Professional Documents
Culture Documents
©2019 Johnson Controls. All rights reserved. JOHNSON CONTROLS, TYCO and C•CURE 9000 are trademarks and/or registered trademarks.
Unauthorized use is strictly prohibited. Product offerings and specifications are subject to change without notice. Actual products may vary from
photos. Not all products include all features. Availability varies by region; contact your regional sales representative.
The digital apparatus does not exceed the Class A limits for radio noise emissions from digital apparatus set out in the Radio Interference
Regulations of the Canadian Department of Communications.
Le present appareil numerique n’emet pas de bruits radioelectriques depassant les limites applicables aux appareils numeriques de la class A
prescrites dans le Reglement sur le brouillage radioelectrique edicte par le ministere des Communications du Canada.
This equipment has been tested and found to comply with the limits for a digital device, pursuant to Part 15 of the FCC rules. These limits are
designed to provide reasonable protection against harmful interference when the equipment is operated in a commercial environment. This
equipment generates, uses, and can radiate radio frequency energy and, if not installed and used in accordance with the instruction manual, may
cause harmful interference to radio communications. Operation of this equipment in a residential area is likely to cause harmful interference, in
which case the user will be required to correct the interference at his own expense.
Operation is subject to the following two conditions: (1) This device may not cause harmful interference, and (2) this device must accept any
interference received, including interference that may cause undesired operation.
In order to maintain compliance with FCC regulations, shielded cables must be used with this equipment. Operation with non-approved equipment
or unshielded cables is likely to result in interference to radio and television reception.
Caution: Changes or modifications not expressly approved by the manufacturer could void the user’s authority to operate this
equipment.
Table of Contents
Chapter 3 - Configuration 15
IP-ACM v2 Configuration Sequence 15
Initial Configuration 15
C•CURE 9000 iSTAR Ultra IP-ACM Editor 18
iSTAR Controller IP-ACMs Tab 18
iSTAR Ultra IP-ACM Inputs Tab 20
iSTAR Ultra IP-ACM Outputs Tab 21
iSTAR Ultra IP-ACM Wiegand Tab 21
iSTAR Ultra IP-ACM RS-485 Tab 22
iSTAR Ultra IP-ACM Triggers Tab 23
iSTAR Ultra IP-ACM Status Tab 24
Offline configuration 24
Upgrading the IP-ACM v2 Firmware 26
Overview
The IP-ACM Ethernet Door Module v2 module provides connection and management of access control for two
readers. The maximum number of IP-ACM Ethernet Door Module v2 modules supported per iSTAR Ultra is 32,
iSTAR Ultra SE is 32, and iSTAR Ultra LT is 8 or 16, depending on the model.
For the 8-reader iSTAR Ultra LT board (0312-7188-01), you can have up to 4 IP-ACMs with 2 readers per IP-ACM, 8 IP-ACMs with
NOTE one reader per IP-ACM, or any combination of these configurations.
The 16-reader iSTAR Ultra LT board has not been evaluated by UL.
Caution: Do NOT plug this port into the same network as J1 or a loopback will occur.
■ Offline mode for two readers that allows the last 1,000 previous card admits and/or a specific personnel group of
no more than 100
Table 1: Part numbers and descriptions of IP-ACM Ethernet Door Module v2 and enclosures
SW1
Position Description
Position D of rotary switch SW2 is used for factory reset. All other positions of the rotary switch are not used in this
release.
Factory reset
J5
The second RJ45 port (J5) used for connection to the iSTAR Ultra LT when mounted in the same enclosure. If this use
case is being implemented, two IP addresses are needed: one for the IP-ACM and another for the iSTAR Ultra LT.
Caution: Do not plug this port into the same network as J1 or a loopback will occur.
DO NOT PLUG INTO THE SAME NETWORK AS PORT 1 OR A LOOPBACK WILL OCCUR!
