chassis assembly
Motherboard/terminal block board
ribbon cable connectors
Position of the ribbon cable as the case is closed
Cover assembl
The ribbon cable must be folded as
shown so that the case closes
easily without damaging the cable
Chassis assembl
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
15
Page 16
y
SSttaaggee 44:: CClloossiinngg MMoorrpphhooAAcccceessss™™
Lip
When the ribbon cable has been
connected between the two assemblies
(see stage 3), the cover assembly is fitted
to the chassis assembly.
1 The lip on the cover slides behind
the chassis, to fit over the catch shown on
the diagram above.
Catch for the cover assembly lip
2 The cover is fitted onto the chassis
by rotating it.
16
Fit the two M4x10 assembl
screws. Use screwdriver TORX 20
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Assembled
MorphoAccess
TM
Page 17
HHOOWW TTOO UUPPGGRRAADDEE MMOORRPPHHOOAACCCCEESSSS™™ 220000 TTOO 330000
This operation requires that the MorphoAccess™ is powered off.
External flash card
When external flash card is inserted, the MorphoAccess™ 200 becomes a
MorphoAccess™ 300. From then, all database information will be stored
on the new media.
Warning: All database information of the MorphoAccess™ 200 is lost.
Warning: 12 pin card flash must be connected on the most right
position on the 13 pin motherboard connector. One pin of the motherboard
connector must be visible on the left side of the external card flash while
connected.
Bad positioning may damage the external card flash.
For more information, refer to the MorphoAccess Host System Interface
Specifications.
This upgrade is available for products with serial number starting with
01511XXXX.
This remark does not concern 13 pin card.
After card flash installation, for the first terminal power on, a memory
initialization is performed during approximated 1 minute, then will increase
the terminal starting time.
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
17
Page 18
EELLEECCTTRRIICCAALL IINNTTEERRFFAACCEE
TTeerrmmiinnaall bblloocckk bbooaarrdd
For EMC compatibility in order to be EC and FCC compliant (EN55022,
EN55024 FCC part 15), it must be set an axial ferrite bead (2 turns) with
the 12 V supply cable, and for any interface cable used, except Ethernet
LAN.
J1 5 pin block Ethernet Interface (LAN 10 Mbps)
J3 2 pin block 12 V supply ± 5% regulated
J4 4 pin block Wiegand output to host or Data Clock
output
J5 5 pin block Wiegand peripheral input or Data Clock
output
J7 5 pin block COM1 RS422 serial interface
J8 7 pin block Output relay and Tamper-Switch
J9 34 way ribbon cable Cable connection to main assembly
J11 5 pin block COM2 reduced RS232C serial
18
F1 Fuse 2.5 A quick blow fuse
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 19
PPoowweerr ssuuppppllyy ccaabbllee
The terminal blocks are shown viewed from the front with the chassis
assembly in its normal position on the wall.
Terminal block J3
Pin 1 +12 V Power
Pin 2 Ground Power
Power supply 12 V ± 5% (regulated) 2.5 A
CCOOMM11 RRSS442222 sseerriiaall ppoorrtt wwiirriinngg
Terminal block J7
Pin 1 Rx+ Input
Pin 2 Rx- Input
Pin 3 Tx+ Output
Pin 4 Tx- Output
Pin 5 Ground Ground
For a half-duplex RS422 connection, only Tx+, Tx- and ground are
connected. Otherwise, as the unit is a peripheral, the connections must be
crossed over: Rx on the MorphoAccess™ is connected to Tx on the host
and Tx on the MorphoAccess™ is connected to Rx on the host.
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
19
Page 20
CCOOMM11 DDeeiisstteerr wwiirriinngg ((ooppttiioonnaall))
Terminal block J7
Pin 3 A Input/Output
Pin 4 B Input/Output
To use the features of the optional Deister contactless card reader,
connect the AB wires to the Tx port.
AB wires are connected to the Deister contactless card reader as defined
in its install manual.
For more information about this option, please contact your SAGEM sales
representative.
EEtthheerrnneett wwiirriinngg
Terminal block J1
Pin 1 Rx+ Input
Pin 2 Rx- Input
Pin 3 Tx+ Output
Pin 4 Tx- Output
Pin 5 Ground Ground
20
See Ethernet color standard Appendix.
See Ethernet connection recommendations in Recommendations section.
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 21
CCOOMM22 RRSS223322 wwiirriinngg
For a reduced RS232C (no handshake), only TxD, RxD and ground are
connected on J11.
Terminal block J11: Reduced RS232
Pin 5 RxD Input
Pin 6 Not connected
Pin 7 TxD Output
Pin 8 Not connected
Pin 9 Ground Ground
WWiieeggaanndd oouuttppuutt wwiirriinngg
Terminal block J4
Pin 1 Data 0 Output
Pin 2 Data 1 Output
Pin 3 LEDin Input
Pin 4 Ground Ground
Electrical interface conforms to the Security Industry Association's
Wiegand standard March 1995.
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
21
Page 22
WWiieeggaanndd iinnppuutt wwiirriinngg
Terminal block J5
Pin 1 Data 0 Input
Pin 2 Data 1 Input
Pin 3 LEDin Output
Pin 4 +12V Power
Pin 5 Ground
Electrical interface conforms to the Security Industry Association's
Wiegand standard March 1995.
The supply available to the peripheral is +12 V at 250 mA max.
DDaattaa CClloocckk oouuttppuutt wwiirriinngg
Terminal block J4
Pin 1 Data Output
Pin 2 Clock Output
Pin 3 Not connected
22
Pin 4 Ground Ground
The electrical interface is 5 V TTL.
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 23
Terminal block J5
Pin 3 Card present Output
DDaattaa CClloocckk iinnppuutt wwiirriinngg
Terminal block J5
Pin 1 Data Input
Pin 2 Clock Input
Pin 3 Not connected
Pin 4 Not connected
Pin 5 Ground Ground
The electrical interface is 5 V TTL compatible.
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
23
Page 24
OOuuttppuutt rreellaayyss aanndd TTaammppeerr sswwiittcchheess
A three-pin relay output is available. It has a common, a normally open
contact and a normally closed contact.
Terminal block J8
Pin 1 Normally open
Pin 2 Normally closed
Pin 3 Common
Pin 4 Anti-theft switch
Pin 5 Anti-theft switch
Pin 6 Tamper switch
Pin 7 Tamper switch
Relay ratings
1 A at 30 VDC according to the safety extra low voltage requirements
(42.4 VAC max, 60 VDC max) independently of the power supply.
Tamper-switch ratings
100 mA at 12 VDC max according to the safety extra low voltage.
Anti-theft switch ratings
24
1 A at 30 VDC according to the safety extra low voltage requirements
(42.4 VAC max, 60 VDC max) independently of the power supply.
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 25
WWIIEEGGAANNDD // DDAATTAACCLLOOCCKK:: MMOOTTHHEERRBBOOAARRDD CCOONNFFIIGGUURRAATTIIOONN
SW1: Wiegand / Dataclock input
Open = Wiegand mode
Closed = Dataclock mode
SW2: Wiegand / Dataclock output
Open = Wiegand mode
Closed = Dataclock mode
SW3-6: Reserved (MA 200/300)
SW3 must be open
SW4 must be closed
SW5 must be open
SW6 must be open
SW3-6: Reserved (MA 220)
SW3 must be closed
SW4 must be open
SW5 must be open
SW6 must be closed
SW7-8: Wiegand / Dataclock input (Interruptions)
Open Open = Not allowed
Closed Open = Wiegand mode
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
25
Page 26
Open Closed = Dataclock mode
Closed Closed = Not allowed
26
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 27
UUSSEERR IINNTTEERRFFAACCEE
MorphoAccess™ terminal works upon three principles : Access control
with identification, access control with authentication, and proxy mode.
These three principles consist in five functional modes :
• mode 0 : local identification (fingerprint capture) with a local base,
• mode 1 : authentication (ID receipt) and fingerprint capture with a
local base,
• mode 2 : proxy mode; Command sending to the MorphoAccess™,
• mode 3 : authentication (contactless card reading minutiae) and
fingerprint capture,
• mode 4 : authentication (contactless card reading ID) and
fingerprint capture with a local base,
• mode 5 : modes 0 and 3, merged.
• Mode 6: authentication (keyboard ID) and fingerprint capture with a
local base
The MorphoAccess™ 200 and 220 manages one base of 800(
2
) persons,
locally or remotely. MorphoAccess™ 300 manages 16 bases of 3000
persons, remotely (
3
).
2 In stand alone mode, the local base is sized for 800 persons, 2 fingers.
In MEMS mode, it is possible to manage up to 3000 persons in a base, 2 fingers.
