manualshive.com logo in svg

Johnson Controls Tyco KT-1, Руководство по установке, Страница: 33 / 56

Поделиться
Скачать
Johnson Controls Tyco KT-1 Скачать руководство пользователя страница 33

Security hardening guide

The security hardening guide provides information about the following areas:

Assuring compliance with the cybersecurity criteria that govern the target environment

Designing safe and secure deployment architecture

Providing a reference for settings that you configure during deployment

To ensure the safe and secure deployment of the KT-1 controller, complete the following steps:

1. 

Ensure that you understand and plan your controller architecture. For more information, see

Architecture

.

2. 

After you complete your architectural plan, install the controller and make application-

specific configuration changes. For more information, see 

Deployment

.

Architecture

The KT-1 architecture includes the following components:

The KT-1 controller that you can configure in one of three modes:

- Stand-alone mode: use as a stand-alone access device with an Ethernet connection for

direct configuration.

- EntraPass mode: connect to a base server with the Entrapass application through an

Ethernet or RS-485 connection.

- Cloud mode: connect to the cloud service using an Ethernet connection.

The controller commonly has at least one reader connected to it. You can connect multiple

readers and input/output modules to the controller.

See the following guidelines that relate to your chosen controller architecture.

Connecting to EntraPass using RS-485

If you connect the controller to EntraPass using an RS-485 bus, the connection is not encrypted or

authenticated.

Ensure that you isolate and secure the connection wires inside the walls of the installation in

a safe area.

Ensure that you cannot access wires from an exterior wall.

Connecting to EntraPass using Ethernet

To connect the controller to EntraPass in TCP mode, even if the link is encrypted and secure,

use a LAN or VLAN.

Note: 

The controller does not support the direct use of a VPN. Connect a VPN through a

router.

Connecting to the cloud using the internet

If you connect the controller to the cloud service using the internet, the cloud connection is

protected by certificate-based authentication.

If possible, when you connect the controller to the internet, use a firewall.

Connecting a stand-alone controller using Ethernet

To connect a stand-alone controller, configure your username and password. Use these

details to access the secure Kantech registration web pages to configure the controller.

Note: 

Complete this process during the initial setup.

KT-1 One-Door Controller Installation Guide

31

Содержание Tyco KT-1

Страница 1: ...KT 1 One Door Controller Installation Guide D29008966R009 2021 03 08 DN2186 2103 ...

Страница 2: ......

Страница 3: ...roduction 12 Features 13 Operating modes 13 Compatibility with EntraPass 13 Compatibility using Windows CE 13 Compatibility using Linux 14 Configuring IP communication 14 Communication ports 14 IP connectivity with or without PoE PoE 14 AES encryption 128 bit 14 Inputs 15 Stand alone EntraPass or cloud mode 15 EntraPass mode 15 Tamper switch 15 Lock outputs 15 Relay outputs 15 KT 1 One Door Contro...

Страница 4: ...ch shield LED 18 Wiring diagrams 20 System setup with EntraPass 28 Security hardening guide 31 Architecture 31 Connecting to EntraPass using RS 485 31 Connecting to EntraPass using Ethernet 31 Connecting to the cloud using the internet 31 Connecting a stand alone controller using Ethernet 31 Connecting readers and modules using Wiegand and an SPI 32 Connecting readers and modules using an RS 485 b...

Страница 5: ...reparing to install the controller 34 Installing the KT 1 35 Installing the KT 1 PCB 36 Earth grounding 36 Connecting door locking devices 37 Connecting inputs 38 Connecting card readers 40 Connecting relay controlled outputs 41 Connecting auxiliary outputs 42 Connecting the controller 42 Making an RS 232 cable with an RJ 12 connector 44 Power supply 44 Powering the KT 1 44 Powering the KT 1 or KT...

Страница 6: ... One Button as a fifth input 47 Configuration 48 Configuring the controller using a browser 48 Configuring stand alone mode using the activate now option 48 Configuring stand alone mode using the other ways to activate option 48 Configuring EntraPass mode 48 Configuring cloud mode 48 Configuring the controller using the KT Finder 49 Adding the controller to the cloud 49 Replacing or discarding com...