P1
This port supports local power of 12 VDC or 24 VDC, 25.5W max. However, the maximum combined output limit for
readers and locks is 17W (+/-10 %). See Table 4 on Page 9 for more information regarding power and wiring
requirements.
P3 and P4
Figure 2 on Page 4 illustrates the wiring for a Wiegand reader on the IP-ACM v2.
Figure 2: Wiegand wiring for the IP-ACM v2
P5 and P6
You can wire these RS-485 ports either full or half duplex depending on the reader you are using. See Figure 3 on Page
5 for reference on wiring these RS-485 ports.
l Wiring for the RS-485 ports are straight-through. Ensure that pin 1 of the RS-485 port on the IP-ACM
NOTE v2 connects to pin 1 of the RS-485 port on the corresponding reader.
l Full duplex has not been evaluated by UL.
P15 Tamper
Inputs
See Figure 1 on Page 2 for the four supervised inputs, P11 to P14, of the IP-ACM v2. Use standard Software House
1K dual EOL configuration. Further configurations may be selected through the IP-ACM v2 editor in C•CURE 9000.
Jumper Settings
Installation Requirements
Ensure the site is ready:
■ The module installation must be performed by a certified installer and must be installed within the same protected
premise as the controlling GCM.
■ For a UL-compliant installation, the power supply must be UL Listed to UL 294 and UL 603, low voltage Class 2
power limited with appropriate ratings.
Table 3: UL 294 Levels
Feature Level
Destructive Attack 1
Line Security 4
Endurance 4
Standby Power 1
■ All interconnecting devices must be UL Listed, low voltage Class 2 power limited.
■ The site must be approved and all wiring must comply with UL requirements and other codes, as appropriate.
Installation shall be in accordance with the National Electric Code, ANSI/NFPA 70-1993.
■ In this installation, the enclosure is mounted directly to a wall or uni-strut using suitable user-supplied hardware.
■ The anchoring system must be capable of sustaining, a proof load four times that of the assembly. Refer to the
enclosure dimensions for information on the weight of enclosures. This weight does not include the cables.
■ The cables are protected by using metal or plastic conduit, or using flexible cable grip strain relief.
■ The module can be powered from either a 12VDC or 24VDC local source, PoE or PoE plus.
■ UL testing was conducted with a product powered from UL Listed model POE36U-1AT-R injector, manufactured
by PHIHONG.
■ Do not connect to a receptacle controlled by a switch.
■ It is recommended to setup a private dedicated network for the connection between IP-ACM v2 panels and iSTAR
Ultra panels for more secure connection options.
LIFE SAFETY REQUIREMENT: A fail-safe override mechanism must be installed at each card reader exit to allow people to leave
NOTE the secure area in case of electromechanical failure.
CAUTION: Changes to the IP-ACM v2 that are not expressly approved by the party responsible for compliance could void your
authority to operate the equipment.
Data processing equipment and office appliance and business equipment used as computer equipment shall comply with the
NOTE Standard for Information Technology Equipment - Safety - Part 1: General Requirements, UL 60950-1.
• The installation shall supply line transient protection complying with the Standard for Transient Voltage Surge Suppressors, UL
1449, with a maximum marked rating of 330 V.
• Communication circuits and network components connected to the telecommunications network shall be protected by
secondary protectors for communication circuits. These protectors shall comply with the Standard for Secondary Protectors For
Communication Circuits, UL 497A. These protectors shall be used only in the protected side of the telecommunications network.
• Equipment shall be installed in a temperature controlled environment. A temperature controlled environment is defined as one
that can be maintained between 55°F (13°C) to 95°F (35°C) by the HVAC system. Twenty-four hours of standby power shall be
provided for the HVAC system. The standby power system for the HVAC system may be supplied by an engine driven generator
alone and in those situations a standby battery is not required to be used.