3 For more information, see MorphoAccess Host System Interface Specification.
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
27
Page 28
AACCCCEESSSS CCOONNTTRROOLL BBYY IIDDEENNTTIIFFIICCAATTIIOONN ((MMOORRPPHHOOAACCCCEESSSS™™ 220
Identification mode
0
00))
/cfg/Maccess/Admin/mode
To configure MorphoAccess™ terminal in this mode, use the system menu
and edit /cfg/Maccess/Admin/mode, then enter 0.
After starting the MorphoAccess™ terminal waits for fingerprint detection
in identification mode.
0
Place your finger
for Identification
Please
If the identification is successful, the terminal triggers the access or returns
the corresponding ID to central security controller
4
.
Welcome
707251
IDENT. OK
Once the person's identification is done, the terminal automatically loops
back and waits for a new finger. This display remains for about 4 seconds.
4 Port used to exchange ID is Wiegand/Dataclock or COM1/COM2 or Ethernet.
28
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 29
AACCCCEESSSS CCOONNTTRROOLL BBYY IIDDEENNTTIIFFIICCAATTIIOONN ((MMOORRPPHHOOAACCCCEESSSS™™ 330
Identification mode
0
00))
/cfg/Maccess/Admin/mode
To configure MorphoAccess™ terminal in this mode, use the system menu
and edit /cfg/Maccess/Admin/mode, then enter 0.
To select a user database, just press a key number to toggle the base
number.
Only bases 0 to 15 can be selected and used.
5.4 version evolution. Old base selection style is no more
available.
To select base 0 to 9 simply press the corresponding key (‘7’ for base 7).
To select base 10 to 15, press ‘#’ then the second digit. For example
pressing ‘#’ then ‘3’ will select the 13
th
base.
0
Place your finger
for Identification
Please
00
Key 1 pressed : now using base 1.
Place your finger
for Identification
Please
01
Key 5 pressed : now using base 5.
Base does not exist
Please select
Another one
05
Key ‘#’ then ‘3’ pressed : now using base 13.
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
29
Page 30
Place your finger
for Identification
Please
13
If the identification is successful, the terminal triggers the access or returns
the corresponding ID to central security controller.
Welcome
707251
IDENT. OK
Once the person's identification is done, the terminal automatically loops
back, selects base 0 and waits for a new finger. This display remains for
about 4 seconds.
30
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 31
AACCCCEESSSS CCOONNTTRROOLL BBYY AAUUTTHHEENNTTIICCAATTIIOONN –– IIDD SSEENNTT OONN WWIIEEG
DDAATTAACCLLOOCCKK
G
(MorphoAccess™ 200 and 300)
Authentication mode with local database
/cfg/Maccess/Admin/mode
This mode requires a peripheral equipment which will send the ID of the
person to authenticate to the MorphoAccess™ Wiegand or Dataclock
input.
AANNDD OORR
1
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
31
Page 32
Pass your badge
For Authentication
Please
To trigger authentication, pass the user badge so the external reader
sends the user ID on MorphoAccess™ Wiegand or Dataclock input.
On MorphoAccess™ 300, the identifier is searched on every valid
database (5.3 version).
If the ID exists in the selected database, the MorphoAccess™ performs an
authentication using the biometric templates associated to this ID.
Authentication of
92745
Place your finger
If the authentication is successful, the terminal triggers the access or
returns the user ID to central security controller.
Welcome
92745
AUTHENT. OK
If the authentication fails a second attempt is possible without representing
the card.
Once the person's authentication is done, the terminal automatically loops
back, selects base 0 and waits for a new input ID. This display remains for
about 4 seconds.
When using this feature with Wiegand input, ID should be a value between
0 and 65535.
32
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 33
CCOONNTTAACCTTLLEESSSS AAUUTTHHEENNTTIICCAATTIIOONN WWIITTHHOOUUTT DDAATTAABBAASSEE
Data (ID, name, templates, PIN, BIOPIN, card mode) on a MIFARE
contactless card (MorphoAccess™ 220).
Data localization on the card may be specified. See section Setting up
contactless reader parameters for more information.
Data are stored on the card according to the format detailed in the
Contactless card data structure (MorphoAccess 220 only) section.
contactless authentication without database mode
/cfg/Maccess/Admin/mode
3
To configure the MorphoAccess in this mode, use Asystem and edit
/cfg/Maccess/Admin/mode, then enter 3.
This mode divides into several sub modes.
If the authentication (or the PIN control) fails a second attempt is possible
without representing the card.
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
33
Page 34
IIDD oonnllyy mmooddee
Contactless authentication - ID only mode
/cfg/Maccess/Contactless/without DB mode
In this mode the MIFARE card should contain the user ID.
Please present
Contactless
Smart Card
So that MorphoAccess triggers the access or returns the user ID to the
central security controller, user should just present his MIFARE card to the
terminal.
Welcome
1
92745
AUTHENT. OK
34
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 35
TTeemmppllaatteess oorr BBIIOOPPIINN ccooddee mmooddee
Contactless authentication - PK / BIOPIN mode
/cfg/Maccess/Contactless/without DB mode
In this mode the MIFARE card should contain:
• User ID, name, and templates or,
• User ID, name and BIOPIN.
To trigger authentication, user should present his MIFARE card to the
terminal.
Please present
Contactless
Smart Card
If card contains user templates, user is invited to place his finger for
biometric authentication.
2
Place your finger
For authentication
Please
If card contains user BIOPIN, user is invited to enter it.
Please enter
Biometric PIN
If the authentication is successful, the terminal triggers the access or
returns the user ID to the central security controller.
Welcome
John Smith
AUTHENT. OK
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
35
Page 36
PPIINN ccooddee mmooddee
Contactless authentication – PIN mode
/cfg/Maccess/Contactless/without DB mode
In this mode the MIFARE card should contain user ID, name, and PIN.
To trigger authentication, user should present his MIFARE card to the
terminal.
Please present
Contactless
Smart Card
Then, user is invited to enter his PIN code.
Please enter PIN
16
If the authentication is successful, the terminal triggers the access or
returns the user ID to the central security controller.
Welcome
John Smith
AUTHENT. OK
36
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 37
PPIINN ccooddee tthheenn tteemmppllaatteess oorr BBIIOOPPIINN ccooddee mmooddee
Contactless authentication – PIN – PK / BIOPIN mode
/cfg/Maccess/Contactless/without DB mode
In this mode the MIFARE card should contain :
• user ID, name, PIN, and templates or,
• user ID, name, PIN, and BIOPIN.
To trigger authentication, user should present his MIFARE card to the
terminal.
Please present
Contactless
Smart Card
Then, user is invited to enter his PIN code.
18
Please enter PIN
If authentication is successful :
If card contains user templates, user is invited to place his finger for
biometric authentication.
Place your finger
For authentication
Please
If card contains user BIOPIN, user is invited to enter it.
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
37
Page 38
Please enter
Biometric PIN
If the authentication is successful, the terminal triggers the access or
returns the user ID to the central security controller.
Welcome
John Smith
AUTHENT. OK
38
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 39
CCaarrdd ddeeffiinneedd mmooddee
Contactless authentication – card defined mode
/cfg/Maccess/Contactless/without DB mode
In this mode authentication method is not defined in advance but is set
according to card mode data contained in the MIFARE card.
Possible modes are the same that the one described before (refer to
previous paragraphs) and apart from card mode data, data requested are
the same too.
Card
mode
value
1
2
Authentication method
ID only ID
Minutiae or BIOPIN ID, name, templates or
Data requested
(in addition to card
mode data)
BIOPIN
0
16
18
PIN code ID, name, PIN
PIN code then templates or BIOPIN
code
ID, name, PIN,
templates or BIOPIN
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
39
Page 40
CCOONNTTAACCTTLLEESSSS AAUUTTHHEENNTTIICCAATTIIOONN WWIITTHH :: SSTTAANNDDAARRDD CCAARRDD
ID on a MIFARE card, local templates (MorphoAccess
TM
Contactless authentication with database
/cfg/Maccess/Admin/mode
Contactless authentication with database : id format
/cfg/Maccess/Contactless/ID Format
220).
4
0
40
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 41
Data localization on the card may be specified. See section Setting up
contactless reader parameters for more information.
Data are stored on the card according to the format detailed in the
Contactless card data structure (MorphoAccess 220 only) section.
To trigger authentication, users should present their MIFARE card to the
terminal. MorphoAccess™ will read the ID stored on the card.
Please present
Contactless
Smart Card
If the ID exists in the selected database, the MorphoAccess™ performs an
authentication using the biometric templates associated to this ID.
On MorphoAccess™ 300, the identifier is searched on every valid
database (5.3 version).
Authentication of
92745
Place your finger
If the authentication is successful, the terminal triggers the access or
returns the user ID to central security controller.