Страница 7: ...UL 294 Compliance Notice 52 UL 1076 Compliance Notice 52 FCC IC 53 CE RCM 53 KT 1 One Door Controller Installation Guide v ...

Страница 8: ......

Страница 9: ... be used c Backup Copy You may make back up copies of the SOFTWARE PRODUCT but You may only have one copy per license installed at any given time You may use the back up copy solely for archival purposes Except as expressly provided in this EULA You may not otherwise make copies of the SOFTWARE PRODUCT including the printed materials accompanying the SOFTWARE 2 DESCRIPTION OF OTHER RIGHTS AND LIMI...

Страница 10: ...00 BECAUSE SOME JURISDICTIONS DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES THE ABOVE LIMITATION MAY NOT APPLY TO YOU d DISCLAIMER OF WARRANTIES THIS WARRANTY CONTAINS THE ENTIRE WARRANTY AND SHALL BE IN LIEU OF ANY AND ALL OTHER WARRANTIES WHETHER EXPRESSED OR IMPLIED INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PU...

Страница 11: ...Salvador Direct 503 2 136 8703 Guatemala Guatemala City Direct 502 2 268 1206 Mexico Mexico City Direct 52 55 8526 1801 Panama Panama City Direct 507 836 6265 Peru Lima Direct 51 1 642 9707 Venezuela Caracas Direct 58 212 720 2340 Europe Middle East and Africa For technical support contact us at one of the following email addresses or use the phone number for your area For technical post sales inq...

Страница 12: ...me Asia Pacific Toll free 800 2255 8926 Australia Direct 1 800 580 946 China Direct 86 21 6163 8644 India Direct 91 80 4199 0994 Oceania and New Zealand Direct 64 9942 4004 Copyright 2021 Johnson Controls All rights reserved JOHNSON CONTROLS TYCO and KANTECH are trademarks of Johnson Controls Safety information WARNING Risk of Electrick Shock Never install the equipment during an electrical storm ...

Страница 13: ...used the cabinet must be secured to the building structure before operation Use four 4 stainless steel tapping screws 8 32 mm 1 25 in to mount the cabinet 5 The ground connection must be as shown within the included diagram or equivalent 6 Internal wiring must be routed in a manner that prevents Excessive strain on wire and on terminal connections Loosening of terminal connections Damage of conduc...

Страница 14: ...configurations KT 1 one door controller single gang mount KT 1 PCB one door controller cabinet mount For information about expansion kits and related components see KT 1 models expansion kits and components Figure 1 KT 1 controller Figure 2 KT 1 PCB controller 12 KT 1 One Door Controller Installation Guide ...

Страница 15: ...ment software to add additional doors and controllers using an Ethernet or RS 485 connection For information about how to configure each mode see Configuration Compatibility with EntraPass See the following EntraPass compatibility depending on which operating system your controller uses Compatibility using Windows CE The controller is compatible with the following EntraPass editions 6 02 and later...

Страница 16: ...ms Note In UL listed installations this is only for supplementary use IP connectivity with or without PoE PoE When you use the KT 1 controller with EntraPass Special Edition Global Edition or Corporate Edition it can gather its configuration through an IP connection over a local area network LAN or over a wide area network WAN Note Do not use a WAN configuration with EntraPass Global Edition When ...

Страница 17: ... can manually shunt a zone to a secure state Disarmed door shunt when the alarm system is disarmed some zones may be shunted to a secure state Entry exit delay shunt when a user disarms or arms the alarm system and an entry or exit delay prevails some zones may be shunted to a secure state Arming disarming request Postpone arming request Tamper switch Use the screw at the bottom of the case which ...

Страница 18: ...e firmware The steps to download firmware depend on the mode of your controller See the following options Downloading firmware in EntraPass mode Download firmware from any EntraPass workstation to the controller The system stores the firmware in the controller s flash memory and it upgrades without having to change any parts Downloading firmware in stand alone mode 1 Log on to www kantech com 2 Go...