RS-485 Power 1 RM & I/O modules 22/18 Yes Maximum length depends on
12Vdc
application and AWG2
Power over IEEE 802.3af (PoE) and 802at Switch Contact 24 Yes 328 ft. (100m)
Ethernet (PoE) (PoE Plus), 25.5W max. LLDP
supported for PoE Plus6
1It is important to note that the aggregate load of each pair of RS-485 and Wiegand connections together must not exceed 750mA. Each set of RS-485
and Wiegand can support 750mA.
2Check wire lengths to verify that voltage drops are acceptable. Calculations are based on a single RM-4 reader with keypad and LCD (250mA). Using
22AWG, distance = 600ft. (.0165 ohms/ft.). Using 18AWG, distance = 1500ft. (.0065 ohms/ft.).
3To comply with UL requirements, use shielded, minimum 22 AWG stranded, twisted pair cable for monitor points, DSMs, and REXs. Use Belden 9462
or equivalent.
4It is important to note that the aggregate load of each pair of RS-485 and Wiegand connections together must not exceed 750mA. Each set of RS-485
and Wiegand can support 750mA. Maximum combined output limit for readers, locks, and board logic is 20W.
5Voltage depends on selection of power feed (L1 or L2). Maximum combined output limit for readers, locks, and board logic is 20W.
6Compliance with IEEE 802.3 (AT or AF) specifications was not verified as part of UL294/B.
Environmental requirements
This product is for indoor use only and not intended for outside wiring as covered by article 800 in the National
Electrical Code, NFPA 70.
Table 5: Environmental requirements of the IP-ACM v2
Status Range
Humidity 0 to 85% RH
Grounding requirements
The grounding requirements for IP-ACM Ethernet Door Module v2 installation are as follows:
■ Grounding needs to follow NEC codes or the applicable local code.
■ On the plastic enclosure, ensure that all shields of the IP-ACM v2 cables properly connect and terminate to the
earth ground at the point indicated on Figure 6 on Page 12.
■ Shielded wires should have the shields grounded to the chassis enclosure as close as possible to where the
cables are entering the enclosure.
■ When disconnecting the wiring, disconnect ground wires last, to provide maximum protection to the equipment
and personnel.
Supervision wiring
The IP-ACM v2 supports configurable supervised input circuits. The default selection is the double 1K circuit, as seen
in Figure 5 on Page 11. For more information regarding other inputs available and details of configuration, refer to the
I/8-CSI User Guide.
1Maximum combined output limit for readers and locks is 17W (+/- 10%).
For more information regarding other inputs available and details of configuration, refer to the I/8-CSI User Guide.
Not all configurations can detect all states. For more information regarding states, refer to the I/8-CSI User Guide and the con-
NOTE figuration tables and images relevant to the configuration of your unit.
Plastic enclosure
Figure 6 on Page 12 and Table 6 on Page 12 describe the dimensions of the plastic enclosure. The plastic enclosure is
not acceptable for use in a plenum.
Item Dimension
It is essential to use all five securing screws when mounting the plastic enclosure. Ensure that the mounting hole at 131.1 across and
NOTE 26.3 up is used as this is required for the "whole unit off the wall" anti-tamper feature to be operational.
3. Remove the IP-ACM v2 from the packaging and place in a safe location using ESD proper procedures while
handling equipment.
Metal enclosure
Figure 7 on Page 13 and Table 7 on Page 13 describe the dimensions of the metal enclosure. The metal enclosure is
approved for use in a plenum.
Mounting hardware is not included with the metal enclosure. Hardware used for mounting should be able to support
four times the weight of the enclosure not including cabling.
Table 7: Metal enclosure dimensions
Item Dimension
Installing the metal enclosure and the IP-ACM Ethernet Door Module v2
To install the module and metal enclosure, complete the following steps:
1. Open the door of the metal enclosure.
2. Secure the enclosure to selected wall or support surface using holes provided in the enclosure’s base. See Figure
7 on Page 13 for dimensions and hole pitch for mounting.