Welcome
92745
AUTHENT. OK
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
41
Page 42
CCOONNTTAACCTTLLEESSSS AAUUTTHHEENNTTIICCAATTIIOONN WWIITTHH DDAATTAABBAASSEE:: BBIINNAARRYY I
In this card the identifier is read at a given offset on the card and is
supposed to be binary. This mode is useful for using the card serial
number as an identifier.
Contactless authentication with database
I
DD
/cfg/Maccess/Admin/mode
Contactless authentication with database: id format is binary
/cfg/Maccess/Contactless/ID Format
4
1
42
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 43
Contrary to the standard mode data are not stored in a structure.
Data localization on the card may be defined. See section Setting up
contactless reader parameters for more information. The “block” notion is
detailed in this section.
If the authentication fails a second attempt is possible without representing
the card.
ID offset from first read bloc
/cfg/Maccess/Contactless/ID offset
[0-15]: ID offset in the first read
block (B parameter).
ID size in bytes
/cfg/Maccess/Contactless/ ID size
[1-8]: ID size in bytes
ID length in database is limited to 24 characters. It means that the binary
ID length is limited to 8 bytes.
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
43
Page 44
Example:
The ID on the card is the following:
A5 F4 98 C1 08 B1 or 182469953390769 in decimal format.
ID is stored under “182469953390769” in the database. ID format in the
database is ASCII. The record ID must be:
“182469953390769”
=
0x31 0x38 0x32 0x34 0x36 0x39 0x39 0x35 0x33 0x33 0x39 0x30 0x37
0x36 0x39.
44
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 45
PPRROOXXYY MMOODDEE
Proxy mode
/cfg/Maccess/Admin/mode
This mode allows controlling the MorphoAccess™ remotely using a set of
biometric and databasing management function interface access
commands.
For more information, please contact SAGEM or refer to document
MorphoAccess Host System Interface Specification.
2
Proxy Mode
MorphoAccess™ Host system
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
45
Page 46
MMEERRGGEEDD MMOODDEE
Merged mode
/cfg/Maccess/Admin/mode
This mode is the fusion of identification mode (mode 0) and contactless
authentication without database mode (mode 3).
So this mode allows to :
• run an identification if user places his finger (operation identical to
• run a contactless authentication if user places his MIFARE card
If there is no database, user is warned but MIFARE card presentation is
still possible.
5
identification mode),
(operation identical to contactless authentication without database
mode).
Please place
your finger or
Present card
Base does not exist
Please
Present card
46
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 47
AAUUTTHHEENNTTIICCAATTIIOONN MMOODDEE WWIITTHH DDAATTAABBAASSEE:: UUSSIINNGG KKEEYYBBOOAARRDD
Mode «Authentication with ID entered on keyboard »
IIDD
/cfg/Maccess/Admin/mode
In this mode the ID of the person is entered on the MorphoAccess
keyboard. If the ID exists in the local database, user is invited to place his
finger for biometric authentication.
6
The default screen invites the user to enter his numerical identifier.
Enter your ID
# to erase
Note: ID length is limited to 24 numerical characters (the MorphoAccess key
board is numerical).
Once the ID is entered, the user confirms with F4 button.
Place your finger
For authentication
Please
If the user doesn’t valid its ID after a 20 seconds timeout the ID is erased
of the screen.
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
47
Page 48
A
SSOOFFTTWWAARREE AADDMMIINNIISSTTRRAATTOORR IINNTTEERRFFAACCEE
Application of the SAGEM MorphoAccess™ terminal allows:
1. Biometric management operations:
• Transfer of biometric data between the MorphoAccess™ terminal
and MorphoAccess™ Enrollment Management System (MEMS).
• In stand alone without the MorphoAccess™ management system
(manages the biometric data in a local database on the
MorphoAccess™) (MorphoAccess™ 200 only).
• The MorphoAccess™ shall be configured in one of either of these
modes (see this chapter).
2. Access to the set up functions of the system (request Administrator
mode).
Note
The MEMS handles the MorphoAccess™ through a set of command
exchanges (two-way commands to and from the MEMS server and the
MorphoAccess™ terminal). If you wish to know more about this protocol
and the command set, please refer to MorphoAccess Host System
Interface Specification.
Result (OK – NOK)
• UDP
• RS232 / RS422
• Wiegand / Dataclock
dministration:
• TCP IP
• RS232 / RS422
48
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 49
BBIIOOMMEETTRRIICC MMAANNAAGGEEMMEENNTT OOPPEERRAATTIIOONNSS
BBiioommeettrriicc MMaannaaggeemmeenntt bbeettwweeeenn tteerrmmiinnaall aanndd MMoorrpphhooAAccc
EEnnrroollllmmeenntt MMaannaaggeemmeenntt SSyysstteemm ((MMEEMMSS))
MorphoAccess™ terminal includes an interface layer to communicate with
the access control system or the MEMS through Ethernet, RS422 and
RS232.
The biometric management operations are:
• Insert template/ID in database: The terminal inserts a new record in
the database.
• Remove template/ID from database: The terminal removes the
record identified by the ID in the database.
• Update template/ID in database: The terminal changes the template
identified by the ID in the database.
• Download database: The terminal reads the new database and
installs it in a local database according to the database identifier.
If the MorphoAccess™ application receives the commands from MEMS it
will switch to base management mode. The operations sent by MEMS are
automatically registered in the database of the MorphoAccess™ terminal.
ceessss™™
Managing a base locally is not possible. All biometric data is stored on the
MEMS and the terminal will act as a capture and send device only.
To access the Administrator menu with a MorphoAccess™ 300, first select
the base in which the Administrator is enrolled then hit the following keys
in sequence <#>, <*> and <#>.
With a MorphoAccess™ 200 simply hit the following keys in sequence
<#>, <*> and <#>.
Administrator identification
Place your finger
For identification
PIN EXIT
Biometric login is enabled if configuration key /cfg/Maccess/admin/admin
ident is set to 1.
This operation creates a database with ID 0. This database can contain
800 records with two biometric data fields, an ID field and, if the Biometric
login is enabled, an Administrator field.
In order to access the Control menu, the Administrator's fingerprint
template or pin code must be entered. To enter the pin code, select the
P
I
N
P
I
N
P
I
N
menu.
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
49
Page 50
Note : It is advised to change this pin code as early as you receive the
terminal (see System and admin passwords)
You can use the correction key # to delete the last number hit. The PIN
code can be changed in the configuration file /cfg/Maccess/Admin (see
section MorphoAccess Administrator Pin page 57).
Note: It is advised to change this pin code as early as you receive the
terminal
Administrator identification
Enter PIN: **|
OK EXIT
After a valid pin code or administrator identification, you will see the
following screen:
Administrator Mode
Select a command please
SYSTEM EXIT CL KEYS MORE
BBiioommeettrriicc mmaannaaggeemmeenntt iinn ssttaanndd--aalloonnee mmooddee
(MorphoAccess™ 200 only)
In stand-alone mode, the MorphoAccess™ manages its own local
database. This can be setup through the Administrator menus. On the
keypad, hit the following keys in sequences <#>, <*> and <#>. The
resulting screen is the Administrator menu.
Administrator identification
Place your finger
For identification
PIN EXIT
Biometric login is enabled if configuration key /cfg/Maccess/admin/admin
ident is set to 1.
50
This operation creates a database with ID 0. This database can contain
800 records with two biometric data fields, an ID field and an Administrator
field.
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 51
Administrator identification
Enter PIN: **|
OK EXIT
If the identification is successful, the application allows access to the
biometric management functions. The biometric management operations
are:
• Insert template/ID in database (enrolment): The terminal inserts a
new record in the database.
• Remove template/ID from database (deletion): The terminal
removes the record identified by the ID in the database.
Administrator Mode
Select a command please
ENROLL DEL ERASE EXIT
IInnsseerrtt tteemmppllaattee//IIDD iinn ddaattaabbaassee
(MorphoAccess™ 200 only)
To insert template/ID in local database, select the E
have to enter the ID of the person and validate it. The primary and
secondary fingers are requested and their corresponding biometric
templates are processed. If the process is successful, then the person is
registered in the local database.
E
N
R
O
L
R
R
L
O
L
L
O
L
L
menu. You
E
N
N
Enrollment Mode
Enter Person ID : |
Press <#> for correction
OK CANCEL
You can use the correction key # to delete the last digit entered. In the
next screen you enroll your finger. The enrolled person may be either a
“simple” user or an administrator.
RReemmoovvee tteemmppllaattee//IIDD ffrroomm ddaattaabbaassee
(MorphoAccess™ 200 only)
To remove a single template/ID record from the database, select the D
menu. You will then have to enter the ID of the person and validate it. If
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
D
D
E
E
E
L
L
L
51
Page 52
the ID number does not exist in the local database, an error message
appears.
Deletion Mode
Enter Person ID : |
Press <#> for correction
OK CANCEL
You can use the correction key # to delete the last digit entered.
