Bolid S2000-2 User manual

ACCESS CONTROLLER

S2000-2

User’s Manual

WARNING:

To change configuration parameters of the controller please use UProg.exe software

utility of versions 4.1.0.54 and higher. DO NOT use UProg.exe of versions 4.0.0.821

and below

CONTENTS

1 Description and Operation .........................................................................................................4

1.1 Functions of the Controller..................................................................................................4

1.2 Specifications.......................................................................................................................5

1.3 Standard Delivery ................................................................................................................8

1.4 Access Modes ......................................................................................................................8

1.5 Two-Factor Authentication................................................................................................10

1.6 Access Levels.....................................................................................................................11

1.7 Two (or More) Person Rule Access Control......................................................................12

1.8 Time Zones ........................................................................................................................13

1.9 Antipassback Rules............................................................................................................14

1.10 Coerced Access................................................................................................................17

1.11 Centralized Access and Operating Partitions...................................................................17

1.12 Access by ID Templates ..................................................................................................19

1.13 Connecting Readers .........................................................................................................20

1.14 Connecting Door Open Sensors (Passage Sensors).........................................................25

1.15 EXIT, PERMIT (CONFIRM) and DENY Buttons..........................................................26

1.16 Alarm Loops ....................................................................................................................27

1.17 BUSY Input / Output.......................................................................................................31

1.18 Light and Sound Indication..............................................................................................33

1.19 Configuration Parameters ................................................................................................36

1.20 Programming Credentials ................................................................................................51

2 Operation..................................................................................................................................53

2.1 Two Entrance Doors Mode................................................................................................57

2.2 One Entrance / Exit Door...................................................................................................60

2.3 Turnstile Mode...................................................................................................................63

2.4 Boom Barrier Mode...........................................................................................................66

2.5 Mantrap Mode....................................................................................................................71

3 Maintenance.............................................................................................................................75

3.1 Functionality Test ..............................................................................................................75

4 Marking....................................................................................................................................77

5 Packaging.................................................................................................................................78

6 Storage......................................................................................................................................78

7 Transportation ..........................................................................................................................78

8 Certificates ...............................................................................................................................78

9 Manufacturer Data....................................................................................................................79

Appendix A

Overall and Mounting Dimensions of the S2000-2 Controller...........................80

Appendix B

PCB Layout.........................................................................................................81

Appendix C

The Schematics for Connecting Readers to the S2000-2 Controller ..................82

This User’s Manual is intended to help for studying operability principles and maintenance of

S2000-2 Access Controller of version 2.20.

The S2000-2 Access Controller (hereinafter referred to as the controller) is designed to control

access through a single or two access points by reading the codes of presented credentials (Proximity

cards, iButtons, PINs), verifying access rights, and closing (opening) the contacts of relays operating

locking devices (electromechanical or magnetic locks or electric strikes, turnstiles, boom barriers).

The controller is designed to operate as part of a PC-based Orion integrated security system

under Orion Pro software of the version 1.20 SP1 or higher, or as part of an Orion integrated security

system based on an S2000 or S2000M control panel, or in standalone mode.

1Description and Operation

1.1 Functions of the Controller

1.1.1 Local access control, that is granting or denying access for holders of credentials

registered in the controller’s database, depending on the access rights of the presented credentials, the

current access mode and current access rule violations of the presented credentials.

1.1.2 Centralized access control, that is reading the code of a presented credential and

transmitting it to the network controller (Orion Pro workstation) followed by granting or denying

access for the holder of the presented credential by a command of the network controller (only if the

controller operates as part of an Orion system based on a personal computer).

1.1.3 Arming and disarming partitions (when the controller operates as part of an Orion system

based on a PC or an S2000M panel).

1.1.4 Arming and disarming up to four loops of an intrusion alarm system, monitoring loop

conditions and sending alarms over the RS-485 interface to the network controller (Orion Pro

workstation or S2000 panel).

1.1.5 The controller is intended to be installed inside premises and is designed for round-the-

clock operation.

1.1.6 The controller is not designed to be used in aggressive or dust media or in explosion

hazardous premises.

1.1.7 As to resistance to mechanical attacks the controller falls into the 03 placement category

in accordance with Russian Standard ОСТ 25 1099-83.

1.1.8 As to resistance to climatic effects the controller is produced in the implementation 3 in

accordance with Russian Standard ОСТ 25 1099-83 but for operating temperatures minus 30°Сto

+50°С.

1.2 Specifications

1.2.1 The controller is to be powered by an external dc power supply with 12 V rated voltage

(10.2 V to 15.0 V). Battery backed power supplies of RIP-12 series manufactured by the Bolid

Company are recommended for use.

1.2.2 The power consumed by the controller from an external dc power supply does not

exceed 2 W.

1.2.3 The maximum current consumed by the controller from an external dc power supply does

not exceed 120 mA.

1.2.4 The number of connected readers of iButtons, Proximity cards, or PINs with output

interface Touch Memory (1-Wire, µ-LAN), Wiegand, or ABA TRACK II is 2.

1.2.4.1 The controller provides operating the two LEDs (the single two-color LED) of each

reader. The control levels match logic levels of +5 V CMOS. In case of direct connection of LEDs the

controller limits the current through the LEDs by 10 mA.

1.2.4.2 The controller provides controlling reader’s beepers. The control levels match logic

levels of +5 V CMOS.

1.2.5 The distance between the controller and the reader shall not exceed 100 meters.

1.2.6 Memory capacity: 32768 codes of credentials (iButtons, Proximity cards, PINs).

1.2.7 The number of actuator relay to control locking devices is 2.

1.2.7.1 The maximum switching current of each relay is 7 A.

1.2.7.2 The maximum switching voltage for each relay is 30 V.

1.2.7.3 The maximum switching power of each relay is 100 W.

1.2.8 The controller provides condition analysis for up to four intrusion alarm loops with

arming and disarming them by means of presenting iButtons (Proximity cards, PINs) or over the RS-

485 interface. The controller also transmits loop events over the RS-485 interface.