3. Remove the IP-ACM v2 from the packaging and place in a safe location using ESD proper procedures while
handling equipment.
4. Secure the IP-ACM v2 to the enclosure.
5. Fit and connect all cables. Refer to the power and wiring requirements for more information.
6. Close and secure the metal enclosure cover.
Chapter 3 - Configuration
Use Normal operation mode when using DHCP network addressing, and use Standalone configuration mode
when configuring a static IP address for the IP-ACM v2.
4. Configure the IP-ACM v2 in the C•CURE 9000 Administration Station. Open the iSTAR controller editor and click
the IP-ACMs tab:
a. Add the IP-ACM v2 to the controller.
b. Configure the IP-ACM v2 Offline Mode.
c. Configure the readers to connect to the IP-ACM v2.
d. Configure the IP-ACM v2 inputs, outputs, and triggers.
5. Configure a door with the readers in the IP-ACM v2.
6. Configure cards, credentials, clearances, and personnel for access at doors and readers.
Initial Configuration
The IP-ACM v2 requires:
■ iSTAR Ultra/Ultra SE/Ultra LT firmware version 6.5.4 or higher
If the iSTAR Ultra, Ultra SE, or Ultra LT is running firmware v6.6.B and higher refer to the latest respective Controller Installation
NOTE and Configuration Guide, available from the website, for iSTAR controller configuration information.
Initial configuration of the IP-ACM Ethernet Door Module v2 can be performed in two modes:
■ Normal Operation mode
■ Standalone configuration mode
Use Normal operation mode when using DHCP network addressing, and use Standalone configuration mode when
configuring a static IP address for the IP-ACM v2.
Software House strongly recommends that you use a Static IP address when configuring iSTAR controllers.
The following limitation applies to iSTAR controllers with member connected controllers and iSTAR Ultra controllers
with connected IP-ACMs that use DHCP IP address assignments:
■ If DHCP is used, the lease may expire and assign a new IP address to the iSTAR controller. If this happens, all
members and IP-ACMs are not able to connect to the iSTAR controller with the new IP address. You need to
reassign the IP address:
1. Update the iSTAR controller IP address in the ICU.
2. Update the IP address in the IP-ACM Configure/Status web page.
3. Update the IP address in the iSTAR Controller Editor (members).
• When you initially configure the IP-ACM v2 using the iSTAR Configuration Utility (ICU), you can only use one IP address of the
NOTE Ultra GCM board for configuration. The GCM board has two Ethernet connections, so if the GCM switches to a different IP
address from the initial configuration, communication from the IP-ACM v2 to the GCM board is lost.
• There is limited access to the IP-ACM v2 Configuration/Status Web Page on a system with Windows 8 or Windows 10 operating
NOTE system using Internet Explorer 11 or Edge browser on IPv4 and IPv6.
• Internet Explorer 9 does not display content correctly for the IP-ACM v2 web page.
• If using Internet Explorer and you receive a Certificate Error indicating "There is a problem with this website's security
certificate”, click Continue to this website (not recommended).
• If using Goggle Chrome and you receive an error indicating “Your connection is not private”, click ADVANCED and then click
Proceed to x.x.x.x (unsafe).
7. Enter the password: iSTAR, and click Login. The IP-ACM Configuration/Status web page appears.
8. In the Configuration section, enter the iSTAR IP address assigned to the iSTAR Ultra controller.
Ensure you click Logout on the IP-ACM Configuration/Status Web Page instead of exiting the browser through the X in the
NOTE upper-right corner so you can access this web page when you want to. If you close IP-ACM Configuration/Status Web Page from
the X in the upper-right corner and then re-open a new web page to the same URL, a message appears stating that the IP-ACM
session is currently locked by the IP Address of the machine where you closed the web page. The locked session times out after
being idle for five minutes. You can then try accessing the URL again.