RReemmoovvee aallll tteemmppllaattee//IIDD ffrroomm ddaattaabbaassee
(MorphoAccess™ 200 only)
To remove all records from the local MorphoAccess™ database, select
E
R
A
S
R
R
E
A
S
E
A
S
E
menu option. A screen appears to confirm your command.
E
the E
Do you really
Want to ERASE
The Database
NO YES
RReesseett ccoonnffiigguurraattiioonn ttoo ffaaccttoorryy sseettttiinnggss
To reset configuration to factory settings, select the R
option. A screen appears to confirm your command
R
S
T
S
S
C
T
C
T
C
R
Configuration Reset
F
G
F
G
F
G
menu
Remark: Network parameters will be kept.
Remark: System will reboot.
Warning about the “/cfg/Maccess/contactless/Reader Type” key MA220).
This command reset the value of the “Reader type” key, it means that the
MA220 restart as a MA200. Then the original value of the key (usually “2”),
must be restore manually and the MA restarted to be again a MA220.
WWaarrmm--uupp rreesseett
In order to update the modified parameters, it is necessary to reset the
MorphoAccess™ terminal.
52
Are you sure ?
NO YES
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 53
M
O
R
In the main menu of the administrator mode, with M
R
E
B
O
O
B
B
O
O
O
O
T
T
T
key.
R
R
E
E
M
E
O
R
E
O
R
E
key select the
/cfg/Maccess parameters are updated immediately, and reboot action is
unnecessary.
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
53
Page 54
AACCCCEESSSS TTHHEE SSEETT UUPP FFUUNNCCTTIIOONNSS OOFF TTHHEE SSYYSSTTEEMM
To access the System Menu, you must leave the main application of the
MorphoAccess™. You must access the Administrator Menu and select the
E
T
X
I
E
T
X
I
E
X
key. It is possible to select the A
I
T
M
standard application (M
M
A
A
A
C
C
C
C
C
C
E
E
E
S
S
S
S
S
S
).
A
A
S
S
S
Y
Y
Y
S
S
S
T
T
T
Select your application
ASYST MACCESS
A
S
Y
S
S
S
T
Y
S
T
Y
S
T
menu to enter in the system application
Then, select the A
A
SYSTEM MENU
Enter Password: |
Press <#> for correction
OK CANCEL
application or go back to the
Enter the password to access to SYSTEM MENU (default value: “12345”).
You can use the correction key # to delete the last digit entered. The
password can be changed in the configuration file /cfg/system (see section
MorphoAccess™ System Administrator Pin page 59).
Note: It is advised to change this password as early as you receive the
terminal
The System Menu will appear when the password is correct.
SYSTEM MENU
CONFIG VERSION SER NB MORE
C
O
N
F
I
R
R
R
R
R
R
N
N
G
F
I
G
F
I
G
menu allows you to set up network and specify additional
S
I
O
N
S
I
O
N
S
I
O
N
item allows you to browse for software modules present in
N
B
N
B
N
B
item displays the terminal serial number, MicroBoot revision
C
V
S
V
S
E
E
E
E
E
E
O
O
The C
parameters.
The V
your SAGEM MorphoAccess™ and see their revision number(s).
The S
and Ethernet physical address of your machine.
54
M
O
R
E
M
O
R
The M
E
O
R
E
key displays the rest of the system options.
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 55
S
S
The S
date.
SYSTEM MENU
SETTING EXIT MORE
E
T
T
I
N
E
E
T
G
T
I
N
T
G
T
I
N
G
menu allows you to set the LCD contrast and the time and
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
55
Page 56
CCOONNFFIIGGUURRAATTIIOONN MMEENNUU
This menu allows modifying MorphoAccess
These parameters are stored as configuration key with the following
structure: “file/section/parameter/value”.
They can be edited directly using the keyboard.
FILE: cfg/net
SECTION: ip
Address: 134.1.32.214
PREV NEXT EXIT EDIT
The How to edit parameters? network parameters section page 57
explains how to edit a value.
Some parameters are reserved and must not be changed.
TM
parameters.
56
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 57
HHOOWW TTOO EEDDIITT PPAARRAAMMEETTEERRSS?? NNEETTWWOORRKK PPAARRAAMMEETTEERRSS EEXXAAMMPPLLE
Network Parameters
/cfg/net/ip/address
/cfg/net/ip/default gateway
/cfg/net/ip/subnet
C
O
N
F
I
N
N
G
F
I
G
F
I
G
key to access the configuration
In the System menu press the C
files.
C
O
O
E
SYSTEM MENU
CONFIG VERSION SER NB MORE
File selection:
N
E
X
T
N
E
X
X
E
E
N
N
X
X
T
E
X
T
key until the File menu displays /cfg/net.
D
I
T
D
I
T
D
I
T
key. The Section menu displays ip.
E
X
T
E
X
T
E
X
T
key until address is displayed then press the E
I
T
I
T
I
T
key.
Press the N
Section selection :
Press the E
Parameter selection :
Press the N
Go to previous selection:
E
Use the E
E
FILE : cfg/net
SECTION :ip
Address : 134.1.32.214
PREV NEXT EXIT EDIT
You can now edit you MorphoAccess™ IP address.
E
E
D
D
D
I
T
I
T
I
T
key.
cfg/net ip
Address
134.1.32.214
LEFT RIGHT CANCEL OK
L
E
F
T
L
E
F
The L
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
E
T
F
T
R
R
and R
I
G
H
T
I
G
H
T
I
G
H
T
keys move the cursor.
57
Page 58
The alphanumeric keys enter digits as necessary. The # key deletes the
E
X
I
T
E
X
I
digit immediately to the left of the cursor. The E
T
X
I
T
key aborts editing and
restores the previous address value.
The IP subnet mask and IP default gateway are set up in the same way.
Contact your network Administrator for these values.
58
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 59
SSYYSSTTEEMM AANNDD AADDMMIINN PPAASSSSWWOORRDDSS
MMoorrpphhooAAcccceessss™™ SSyysstteemm AAddmmiinniissttrraattoorr PPiinn
System Administrator Pin
/cfg/system/System/Pwd
This password restricts access to “system application”.
Default value is « 12345 ».
FILE: cfg/system
SECTION: System
Pwd: 12345
PREV NEXT EXIT EDIT
MMoorrpphhooAAcccceessss™™ AAddmmiinniissttrraattoorr PPiinn
« 12345 » default
Administrator Pin
/cfg/Maccess/Admin/PwdAdmin
This password restricts access to “Admin mode”.
Default value is « 12345 ».
FILE: cfg/Maccess
SECTION: Admin
Pwd: 12345
PREV NEXT EXIT EDIT
« 12345 » default
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
59
Page 60
SSEETTTTIINNGG UUPP HHOOSSTT CCOOMMMMUUNNIICCAATTIIOONN..
Communication mode
/cfg/Maccess/Admin/Host Com
This parameter allows management of a local database within the
MorphoAccess™ using a remote station or with local facilities.
FILE : cfg/Maccess
SECTION :Admin
Host Com : 3
PREV NEXT EXIT EDIT
The default value of Host Com key is 3 (MEMS). In this case, the biometric
management is between terminal and MorphoAccess™ Enrollment
Management System (MEMS).
0 Stand alone
1 Connected through COM1
2 Connected through COM2
3 Connected through ETHERNET
To configure the MorphoAccess™ terminal to manage the local database,
this default value must be changed to 0.
COM1 or COM2 mean serial link administration.
You cannot use the stand-alone mode to manage your local database if
the MorphoAccess™ biometric data is managed by the MEMS.
The MorphoAccess™ shall be used either in stand-alone mode or in
connected mode (with MEMS) but never in both modes.
Configuring the key to 0 will disable MEMS connection.
For more information about commands accepted by the terminal please
refer to MorphoAccess™ Host System Interface.
60
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 61
SSEETTTTIINNGG UUPP MMAATTCCHHIINNGG PPAARRAAMMEETTEERRSS
SSeettttiinngg uupp jjuuvveenniillee rreeccooggnniittiioonn
Setting up juvenile recognition
/cfg/Maccess/bio/juvenile
Since software release 2.0, the MorphoAccess™ is able to manage both
juvenile and adult finger images.
FILE : cfg/Maccess
SECTION :bio
juvenile : 0
PREV NEXT EXIT EDIT
This provides a solution with reliable performance to the automatic
processing of finger images with small to normal ridges, extending the
capability of the terminal by providing access control to a wider range of
population.
0 Disabled (default)
1 Enabled
Since the encoding time is a little bit longer when the juvenile option is
turned on, we offer the possibility to the user set up the terminal either in
"Juvenile" mode or in standard mode.
When the juvenile mode is turned on, key set to 1, young children can
easily be enrolled in the MorphoAccess™.