Страница 19: ...r input Points maximum wiring AWG 22 600 m 2 000 ft For maximum wiring specifications for readers refer to the card reader Installation Guide Door strike power supervised 750 mA for one output or 1 0 A total in PoE 13W 375 mA each or 750 mA total Lock outputs can detect only short circuit faults not open circuit faults Auxiliary reader outputs LEDs LED OUT1 and OUT2 and buzzer BUZ 25 mA max each o...

Страница 20: ...LED status indicators Name LED color Status LINK Ethernet Green There is an Ethernet cable and a network connection The LED is off when there is no Ethernet network or the cable is disconnected DATA Ethernet Yellow There is network activity RX1 Yellow The RS 485 serial port is receiving activity from the gateway TX1 Yellow The RS 485 serial port is transmitting activity to the gateway RX2 Yellow T...

Страница 21: ...ds Acknowledging enrollment Pink One 2 5 second flash Updating firmware Green Five flashes every second at 50 duty cycle Receiving broadcast Green One 2 5 second flash Fail soft Yellow Continuous short flashes Factory default DHCP Yellow Continuous long flashes Forced default STATIC Yellow Three long flashes Hard reset Red Four short flashes Unable to resolve DNS Red Two long flashes DHCP server f...

Страница 22: ...Wiring diagrams See the following wiring diagrams for each controller model Figure 4 KT 1 inputs and outputs 20 KT 1 One Door Controller Installation Guide ...

Страница 23: ...onnection to the cabinet K Battery 12 V 7 A H L Connect the ACT AC trouble output from the KT PS4085 to one input on the KT 2 to transmit AC loss events to the monitoring console M Class 2 power limited adaptor model PTC1640UG Input ratings 120 VAC 60 Hz 40 VA Note Do not connect to a receptacle that is controlled by a switch N Transformer 16 VAC 40 VA O Optional power supply KT PS4085 12 VDC 1 5 ...

Страница 24: ...Figure 5 KT 1 PCB inputs and outputs 22 KT 1 One Door Controller Installation Guide ...

Страница 25: ...ttery 12 V 7 A H H Relay 1 30 VDC VAC 3 Amps Form C I Relay 2 30 VDC VAC 3 Amps Form C J Door contact K Optional end of line resistors L Request to exit device M Individually programmable zone termination NC NO NEOL single or double EOL termination N Tighten the nut to break the paint and ensure there is a secure connection to the cabinet O RJ12 RS232C port integration P RJ45 Ethernet network opti...

Страница 26: ...Figure 6 KT 1 controller with KT PS4085 power supply 24 KT 1 One Door Controller Installation Guide ...

Страница 27: ...outputs Callout Description A Entry reader B KT 1 controller C RJ45 Ethernet network Optional PoE or PoE powered D Relay outputs open collector switch to ground 12 VDC 100 mA maximum KT 1 One Door Controller Installation Guide 25 ...

Страница 28: ...mable zone termination NC NO NEOL single or double EOL termination K Connect the RS 485 main network to other KT 1 controllers or to the gateway using a USB 485 interface L Earth ground connection M Optional exit reader N Extra outputs used as a general annunciator O Battery 12 V 7A H P AC power 230 VAC 50 Hz Q Power supply case screw R Power supply approved type In 230 VAC 50 Hz Out 13 8 VDC 1 5A...

Страница 29: ...Figure 8 KT 1 PCB EU inputs and outputs KT 1 One Door Controller Installation Guide 27 ...

Страница 30: ... 50 Hz P Power supply case screw Q Connect a 1000 Ohm resistor between LK and 12V if you are not using a locking device R Door locking device 12 VDC 750 mA maximum S Optional exit reader T Power supply approved type In 230 VAC 50 Hz Out 13 8 VDC 1 5A System setup with EntraPass You can set up the KT 1 controller with EntraPass Special Edition Corporate Edition Multi Site Gateway or Global Edition ...

Страница 31: ...Figure 9 Over the internet with EntraPass Special or Corporate Edition with a Multi Site Gateway KT 1 One Door Controller Installation Guide 29 ...

Страница 32: ...Figure 10 USB 485 with EntraPass Special Corporate and Global Editions Figure 11 Over the internet with EntraPass Global Edition and a KT NCC 30 KT 1 One Door Controller Installation Guide ...