9. Click Save.
• There is limited access to the IP-ACM v2 Configuration/Status web page on a system with Windows 8 or Windows 10 operating
NOTE system using Internet Explorer 11 or Edge browser on IPv4 and IPv6.
• Internet Explorer 9 does not display content correctly for the IP-ACM v2 web page.
• If using Internet Explorer and you receive a Certificate Error indicating "There is a problem with this website's security
certificate”, click Continue to this website (not recommended).
• If using Goggle Chrome and you receive an error indicating “Your connection is not private”, click ADVANCED and then click
Proceed to x.x.x.x (unsafe).
Ensure you click Logout on the IP-ACM Configuration/Status Web Page instead of exiting the browser through the X in the upper-
NOTE right corner so you can access this web page when you want to. If you close IP-ACM Configuration/Status Web Page from the X in
the upper-right corner and then re-open a new web page to the same URL, a message appears stating that the IP-ACM session is
currently locked by the IP Address of the machine where you closed the web page. The locked session times out after being idle for
five minutes. You can then try accessing the URL again.
2. Click on the Configured check box in the Index row that you want to add or edit.
3. Click in the Edit column of the Index row to open the iSTAR Ultra IP-ACM Editor. The iSTAR Ultra IP-ACM editor
is used to configure the inputs, outputs, and readers (Wiegand, RM, BLE, OSDP, and Smart).
4. Configure the Offline Mode of All IP-ACM's configured on this controller. See Table 8 on Page 19 for
descriptions of the fields.
5. When the IP-ACMs configuration is complete, click in the Enabled check box, and click Save and Close.
Field/Button Description
IP-ACMs
Create All IP-ACMs Click to create the IP-ACMs. When you click Create All IP ACMs the Configured column check boxes are
selected, and you can click in the Edit column to open the iSTAR Ultra IP ACM Editor to configure the
IP-ACM.
Delete All IP-ACMs When you click Delete All IP-ACMs, the check boxes in the Configured column are cleared for all IPACMs.
When the configuration is save, you are prompted to confirm deletion of each IP-ACM.
NOTE: The selections made in the Offline Mode of All IP-ACMs section will apply to all IP-ACMs (IP-ACMv1s and IP-ACMv2s) configured on the
controller.
In offline mode, the IP-ACM board will admit cards that are among the last xxx previous admitted cards in addition to a pre-defined personnel group.
- A total of 1000 credentials (not personnel) for both previous admitted credentials and credentials in the personnel group.
- Maximum 100 personnel in the personnel group.
- If you set the Personnel system variable "Maximum Cards Per Person", then that value must be taken into consideration.
Example: If you set the "Maximum Cards Per Person" value to 3, then only 1000 - 100 x 3 = 700 is allowed in the "Admit the last admitted cards" field
for configuration. This is true, even if the personnel count in the personnel group selected is less than 100.
Admit the last admitted cards Select a number from the menu that will apply to the previous cards that were admitted.
Default: 0
Value: 0 to 1000
Card Format used for Offline Mode Select a card format to be used for personnel when in offline mode. Only individual card formats are
selectable. The card format is used to determine the card data stream for each person in the personnel
group. All personnel will use the same card format. The first facility code and site code in the list will be used
if that format has multiple values.
Number of seconds before Offline The time in seconds that the IP ACM waits to enter offline mode after it loses communication with the GCM
Mode is enabled board.
This setting will apply to all IP ACMs on this controller unless specified in the iSTAR Ultra IP ACM Editor
General tab.
Default: 10 seconds.
Range: 5 to 30 seconds.
Number of Days to Keep The number of days a credential is kept while in offline mode.
Credentials in Offline Mode A value of 0 indicates not to keep a credential when in offline mode.
Default: 30 days
Range: 0 to 9999 days
Field/Button Description
High Latency Threshold in The number of milliseconds that will cause a round-trip latency alarm. This value will apply to all IP-ACM's
milliseconds configured for this controller.