SSeettttiinngg uupp aannttii--llaatteennccyy
Setting up anti-latency
/cfg/Maccess/bio/anti latency
The anti-latency processing consists to filter marks left on the sensor. In
some extreme conditions it is possible that a mark left on the sensor
triggers an identification or verification.
From the 4.4 release of MorphoAccess firmware it is now possible to filter
marks left on the sensor.
0 Disabled (default)
1 Enabled
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
61
Page 62
FILE : cfg/Maccess
SECTION :bio
Anti Latency : 0
PREV NEXT EXIT EDIT
When the MorphoAccess detects a mark the identification is stopped and
the application loops back and look for a new fingerprint.
With regards to the previous releases of the MA application the main
change is that a fingerprint placed two consecutive times on the sensor in
the same position will be rejected from the second attempt.
When the anti-latency mode is turned on, key set to 1, latent fingerprint
marks will not trigger identification or verification.
SSeettttiinngg uupp rreeccooggnniittiioonn mmooddee
A typical identification workflow may be composed of two steps:
• The MorphoAccess™ terminal proceeds to a first fast identification
(using a "light" coding method).
• If the user is not identified, a second step follows immediately using
a smarter coding method ("gabor" coding). This coding allows
recognizing users with dry fingers or fingers with a bad placement
on the sensor. However this coding is slower than the light one.
In order to optimize biometric control it is possible to determine how these
coding methods will be linked. These parameters may be adjusted in the
cfg/Maccess/Bio section.
Coding selection
The cfg/Maccess/Bio/identification strategy parameter allows determining
the identification strategy.
FILE : cfg/Maccess
SECTION :bio
identification strategy: 2
62
PREV NEXT EXIT EDIT
Three modes may be selected:
• 0:[Light only]
Gabor coding is disabled. The control is faster in any case (identification
succeeded or not).
This setting is advised for users familiarized with biometric control and in
standard conditions of use.
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 63
• 1 : [Light then gabor] (default mode for older versions (<5.2))
Identification will proceed in two steps like described in the previous
paragraph. Light coding, and in case of failure gabor coding.
Some identifications are slower but chances of success are increased.
• 2: [Advanced mode: light coding then gabor on the second try]
(default mode)
In this mode gabor coding is disabled. Like in the [Light only] mode the
answer of the control is immediate.
Unlike the mode [Light only], in case of failure, the gabor coding will be
reactivated for the immediate next control to increase chances of success
for a second try.
After a given time of inactivity or after a second failure the terminal
automatically switches in the [light only] mode. This period may be
modified.
Coding duration
FILE : cfg/Maccess
SECTION :bio
advanced timeout: 2
PREV NEXT EXIT EDIT
The cfg/Maccess/Bio/advanced timeout parameter allows setting in
seconds the period while the gabor coding will be activated when the
terminal is set in [Advanced mode] mode.
• 0: If the light identification failed, the terminal will be temporarily
switched in the [light then gabor] mode. After this second
identification the terminal is in [light only] mode.
• 1-3600: This value determines (in seconds) how long the terminal
will activate the [light then gabor] mode if no finger is presented on
the sensor. After this period it switches automatically in [light only]
mode.
Default value is 5 seconds.
When the terminal switches in "light only" mode the sensor will briefly
flash.
Recognition mode (light, gabor …)
/cfg/Maccess/bio./
identification strategy
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
0 Light only
1 Light then gabor (default)
63
Page 64
2 Advanced mode
advanced timeout
MMaattcchhiinngg tthhrreesshhoolldd
The performances of a biometric system are characterized by two
quantities, the False Non Match Rate - FNMR - (Also called False Reject
Rate) and the False Match Rate - FMR - (Also called False Acceptance
Rate). Different trade-off are possible between FNMR and FMR depending
on the security level targeted by the access control system. When
convenience is the most important factor the FNMR must be low and
conversely if security is more important then the FMR has to be
minimized.
Different tuning are proposed in the MorphoAccess terminal depending on
the security level targeted by the system. The table below details the
different possibilities.
Identification and authentication thresholds may be defined independently.
Identification mode:
[1-3600] seconds
5 seconds is the default value
FILE : cfg/bio
SECTION :matching threshold
identify: 3
PREV NEXT EXIT EDIT
Authentication mode:
FILE : cfg/bio
SECTION : matching threshold
Authenticate : 3
PREV NEXT EXIT EDIT
64
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 65
This parameter can be set to values from 0 to 10. This parameter specifies
how tight the matching threshold is. Threshold scoring values are
identified hereafter
0 Low threshold for test purpose
only
There are few rejections, but
many recognitions
1 Very few persons rejected FAR < 1%
2 FAR < 0.3%
3
Recommended value (default
FAR < 0.1%
value)
4 FAR < 0.03%
5 Intermediate threshold FAR < 0.01%
6 FAR < 0.001%
7 FAR < 0.0001%
8 FAR < 0.00001%
9 Very high threshold (few false
FAR < 0.0000001%
acceptances) Secure
application
10 High threshold for test purpose
only
There are very few recognitions,
and many rejections
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
65
Page 66
UUSSEERR IINNTTEERRFFAACCEE SSEETTTTIINNGGSS
MMuullttiilliinngguuaall aapppplliiccaattiioonn
Language
The MorphoAccess™ can operate using other language than English. It
can also operate in eight other languages (including French, Spanish,
German, Italian). It is possible to download a user defined string table. For
more information about this feature, refer to the MorphoAccess Host
System Interface Specifications.
The default language of the MorphoAccess™ is defined in the
/cfg/Maccess/Language/default.
The allowed values are:
Default language
/cfg/Maccess/Language/default
0 English (default)
1 Spanish
2 French
3 German
4 Italian
5 Portuguese
6 Language6
7 Language7
8 Language8
9 User defined language
Caution: In the MorphoAccess 5.41 the User defined language is the
number 9, instead of 3 in anterior versions.
Language selection
A user may choose his language by pressing a button. The language
choice is circular.
66
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 67
Place your finger
For identification
01
Language selection
Please
FR
/cfg/Maccess/G.U.I./change
IIddeennttiiffiiccaattiioonn iinnffoorrmmaattiioonn
On a positive identification, it is possible to display information about the
identified user. This information should be present in the additional fields
of its record.
0 The change language button is
disabled. Users cannot change their
language.
1 Users can choose their language
using the change language button.
Welcome
Field 1 Field 2
IDENT. OK
The allowed values are:
Identification information (local database)
/cfg/Maccess/G.U.I./
Welcome Field 1
Welcome Field 2
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
0 Nothing is displayed.
1 System displays ID of identified person.
X System displays data present in additional
field number X of identified person.
0 Nothing is displayed.
1 System displays ID of identified person.
X System displays data present in additional
field number X of identified person.
67
Page 68
Example:
First and second additional field have been selected. They contain first
and family name of all records present in the database. On identification,
system will display the following screen:
Welcome
John Smith
AUTHENT. OK
This feature needs a database containing the appropriate additional fields.
CClloocckk
When using time mask feature, users may find useful to synchronize with
their MorphoAccess™. A clock can be displayed.
Place your finger
For identification
Please
01 15:24
Time is displayed in the 24 hours format.
Display hour
/cfg/Maccess/G.U.I./display hour
IIddllee mmooddee
0 Clock is not displayed.
1 Clock is displayed and
refreshes every minute.
68
In identification mode it is possible to switch the MorphoAccess™ in idle
mode in order to shut down sensor red light and green screen back light.
Pressing a key wakes the MorphoAccess™ up.
Idle mode settings
/cfg/Maccess/G.U.I./idle timer in min
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
0 MorphoAccess
enters idle mode.
n MorphoAccess™ enters idle
mode after n minutes.
TM
never
Page 69
DDIISSPPLLAAYY PPEERRSSOONNAALLIIZZAATTIIOONN
The MorphoAccess™ offers a full graphic mode. Three different
appearances may be selected.
15 : 25
Each appearance may be user-redefined. Please refer to MorphoAccess
Screen Customization for more information.
With this feature it is possible to create non-Latin information messages.
Graphic mode activation
/cfg/Maccess/BMP mode /
enabled
0 Display uses graphic and text (default and
historical mode).
OR
1 Display uses bitmaps. Bitmaps are contained in
files picto0.bin, picto1.bin or picto2.bin. They are
customizable.
File selection
/cfg/Maccess/BMP mode /
file
0 picto0.bin (default)
1 picto1.bin
2 picto2.bin.
Note: see the document MorphoAccess Screen Customization Guide
V2.0.pdf to know the modifications of the Bitmap tool
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
69
Page 70
SSEETTTTIINNGG UUPP CCOONNTTAACCTTLLEESSSS RREEAADDEERR PPAARRAAMMEETTEERRSS
(MorphoAccess™ 220 only)
A MIFARE card is defined by a unique serial number.