Страница 33: ...st one reader connected to it You can connect multiple readers and input output modules to the controller See the following guidelines that relate to your chosen controller architecture Connecting to EntraPass using RS 485 If you connect the controller to EntraPass using an RS 485 bus the connection is not encrypted or authenticated Ensure that you isolate and secure the connection wires inside th...

Страница 34: ...nstallation wizard you are prompted to reconfigure your user account activate additional password security measures or disable the access point mode Connecting to the internet Depending on your configuration and deployment architecture you may require internet access To access cloud services you require an internet connection For a convenient stand alone deployment you can configure the KT 1 over ...

Страница 35: ... information about installing the KT 1 see Installation Logging on during the initial startup To facilitate common commissioning tasks when you first start up the controller the following functions are enabled KT Registration web page and controller discovery There is no default user account to access these functions To log on to the controller during the initial startup use the secure account act...

Страница 36: ...s 9 in 23 cm of clear space around all sides of the unit and a minimum of 13 in 33 cm of clear space in front of the unit Do not locate the controller within 6 5 ft 2 m of any high voltage equipment or wiring and of any electrical equipment susceptible to generating electrical interference within 3 ft 1 m of any telephone equipment or lines and within 26 ft 8 m of any third party transmitting equi...

Страница 37: ...omplete each of the required connections on the small board 2 Mount the wall plate onto a single gang electrical box using two of the Phillips head screws that are provided 3 Clip the small board onto the wall plate 4 Mount the main boards in front of the small board 5 Mount the cover and secure it with one of the Phillips head screws that are provided Figure 12 Installing the KT 1 Callout Descrip...

Страница 38: ...disconnect the power before you continue 2 Complete each of the required connections 3 Connect the 12 VDC power supply or if you are using Ethernet connect the PoE or PoE to the RJ 45 connection 4 If you removed the boards at the beginning of the installation replace them in the cabinet Figure 13 Installing the KT 1 PCB Callout Description A Backplate B Main boards C Front cover Earth grounding To...

Страница 39: ...mergency exits Note The door locking device outputs can operate DC powered locking devices such as electromechanical strikes and can be configured to operate in fail safe or fail secure mode normal or reverse action Note If required you can program any of the controller relays to provide galvanically isolated outputs 1 Connect the negative wire from the door strike to the LK1 output 2 Optional Con...

Страница 40: ...d The maximum distance of one line is 2 000 ft 600 m with AWG 22 in a single or double EOL configuration 1 Connect devices to inputs 1 to 4 2 Define onboard inputs with none single or double EOL resistors Note For UL listed installations you must use supervised EOL resistors Note Inputs 1 and 2 are automatically reserved for the controlled door The door contact is assigned to input 1 and the assoc...

Страница 41: ...t Description A Alarm B Tamper C End of line resistor D Door contact E Request to exit device F Individually programmable zone termination NC NO NEOL single or double EOL termination KT 1 One Door Controller Installation Guide 39 ...

Страница 42: ...ides 12 VDC power for card readers You can connect two card readers to a KT 1 controller The distance between the readers and the controller varies by reader type For more information refer to the card reader Installation Guide Install one reader to control the entry of a single door Install two readers to control the entry and the exit of a single door Note Outputs OUT1 and OUT2 are extra multipu...

Страница 43: ...y controlled outputs Controller Outputs Rating KT 1 RELAY1 and RELAY2 Open collector up to 100 mA each KT 1 PCB Form C RELAY1 and RELAY2 3 Amps 30 VAC VDC 0 6 power factor Figure 19 KT 1 relay controlled outputs Callout Description A Relay outputs Open collector switch to ground 12 VDC 100 mA maximum B 12 VDC relays KT 1 One Door Controller Installation Guide 41 ...

Страница 44: ...ast controller of a loop there is no end of line resistor to install on the RS 485 COM1 terminals 1 Connect the VC 485 or the USB 485 to the RS 485 Bus Note The use of a VC 485 was not evaluated by UL 2 Connect the RS 485 cable to COM1 X X Note The controllers are linked together through their RS 485 terminals The maximum communication loop length is 4 000 ft 1 2 km using the appropriate cabling S...