Default: 200 milliseconds (0.2 seconds)
Range: 100- 2000 milliseconds (0.1 to 2 seconds)
You can use an existing Input Template to create one or more of the IP-ACM Board Inputs. Click in the Template
Column, then click . A list of available iSTAR Input Templates appears. Click on the Template you want to use.
Refer to the C•CURE 9000 Hardware Configuration Guide for more detailed information about using Templates to
create Inputs.
Table 9 on Page 20 provides definitions for the buttons and fields on the iSTAR Ultra IP-ACM Inputs tab.
Table 9: iSTAR Ultra IP-ACM Board Inputs Tab Definitions
Field/Button Description
Tamper The Tamper input activates when the controller cabinet is opened or removed from its mounting surface.
NOTE: For UL applications, this field must be enabled.
Select the check box in the Configured column and click located in the Edit column to open the iSTAR Input Editor
General tab to configure the Tamper input. From the Input Editor you can configure the Options, Triggers, Groups, Status and
State Images that are associated with the Tamper Input.
The Template column shows the template name chosen if you selected a Template prior to creating the Input.
Communication A logical unsupervised input that reflects the state of the communication between the GCM board and Processor-A on this IP-
Fail ACM v2 board.
Lock Power IP-ACM can provide power for the locks directly from the 2 Output connectors (Lock Power 1 & 2). There are automatic over-
Alarm Status 1 current shut-off switches on each Lock Power. The Lock Power Alarm Status inputs go Active when the over-current shut-off
Lock Power switches are active, such as when Lock Power has been shut off.
Alarm Status 2
Inputs 1 These standard general purpose supervised inputs are available on iSTAR Ultra IP-ACM boards.
through 4
Table 10 on Page 21 provides definitions of the fields and buttons on the iSTAR Ultra IP-ACM Board Outputs tab.
Table 10: iSTAR Ultra IP-ACM Outputs Tab General Tab Definitions
Field/Button Description
Name Displays the name for this Output board. The name is system-generated by default, but you can edit this name by
clicking this field.
Description Enter a textual comment about the Output board, such as its location or purpose. This text is for information only.
Maintenance Mode Click to put the iSTAR Outboard Board into Maintenance Mode.
Edit column Click the ellipsis in this column to open the iSTAR Output Editor to edit this Output.
NOTE: The Configured check box must be selected to open the Output Editor.
Index column This read-only field identifies the position of each Output (1 - 2) on the IP-ACM board.
Configured column A selected check box indicates that the Output has been configured.
A clear check box indicates that the Output has not been configured.
NOTE: The Configured check box must be selected to open the Output Editor.
Name column Displays the system-generated name for this Output. You can edit this name by clicking in the field.
Template column Displays the Template used for creating this Output. If the Output is not yet configured, you can click in this column,
then click to select an Output Template.
Table 11 on Page 21 provides definitions of the fields and buttons on the iSTAR Ultra IP-ACM Wiegand tab.
Table 11: iSTAR Ultra IP-ACM Wiegand Tab.Definitions
Box Description
Create All Click to create all the Readers. When you click Create All Readers, the Configured column check boxes are selected, and you
Readers can click the ellipsis in the Edit column to open the iSTAR Reader Editor to configure a direct connect Wiegand Reader.
Delete All When you click Delete All Readers, the check boxes in the Configured column are cleared for all Readers, and all these Readers
Readers are immediately deleted (any settings you have configured are lost).
Box Description
Edit Click the ellipsis in the Edit column to open the iSTAR Reader Editor to configure a Reader.
column
Index This column displays the number for each reader. This number is the physical port number for a Direct Connect Wiegand reader.
column
Configured Click the ellipsis in this column to create a reader and make it available for you to edit the device.
column
Name Displays the name for this Reader. The name is system-generated by default, but you can edit this name by clicking in this field.
column
Template Click in this column prior to creating the Reader, then click the ellipsis to select a Reader template from the list of available Reader
column templates.