• The card is divided in 16 sectors.
• Each sector is divided in 4 blocks.
• Each block contains 16 bytes of data.
• Data are encoded with two sets of key.
To be able to read a card, the reader should use the same key set. Fourth
blocks cannot be read, they are used to store key sets.
Data can be accessed by blocks as follows:
Secteur 0
Sector 1
Block 0 Block 1 Block 2
Block 1 Block 2 Block 3
Block 4 Block 5 Block 6
Block 3
...
Sector 15
Block 46 Block 47 Bloc 48
Blocks are numbered in an absolute way, 1 for block 0 sector 0, then 3
blocks for each sector.
SAGEM biometric data (ID, name and templates) are located on the card
thanks to a BNC address where:
• <B> is the first block number to read,
• <N> is the number of blocks to read,
• <C> selects a security key.
Data are described in Contactless card data structure (MorphoAccess 220
only) section and in document MorphoAccess™ Host System Interface
Specification.
70
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 71
With a MorphoAccess™ 220, contactless parameters can be defined from
the CONFIG menu in file /cfg/Maccess, in section Contactless.
Reader type (MA220)
/cfg/Maccess/contactless/
Reader type
0 No MIFARE reader is used.
1 External MIFARE
2 Deister reader is used. Internal MIFARE reader is
used.
Warning : the value of this key is set to 0 (zero) by the ILV command
« Default_Init » and by the « RST CFG » action of the Administrator mode.
First block number to read
/cfg/Maccess/contactless/B
4 (default) to 13
Number of blocks to read (form B)
/cfg/Maccess/contactless/N
2 When an ID is stored.
28 When templates are stored.
Security key
/cfg/Maccess/contactless/C
1 MIFARE security key A then
B is selected (default)
2 MIFARE security key A is
selected.
3 MIFARE security key B is
selected.
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
71
Page 72
LLOOGG FFIILLEE
The MorphoAccess™ can log its biometric activities. It stores the result of
the command, the date and time, the matching mark, the execution time,
and the ID of the user.
C
O
N
F
I
N
N
G
F
I
G
F
I
G
menu in file
Those configuration keys can be defined from the C
C
O
O
/cfg/Maccess, in section Admin.
The allowed values are:
Log activation
/cfg/Maccess/Admin/Log file
0 MorphoAccessTM is not
logging its activities.
1 MorphoAccess
TM
is logging
its activities.
It is possible to download the diary file. For more information on this
feature, refer to the MorphoAccess Host System Interface Specifications.
72
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 73
SSEETTTTIINNGG UUPP TTIIMMEE MMAASSKK
When using MEMS commands, a time mask feature is available. This
mode enables the access according to its time mask. Time mask is
defined by slots of 15 minutes over a week. For more information, see
MorphoAccess Host System Interface Specifications.
Time mask activation
/cfg/Maccess/Admin/Time mask
0 Time mask feature is disable
(default).
1 Time mask feature is
enabled. Users must be on time
to have their access granted..
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
73
Page 74
SSEETTTTIINNGG UUPP DDOOWWNNLLOOAADD AAGGEENNTT -- ((SSDDLL))
In order to upgrade the MorphoAccess™ terminal to future versions, a
download agent is running. This agent allows connecting to the terminal
and proceeding maintenance operations. For more information about the
protocol used to communicate with this agent, please contact your
SAGEM sales representative.
SDL activation
/cfg/sdl/Download/Active
Password to present in order to connect the agent (8 digits)
/cfg/sdl/Download/Password
Remark: the password must contain exactly 8 digits.
0 Inactive
1 SDL commands are allowed (default)
« 12345678 » (default)
Number of failed attempts before deactivating the agent.
/cfg/sdl/Download/Ratif
3 (default)
74
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 75
WWIIEEGGAANNDD // DDAATTAACCLLOOCCKK CCOONNFFIIGGUURRAATTIIOONN
NNoottee
The terminal may send or receive either Dataclock frames or Wiegand
frames. The mode depends on hardware configuration described in the
Wiegand / Dataclock hardware section.
You can use the output Wiegand or Dataclock to send the corresponding
ID to the central security controller. Wiegand ports are configured in 26-bit
format and Dataclock ports are compatible with ISO track 2 data formats.
I/O Dataclock are ISO2 compliant.
In Wiegand mode, ID is sent in binary format.
In Dataclock mode, ID is sent in BCD format.
WWiieeggaanndd // DDaattaacclloocckk :: IIDD sseennddiinngg
The ID of the recognized user may be send on Wiegand or Dataclock
output.
Please refer to MorphoAccess Remote Messages Specifications for more
information about this functionality.
Sending ID Wiegand or Dataclcock
/cfg/Maccess/Wiegand/dataclock/
send
0 ID is not sent (default)
1 ID is sent
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
75
Page 76
WWiieeggaanndd // DDaattaacclloocckk :: aaddvvaanncceedd iinnffoorrmmaattiioonnss
Specific ID may be defined for various error cases. They can be set
between 0 and 65535.
Error ID definition
/cfg/Maccess/Wiegand/dataclock/
Send failure ID
Not in time ID
Not in dB ID
Not ident ID
0 Identification error action: Inactive
(default)
1 Identification error action: Active
[0 65535 (default)]
Time mask Identification error
[0 65535 (default)]
Identification error for unknown person in
base (mode 4)
[0 65535 (default)]
Identification error for not identified person
TimeOut ID
Error ID
WWiieeggaanndd :: ffaacciilliittyy ccooddee
This code may be set between 0 and 4294967295, depending on
Wiegand data format (see section APPENDIX 2 - WIEGAND DATA
FORMAT page 107).
Installation Code (« facility code »)
/cfg/Maccess/Wiegand/dataclock/
Facility code
[0 65535 (default)]
Identification error for authentication time-
out
[0 65535 (default)]
Identification error for other cases
7 (default)
76
[0 4294967295]
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 77
« Wiegand IN »
A
Facility code is checked on input frames.
« Wiegand OUT »
Facility code is copied on output frames.
WWiieeggaanndd :: ffaacciilliittyy ccooddee vveerriiffiiccaattiioonn
It is possible to accept frame with any facility code.
Site code verification
/cfg/Maccess/Wiegand/dataclock/
pass through mode
0 Facility code is checked (default)
1 Facility code is ignored
DDaattaacclloocckk :: DDaattaa aanndd SSttrroobbee lleevveellss
To configure the Data and Strobe levels in Dataclock(14) mode, you must
select the Dataclock level key in section cfg/Maccess/Wiegand/Dataclock.
Dataclock level
/cfg/Maccess/Wiegand/dataclock/
Dataclock level
0 Data and strobe are not inverted
(default).
1 Strobe is inverted.
2 Data is inverted.
3 Data and strobe are inverted.
WWiieeggaanndd // DDaattaacclloocckk :: LLEEDD OOUUTT –– CCAARRDD PPRREESSEENNTT ssiiggnnaal
This parameter signification depends on hardware configuration.
Signal LED OUT – Card Present
/cfg/Maccess/Wiegand/dataclock/
led out/card present
0
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
utodetect The led out signal can behave as a card present signal
depending on the hardware configuration of the system:
DataClock IN/ DataClock OUT: Card present
lss
77
Page 78
Wiegand IN/ DataClock OUT: card present (priority goes to
dataclock out)
Wiegand IN/ Wiegand OUT: led out
DataClock IN/ Wiegand OUT: inactive.
1 Force Led out
The led out signal only behaves as a led out signal.
78
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 79
WWiieeggaanndd // DDaattaacclloocckk :: LLEEDD IINN ssiiggnnaall
Use this signal to wait a controller “ACK” or to drive the terminal led.
LED IN signal
/cfg/Maccess/Wiegand/dataclock/
Led IN
0 (default) Active
The led in signal is ignored.
1 Inactive
The MorphoAccessTM led is driven by the led in signal:
• led in = 0 led is green
• led in = 1 led is off
2 The Wiegand in port is used as a dual led in port.
D1 is connected to Led in green and D0 to Led in red.
This feature improves integration in an access control system
(ACS). Result of biometric matching is validated by the ACS
through Led in signals.
When the ACS validates the control a timeout must be specified.
ACK timeout
/cfg/Maccess/Wiegand/dataclock/
Timeout
Time in seconds during which the
MorphoAccess™ will wait for an
acknowledgement signal from the ACS
through Led in signals.
(“Led IN 2“ mode).
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
79
Page 80
SSeettttiinngg uupp WWiieeggaanndd IInntteerrffaaccee
When set up to communicate with Wiegand protocol, the MorphoAccess™
can handle multiple data format.
Default format (26-bit) is described in appendix 2.
The Wiegand frame format is defined using six configuration keys.
Different protocol can be defined for input and output.