Страница 45: ...100 mA C VC 845 RS232 to RS485 serial communication interface D KT 1 controller E Connect the RS 485 main network to other KT 1 controllers or to the gateway using a USB 485 interface F KT 1 PCB controller G USB 485 USB to RS485 serial communication interface H Gateway USB port The maximum length is 3 3 ft 1 m KT 1 One Door Controller Installation Guide 43 ...

Страница 46: ... PoE Powering the KT 1 PCB in a KT 1 CAB Powering the KT 1 PCB using an external power supply Powering the KT 1 1 Connect an external power supply to the 12 VDC input terminals that are located on the small board 2 Install the small board to the wall plate 3 Install the main boards to the small board Powering the KT 1 or KT 1 PCB using PoE or PoE 1 During the installation connect the Ethernet wire...

Страница 47: ...cond Corporate Online 3 flashes every second Hard reset If you perform a hard reset on a KT 1 the following occurs All of the controller s memory definitions reset to their default values The internal event buffer clears If it is valid the IP address is kept The LED pattern is in a hard reset state 4 flashes every second if it is not in a factory default or forced default static state You see the ...

Страница 48: ...ock reset to the default time and date values of January 1 2014 00 00 00 Wednesday The KT 1 waits for valid communication from EntraPass through any effective Ethernet or RS 485 communication port to configure the controller master mode Resetting the controller 1 Remove the front cover of the controller by unlocking the clip at the bottom 2 Locate the Reset button in the lower right of the main bo...

Страница 49: ...urning on the Kantech shield LED Press the One Button for three seconds To turn off the Kantech shield LED press the One Button for three seconds again Enrolling to EntraPass Press the One Button for six seconds to trigger enrollment to EntraPass for 10 minutes and to activate the Kantech shield LED To turn off the enrollment and the Kantech shield LED press the One Button for six seconds again Us...

Страница 50: ...complete Configuring cloud mode Configuring stand alone mode using the activate now option 1 On the KT 1 REGISTRATION page click Standalone 2 On the Activate now tab in the Customer information and Installer information fields enter the relevant information 3 Click Activate now Configuring stand alone mode using the other ways to activate option 1 Log on to http www kantech com 2 Click Support and...

Страница 51: ...ice list select KT 1 5 In the MAC address field type the MAC address of the KT 1 and click Connect When the KT Finder finds the controller the following message appears Configuring the KT 1 with the KT Finder 6 In the EntraPass Gateway pane in the EntraPass IP Address field type the IP address For more information refer to the EntraPass Administration Guide 7 In the Ethernet configuration pane fro...

Страница 52: ...ot recharge disassemble heat above 100 C or incinerate KT 1 models expansion kits and components The following table lists of the different KT 1 models expansion kits and other related components Table 12 KT 1 models expansion kits and related items Product Description KT 1 One door IP controller single gang mount KT 1 M One door IP controller PCB with metal cabinet No P S No BAT KT 1 PCB One door...

Страница 53: ... powered by an external separately listed power supply or PoE PoE switch the performance levels remain the same with the exception of the standby time that will be rated Level I no secondary power source To comply with UL listings the following requirements must be met Installation locations and wiring methods shall be in accordance with the National Electrical Code ANSI NFPA 70 Do not connect to ...

Страница 54: ...nt used as central supervisory equipment station shall be listed to Information Technology Equipment Safety Part 1 General Requirements UL 60950 1 or UL 62368 1 Should the EntraPass and or Redundant Server be replaced a UL 60950 1 or UL 62368 1 listed computer must be used The following recommended system requirements apply to the EntraPass Server Redundant Server Video Vault Card Gateway SmartLin...

Страница 55: ...he protected systems to the central supervising station and the loss of the channel prevents the receipt of signals from protective circuits beyond the fault the number of separate signals on a single channel shall be limited to 1000 Minimum 4 hours of stand by power provided by a standby rechargeable battery rated 12V 7Ah Loss of AC signal is transmitted immediately to the central station Require...

Страница 56: ...KT 1 One Door Controller Installation Guide 54 ...

Отзывы:

Нет отзывов