The Template column shows the template name chosen if you selected a Template prior to creating the Reader.
Readers 1 Select the check box in the Configured column for a Reader and click the ellipsis located in the Edit column to open the iSTAR
-2 Reader Editor General tab to configure the Keypad, Triggers, Groups, Status and State Images that are associated with a Reader.
The Name column displays a name comprised of the Reader Type and the iSTAR Controller name. You can click in this column to
edit the Reader name.
The iSTAR Device Port Editor, accessed by clicking in the Configured check box of the port and click Edit, allows you to
select the RM, BLE, or OSDP protocols. See IP-ACM iSTAR Device Port Dialog Box on Page 23
Table 12 on Page 22 provides definitions of the fields and buttons on the iSTAR Ultra IP-ACM RS-485 tab.
Table 12: iSTAR Ultra IP-ACM Board RS-485 Tab Definitions
Field/Button Description
Create All Click to create the RS-485 Ports. When you click Create All Ports the Configured column check boxes are selected, and you
Ports can click the ellipsis in the Edit column to open the iSTAR Device Port Editor to configure an RS-485 Port.
Delete All When you click Delete All Ports, the check boxes in the Configured column are cleared for all Ports, and all Ports are
Ports immediately deleted (any settings you have configured are lost).
Edit column Click the ellipsis in the Edit column to open the iSTAR Device Port Editor to configure Device Ports for the IP-ACM. See iSTAR
Ultra ACM RS-485 Device Port Editor on Page 1.
Index column This column displays the number for each Device Port.
Configured Click the ellipsis in this column to create a Device Port and make it available to be edited.
column
Name column Displays the name for this Device Port. The name is system-generated by default, but you can edit this name by clicking in click in
this field.
Field/Button Description
Device Ports 1 Select the check box in the Configured column for a Device Port and click the ellipsis located in the Edit column to open the
-2 iSTAR Device Port Editor General tab to configure the Readers and ACM extensions that are associated with the Device Port.
The Name column displays a name comprised of the Device Port and the iSTAR Controller name. You can click in this column to
edit the Device Port name.
Limitations
■ C•CURE 9000 only supports up to two readers (any combination of RM/Wiegand/OSDP/Smart readers)
connected to an IP-ACM v2.
■ Offline mode is not supported for Smart or RM readers connected to the IP-ACM v2.
■ One I8 input module and one R8 module may be assigned to each device port when the port is assigned as an
RM protocol.
If you select OSDP, you can select a supported Baud Rate. In most cases, the default, 9600 baud, is acceptable.
NOTE
Condition occurs (when the object Property specified in the Trigger reports the Value specified in the Trigger).
For the iSTAR Ultra IP-ACM, you can create the IP-ACM High Latency Alarm Trigger for an iSTAR.
Table 13 on Page 24 provides definitions of the fields and buttons on the iSTAR Ultra IP-ACM Board Status tab.
Table 13: iSTAR Ultra IP-ACM Board Status Tab Definitions
Field/Button Description
Offline configuration
In Offline Mode, there is a limited level of access and control if communication is interrupted between the IP-ACM v2
and the iSTAR. The offline functionality of the IP-ACM v2 allows up to the last 1,000 previous card admits and/or a
specific personnel group of no more than 100. Offline Access stores a set of credentials in non-volatile memory on the
IP- ACM v2. Clearances are not downloaded to the IP-ACM v2 and are not stored.
Refer to the C•CURE Hardware Configuration Guide for more information regarding IP-ACM Offline Mode
Configuration. Offline mode is configured in C•CURE 9000 in the iSTAR Controller editor dialog box in the IP-ACMs
tab.
Card + PIN access is not supported in Offline Mode. Card,-only access with no PIN is supported.
Predefined credentials
Predefined credentials are downloaded from the iSTAR controller in the form of raw data, also called Static Card Data.