Wiegand frame timings are not customizable. Additional security
(ciphering) is not handled. All Wiegand protocols are reverse.
Frame definition
Here after are listed the customizable parameters of a Wiegand frame.
- Length A Wiegand frame can contain up to 128 bits.
- Control bits
In a Wiegand frame, start and stop bits are used as control bits. They can
be fixed to 0 or 1 or be used as parity (odd or even) bits calculated over
bits of the frame.
- Data
In the Wiegand protocol, three data are handled: the Site code (also called
Facility code or Comparison number), the ID (also called Badge number or
Sequence number) and a custom data. Data can have a variable bit size
and can be located anywhere in the frame. Data are inserted in the frame
MSB first.
Configuration keys.
The corresponding configuration keys are in file /cfg/Wiegand in either
section IN or OUT:
Wiegand frame Personnalization
/cfg/ Wiegand /IN or OUT
Length
Start
1-128 Defines the number of bits of the frame.
0.0
1.0
Defines the start control bit.
Reset to 0.
Set to 1.
80
2.n
3.n
4.0
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Even parity calculated over the n first bits.
Odd parity calculated over the n first bits.
No start bit
Page 81
Stop
Site
ID
Custom
0.0
1.0
2.n
3.n
4.0
n.m Insert m bits of site value at offset n.
n.m Insert m bits of ID value at offset n.
0.0 Reserved for SAGEM custom protocols.
Defines the stop control bit.
Reset to 0.
Set to 1.
Even parity calculated over the n last bits.
Odd parity calculated over the n last bits.
No stop bit
Note: The number of bits of the Wiegand ID is limited to 64 bits
Examples :
See APPENDIX 2 - WIEGAND DATA FORMAT page 107.
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
81
Page 82
IIDD SSEENNDDIINNGG OONN UUDDPP
You can use the Ethernet port to send the corresponding ID to the central
security controller. Connection should be made using port 11020.
Please refer to MorphoAccess Remote Messages Specifications for more
information about this functionality.
ID sending on UDP
/cfg/Maccess/Ethernet/
Send
IP
0 Not activated
1 L’ID is sent on UDP
« aaa.bbb.ccc.ddd »
IP of the central security
controller.
82
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 83
IIDD SSEENNDDIINNGG OONN RRSS223322 OORR RRSS442222
You can use the serial port to send the corresponding ID to the central
security controller. You can use COM1 or COM2 or both.
Please refer to MorphoAccess Remote Messages Specifications for more
information about this functionality.
IIDD sseennddiinngg oonn «« CCOOMM11 »»
Activation
Sending ID on COM1
/cfg/Maccess/COM1/Send
ID transmission on port COM1 is disabled when ILV is activated on
the same channel (i.e. cfg/Maccess/Admin/Host Com set to 1).
0 Nothing is sent (default)
1 L’ID is sent on COM1
COM1 parameters are defined by cfg/ser0.
Identifier format (COM1)
ID format (COM1)
/cfg/Maccess/COM1/Format
IIDD sseennddiinngg oonn «« CCOOMM22 »»
Activation
Sending ID on COM2
/cfg/Maccess/COM2/Send
0 L’ID is sent in ASCII.
1 L’ID is sent in Hexa.
2 L’ID is sent in BCD
2 Nothing is sent (default)
3 L’ID is sent on COM2
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
83
Page 84
ID transmission on port COM2 is disabled when ILV is activated on
the same channel (i.e. cfg/Maccess/Admin/Host Com set to 2).
COM2 parameters are defined by cfg/ser1.
Identifier format (COM2)
ID format (COM2)
/cfg/Maccess/COM2/Format
0 L’ID is sent in ASCII.
1 L’ID is sent in Hexa.
2 L’ID is sent in BCD
84
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 85
SSEERRIIAALL PPOORRTT PPAARRAAMMEETTEERRSS
The following parameters will be applied for distant administration and ID
sending.
CCOOMM11 ppoorrtt ((sseerr00))
Baudrate (bps)
/cfg/ser0/parameters/
baudrate
1200 bps
2400 bps
4800 bps
9600 bps (default)
19200 bps
28800 bps
38400 bps
Data bits
/cfg/ser0/parameters/
databits
Parity
/cfg/ser0/parameters/
parity
57600 bps
115200 bps
5 5 databits
6 6 databits
7 7 databits (default)
8 8 databits
0 No
1 Odd
2 Even (default)
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
85
Page 86
Note: Since the embedded version 5.40 the default value of
/cfg/ser0/parameters/ databits is 8 (8 databits)
/cfg/ser0/parameters/ parity is 0 (No parity)
Stop bits
/cfg/ser0/parameters/
stop bits
Flow control
/cfg/ser0/parameters/
flow control
UUssiinngg aa DDeeiisstteerr ccoonnttaaccttlleessss rreeaaddeerr oonn CCOOMM11
To connect a Deister reader on COM1 the serial link parameters must
have the following values :
DEISTER reader utilization
1 1 bit de stop
2 2 bits de stop (default)
0 (default value) No.
1 Hardware (CTS/RTS)
2 Software (XON/XOFF)
/cfg/ser0/parameters/
CCOOMM22 ppoorrtt ((sseerr11))
COM2 (ser1)
/cfg/ser1/parameters/
Please refer to COM1 port (ser0) section
86
Baudrate
Databits
Stopbits
Parity
Flow ctrl
9600
8
1
0
0
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 87
RREELLAAYY AACCTTIIVVAATTIIOONN
A relay may be activated .
Relay parameters
/cfg/Maccess/Relay
Active
Time in 100 ms
0 (default value) Relay not active
1 reserved
2 Relay active
[10 –200], 30 by default.
Relay aperture time in 100 ms.
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
87
Page 88
TTIIMMEE AANNDD AATTTTEENNDDAANNCCEE
Since software release 5.0, the MorphoAccess™ events logged can be
enriched with some attendance information (entry, exit...)
When the time attendance feature is activated the main screen may
display 2 or 4 functions (in text mode):
two functions mode
four functions mode
When entering, the user has to press the key function 1 on the keyboard
to log his entry time.
When exiting, the user has to press the key function 4 on the keyboard to
log his exit time.
For particular uses such as temporary absences, two additional functions
corresponding to function keys 2 and 3 can be displayed.
After selection, the MorphoAccess™ switches in biometric mode
(identification or authentication).
If the user has selected the wrong operation (IN/OUT...), the function key 4
can be pressed at any moment during biometric invitation to abort the
verification. In this case, nothing is logged or sent to the controller.
After 10 seconds of inactivity on identification mode(no finger detected on
the sensor), the terminal switches back to the selection screen. In this
case the operation result is logged and/or sent to the controller (time-out).
88
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 89
Note : In case of badge wait (mode 1,3,4,5) or Id presentation, the timeout
message is nor displayed nor logged and/or sent to the controller.
Time attendance can also be displayed in graphic mode:
two functions mode
four functions mode
Time Attendance can be configured from the CONFIG menu thanks to the
keys present in the section /cfg/Maccess/time attendance.
The allowed values are:
Configuration time attendance
/cfg/Maccess/time attendance/
mode
0 Time attendance is disabled.
1 Time attendance is enabled with two
functions: IN and OUT.
2 Time attendance is enabled with four
functions IN, IN (from) DUTY, OUT (on)
DUTY and OUT.
display
0 Keys label are in English.
1 Keys label are in Spanish.
2 Keys label are in French.
3 Switches to graphic mode (default value).
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
89
Page 90
For more information about log configuration and retrieving, refer to the
MorphoAccess Host System Interface Specifications.
90
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 91
TTHHEE VVEERRSSIIOONN MMEENNUU
From the System Menu, press the V
information file.
This display contains information that may be necessary if the SAGEM
MorphoAccess™ requires technical support. It should not normally be
necessary to access this display unless requested by SAGEM technical
support personnel.
Kernel is the name of the module being displayed.
Rev is the revision of the module.
V
E
R
S
I
O
S
S
N
I
O
N
I
O
N
key to access the
V
E
E
R
R
P/N is the part number for the module.
X is the checksum for the module.
The next line shows the date of the module's creation.
ID is the ID for the module in the system.
P
R
E
P
The P
R
R
E
E
V
V
V
and N
N
N
E
X
T
E
X
T
E
X
T
buttons allow you to browse for all modules
present in your SAGEM MorphoAccess™.
E
X
I
T
E
X
I
T
E
X
I
T
returns to main menu.
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
91
Page 92
TTHHEE SSEERRIIAALL NNUUMMBBEERR MMEENNUU
From the System Menu, press the SER NB key to display the serial
number.
Serial # is your SAGEM MorphoAccess™'s serial number.
MicroBoot revision is the revision number of your SAGEM
MorphoAccess™'s MicroBoot. This revision number may be needed when
requesting technical support.