When the IP-ACM v2 is offline, access is granted when the predefined credentials, from the Static Card Data stored
on the IP-ACM v2, are presented to the readers.
Example:
If you set the Maximum Cards Per Person value to 3, then only 1000 - 100 x 3 = 700 is allowed in the Admit the last
admitted cards field for configuration.
Door configuration
In Offline Mode, all components of the door must come from the same IP-ACM v2 board.
NOTE Door configuration in Offline Mode does not support RS-485 wiring for readers.
In Offline Mode, you must configure the readers, inputs, and outputs on the IP-ACM v2 as detailed below:
■ A reader configured on Wiegand Port 1 as the entry reader.
• Door configurations not complying with the above restrictions may result in unexpected operation between online and offline
NOTE modes. However, any of the above readers, inputs, or outputs may be omitted from the door. See the following note about not
using these reader, inputs, or outputs for other purposes.
• If the readers and inputs/outputs are configured for a different purpose in C•CURE, the Offline Mode door controller uses them
for the door control function listed above, even if they are not configured for the door in C•CURE.
The door operation parameters are fixed when the IP-ACM v2 goes into offline mode and cannot be changed. The door
parameters revert to their configured settings when the IP-ACM v2 goes back online.
4. Wait for the IP-ACM v2 to download the new firmware and Reboot.
• If using Internet Explorer and you receive a Certificate Error indicating "There is a problem with this website's security
NOTE certificate”, click Continue to this website (not recommended).
• If using Goggle Chrome and you receive an error indicating “Your connection is not private”, click ADVANCED and then click
Proceed to x.x.x.x (unsafe).
2. Enter the password in the IP-ACM Status/Control Web Page login screen and click Login.
The IP-ACM Configuration/Status Web Page appears. See Table 14 on Page 28 for more information about the
fields of this web page.
3. Click Save. Saved settings do not take effect until the system is rebooted.
4. Click Reboot for changes to take effect.
Ensure you click Logout on the IP-ACM Configuration/Status Web Page instead of exiting the browser through the X in the
NOTE upper-right corner so you can access this web page when you want to. If you close IP-ACM Status/Control Web Page from the X in
the upper-right corner and then re-open a new web page to the same URL, a message appears stating that the IP-ACM session is
currently locked by the IP Address of the machine where you closed the web page. The locked session times out after being idle for
five minutes. You can then try accessing the URL again.
Field/Button Description
Save Saves the settings, but does not apply them until you click Reboot, except when changing the iSTAR IP Address.
If you change the IP Mode (IPv4, IPv6) you must Save and Reboot.
Address Configuration
iSTAR IP Addr The IP Address of the iSTAR to which the IP-ACM is configured.
NOTE: This field is 0.0.0.0 if the IP-ACM is not configured on an iSTAR.
802.1X Configuration
Identity (TLS)
CA Cert (TLS Browse to the location of the certificate and click Open to select it.
and PEAP)
ACM Cert Browse to the location of the certificate and click Open to select it.
ACM Private Key Browse to the location of the ACM Private Key and click Open to select it.
Upload Click to upload the settings. 802.1X settings do not take effect until the next reboot.
Field/Button Description
Offline Access • Displays Active if the IP-ACM v2 is not in contact with the host. In this mode, the IP-ACM v2 uses its own database.
Mode • Displays Inactive if the IP-ACM v2 is in contact with the host.
Prerequisites
■ An Internet browser with JavaScript and cookies enabled.
■ IP-ACM v2 firmware version 04.01.00.30093, or greater.
■ A configured network switch with 802.1X capability.
• Port control enabled:
— Set the ports to be authorized to avoid authentication.
— Set the ports to auto to automatically detect port status for authentication.
■ A Radius Server running on the network.
■ You need to know the location of the following files generated by the Radius Server configuration:
• User Certificate
• CA Certificate
• Private Key
• Authentication password
Configuration