ETH is the physical Ethernet address, also known as the MAC address.
This address may be required by your network Administrator.
92
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 93
TTHHEE SSEETTTTIINNGG MMEENNUU
From the System Menu, press the S
parameter settings.
CONTRA RTC EXIT
C
O
N
T
C
O
N
M
O
O
O
O
R
N
R
R
T
E
T
E
The C
display.
M
The M
contrast.
S
E
T
T
I
N
S
E
E
G
T
T
I
N
G
T
T
I
N
G
key to access the
GEN E RAL S ETTING S
R
A
R
A
R
A
selection allows you to adjust the contrast of the LCD
L
E
S
S
L
E
S
E
key increases the contrast, the L
S
E
S
S
key decreases the
CONTRA S T S E TT I NGS
R
R
The R
-
+
CONTRAST VALUE : 5
LESS MORE EXIT
T
C
T
C
T
C
menu allows you to set the current date and time.
RTC S E T TINGS
T ime 16:45:44 Dat e 14/0 6/00
SETTIME SETDATE EXIT
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
93
Page 94
S
E
T
T
I
M
S
E
N
N
N
C
C
C
E
E
E
T
E
The S
following format: HHMMSS. The V
C
A
C
A
C
A
E
T
I
M
T
L
L
E
T
I
M
E
key allows you to set the time. Enter the time in the
L
key aborts editing and returns to the previous menu.
TIME SE TTI NG S
TIME (HHMMSS) : 120000
V
V
A
A
A
L
I
D
L
I
D
L
I
D
key records your setting. The
VALID CANCEL
S
E
T
D
A
T
D
C
E
A
T
E
D
A
T
E
key allows you to set the current date. Enter the date in
V
V
E
L
C
E
L
C
E
L
key aborts editing and returns to the previous menu.
S
E
C
C
A
A
A
E
N
T
T
N
N
The S
the following format: DDMMYY. The V
The C
A
A
A
L
I
D
L
I
D
L
I
D
key records your setting.
DATE SE TTI NG S
DATE (DDMMYY) : 10060 0
VALID CANCEL
NB : You can use the correction key # to delete the last characters
entered.
Note : see section Recommendations page 104about date
synchronisation.
94
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 95
AACCCCEESSSS TTHHEE MMIIFFAARREE KKEEYYSS UUPPDDAATTEE MMEENNUU ((MMOORRPPHHOOAACCCCEESSSS 2
Each data sector on a MIFARE card is protected in reading and writing by
2 keys of 6 bytes each. These keys are noted A and B. Since the card is
composed of 16 sectors, there are actually 32 keys.
When you present a MIFARE card to the MorphoAccess for an
authentication, data can be read only if the keys which protect it are the
same as the keys initialized into the reader. By default both keys A and B
are set to 0xFFFFFF for the 16 sectors in the MIFARE module of the
MorphoAccess™. These default values are called Transport keys.
You can change the value of the keys thanks to the hotkey C
the Administrator menu(17). You will need for that an administrator card
containing the new keys to initialize. Please check the Enrollment Station
documentation to know how to create an administrator card.
C
While you are in the administrator menu, press the key C
MIFARE KEYS UPDATE screen appears.
C
2
L
2200))
C
C
L
L
L
K
E
Y
K
K
Y
Y
Y
E
E
S
S
Y
Y
S
S
. The
S
S
in
L
L
K
E
K
E
K
E
MIF ARE KEYS UPD AT E
Please Presen t A dmi n Card
<C urren t K eys : Transpo rt>
CANCEL
Present the administrator card to start the update.
MIF ARE KEYS UPD AT E
Upda t ing Ke y A3 & B3
<Current Ke ys : UPDATING>
CANCEL
When the MorphoAccess™ finishes to update the keys for the 16sectors,
a successful message appears. The keys status indicates now "user"
keys, meaning keys different from 0xFFFFFF have been loaded into the
reader. Then the MorphoAccess™ comes back to the administrator menu
after 2 seconds.
If for some reasons the update is not successful (power shutdown before
the end of the operation for instance), a new hotkey will be available the
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
95
Page 96
next time you will enter in the CL KEYS menu. The keys status will
indicate "INVALID" keys.
MIF ARE KEYS UPD AT E
Please Presen t A dmi n Card
<Current Keys : INV ALID>
PREV
L
O
A
D
D
F
L
T
K
E
Y
L
O
A
D
D
F
L
T
Pressing the L
32 keys with the default value 0xFFFFFF.
O
A
D
D
F
L
T
K
K
S
E
Y
S
E
Y
S
hotkey will allow you to re-update the
LO AD DFLT KEYS
96
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 97
yp
)
yp
)
CCOONNTTAACCTTLLEESSSS CCAARRDD DDAATTAA SSTTRRUUCCTTUURREE ((MMOORRPPHHOOAACCCCEESSSS 222200
DDaattaa ssttrruuccttuurree
With MorphoAccess™ 220, a MIFARE can be used to trigger an
authentication. In that case, biometric data are stored in a TLV format (Tag
– Length – Value).
Data on the card is a concatenation of TLV.
T L V
T: 1 byte data identifier.
L: 2 bytes size of the V field. Length is encoded in little endian.
V: value of the data field.
The section Setting up contactless reader parameters describes the data
location (first block read).
MMoorrpphhooAAcccceessss™™ TTaaggss
OONNLLYY))
ID Tag
Data t
ID 24 0x32
This tag contains a unique card identifier. This ID can be used as an index
in the local database of the MorphoAccess™. It is sent to the access
control system on a positive authentication. This tag holds a length fixed
string. Data are then padded with null characters.
Name Tag
Data t
Name 20 0x20
This tag contains the name of the cardholder. This name will be displayed
on a positive authentication. This tag holds a length fixed string. Data are
then padded with null characters.
e Size Tag (Hex
e Size Tag (Hex
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
97
Page 98
Minutiae 1 Tag
yp
)
yp
)
yp
)
yp
)
yp
)
Data t
e Size Tag (Hex
Minutiae 1 170 0x30
This tag contains the minutiae of the first enrolled finger according to the
PKCOMP170 format.
Minutiae 2 Tag
Data t
e Size Tag (Hex
Minutiae 2 170 0x31
This tag contains the minutiae of the second enrolled finger according to
the PKCOMP170 format.
PIN Tag
Data t
e Size Tag (Hexa
PIN 15 0x33
This tag contains the user PIN code (ASCII and numerical).
BIOPIN Tag
Data t
e Size Tag (Hexa
BIOPIN 15 0x34
This tag contains the user BIOPIN code (used instead of the user
minutiae).
CARD MODE Tag
Data t
e Size Tag (Hexa
Card mode 1 0x35
This tag contains the authentication method to use.
98
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Page 99
g (
)
g (
)
AADDMMIINN CCAARRDD FFOORRMMAATT ((MMOORRPPHHOOAACCCCEESSSS 222200 OONNLLYY))
Keys stored on the contactless reader are defaulted to 0xFFFFFF.
These keys may be changed using a remote command (ILV) or through a
particular contactless card: an “admin card”. This card will store previous
and new keys. This card is encoded with old keys and contains new keys.
SSAAGGEEMM kkeeyyss
Mifare 1K card
Data Size Ta
Hexa
SAGEM keys 192 0x03
The keys are 6 bytes long. There are 32 keys to initialize, representing
192 data bytes.
Mifare 4K card
Data Size Ta
Hexa
SAGEM keys 480 0x03
The keys are 6 bytes long. There are 80 keys to initialize, representing
480 data bytes.
SK-0000011145-05 SAGEM Défense Sécurité document. Reproduction and disclosure forbidden.
99
Page 100
MMaappppiinngg
A succession of TLV will contain all the keys.
Mifare 1K card
192 bytes of data + 3 bytes of tag. 13 blocs will be required (195/16). 13
bytes will be left empty in the last used block.
This map will represent the position of each key:
Sector Block 1 Block 2 Block 3 Block 4
0
1
2
3
4
T L K1 K2 K3 K4 K5 K6 K7 Current key*
K8 K9 K10 K11 … Current key*
… Current key*
K24 .. Current key*
Reserved
5
K32 … Current key*
• Key 1 will correspond to key A and will be copied in sector 0.
• Key 2 will correspond to key B and will be copied in sector 0.
• Key 3 will correspond to key A and will be copied in sector 1.
• Key 4 will correspond to key B and will be copied in sector 1.
• …
* : If no key is stored in the reader, default keys will be required
(0xFFFFFFFF).
Carte Mifare 4K
Mapping is the same than with 1K cards. There are 80 keys instead of 32:
31 blocks will be required on the card (483/16). 13 bytes will be left empty
in the last used block.
100
SAGEM Défense Sécurité document. Reproduction and disclosure forbidden. SK-0000011145-05
Loading...