1.2.9 The controller can be used in one of the following operation modes:

−Two Entrance Doors;

−One Entrance / Exit Door;

−Turnstile;

−Boom Barrier;

−Mantrap.

1.2.10 In all operation modes the controller supports the following access modes:

−"Simple": access requires presenting one (a "primary") credential;

−"With extra code": access requires presenting two credentials (a "primary" and an "extra"

ones);

−"Confirmed manually": after presenting a credential access must be confirmed by a guard

manually, by pressing a CONFIRM button;

−"Two-person rule" ("Three-person rule"): access can be granted after presenting two or three

credentials with specific access levels;

−"Centralized access": access with presenting a credential not registered in the controller

itself with making a decision about granting / rejecting access by the network controller

(“Orion Pro”);

−"Access locked": local access is prohibited (centralized access can be granted);

−"Free pass": no credential is required to achieve access.

1.2.11 The following factors to limit access are taken into account while analyzing access

rights of a presented credential:

−The credential must not be disabled;

−The credential must have a right to access the access zone;

−Validity of the credential;

−The Time Zone of the credential must be active;

−Antipassback rules;

−Conditions of alarm loops of the controller which lock access;

−Status of BUSY signal.

1.2.12 The access controller transmits the network controller (Orion Pro or S2000M panel) the

following messages over the RS-485 interface:

−"Identification" – Authentication of the user has been completed but access rules have not

yet been checked (in case of two- or three-person rules or manually confirmed access);

−"Access Granted";

−"Transaction" – After granting access a passage to the access zone has been detected;

−"Access Denied" – Access is denied for the presented registered credential;

−"Wrong Code" – An unknown credential is presented to a reader when there is no

communications between the S2000-2 and the network controller (the message is stored in

the S2000-2 memory);

−"Duress Code" – Access under coercion;

−"Access Locked" – Access is locked for all credentials;

−"Free Pass" – Access control is deactivated;

−"Access Restored" – Access control has just been activated;

−"Disarmed";

−"Armed";

−"Arming Delay";

−"Arming Failed";

−"Loop Alarm";

−"Authentication" – A credential for arming/disarming loops has been presented to a reader;

−"Door Open" – The passage sensor (door sensor) has responded;

−"Door Closed" – The passage sensor (door sensor) has returned to the quiescent mode;

−"Door Held Alarm" – The door has been open too long (for more than 30 s);

−"Door Forced Open" – The door is forced open without granting access;

−"Tamper Alarm" – The S2000-2 enclosure has just been opened;

−"Tamper Restored" – The S2000-2 enclosure has just been closed;

−"Power Failed" – The device input voltage is out of range;

−"Power Restored";

−"Battery Failed" – Low voltage or missing of the battery which backs up power for the real-

time clock;

−"Battery Restored";

−"Programming" – The controller is switched to the programming mode by means of a

Master credential or Master credential re-programming;

−"Manual Test" – Switching the self-diagnostic mode on;

−"Relay ON/Pulsing/OFF" – Changes in relay states;

−"Guessing" – The number of subsequent attempts to present unknown credentials to the

reader has exceeded the programmed value.

1.2.13 If a temporary communication loss happens to be during generating of a message then

the messages are stored within the S2000-2 nonvolatile memory (EEPROM). Then, when RS-485

communications are restored, the stored messages are transmitted to the network controller along with

actual event data and time in accordance with the internal S2000-2 clock.

1.2.14 The capacity of the event buffer in the non-volatile memory of the controller is 32768

events.1.2.15 The controller provides executing the following commands received over the RS-485

interface:

−Writing configuration;

−Assigning a network address;

−Arming / disarming alarm loops;

−Access control, that is granting, locking, unlocking, and restoring controlled access;

−Reading the list of credentials;

−Adding and editing the list of credentials;

−Synchronizing clock;

−Reading ATD values of resistance of the alarm loops;

−Requests for states of the controller, the alarm loops, the readers, the doors.

1.2.16 The controller doesn’t send false alarms under electromagnetic interference of third

severity level in accordance with Russian Standard ГОСТ Р50009.

1.2.17 Radio disturbances from the controller operation do not exceed the values specified in

ГОСТ Р50009.

1.2.18 The pre-operation time after powering up doesn’t exceed 5 s.

1.2.19 The mean time between failures of the controller in quiescent mode should be at least

80000 hours which is equivalent to the probability of no failure 0.98758 within 1000 hours.

1.2.20 The probability of a failure which can trigger a false alarm of the controller should be no

more than 0.01 per 1000 hours.

1.2.21 The average lifetime of the controller is 10 years.

1.2.22 The weight of the controller does not exceed 0.3 kg.

1.2.23 The overall dimensions are 156 mm ×107 mm ×39 mm.

1.2.24 The ingress protection rating of the controller is IP30 in accordance with ГОСТ 14254-96

(IEC 529-89) provided that the controller is mounted on a wall.

1.2.25 According to the content of precious materials the product does not require accounting

for storage, writing-off, and/or disposal.

1.3 Standard Delivery

S2000-2 Access Controller 1pcs.

Resistor MF 1/4W-8.2k + 5% 6 pcs.

Woodscrew 1-3×25.016 ГОСТ 1144-80 3 pcs.

Wall Plug 3 pcs.

DIN 7982 Flat Head Tapping Screw with Cross Drive 2.2×6.5 1 pcs.

S2000-2 Datasheet 1 pcs.

S2000-2 Installation Manual 1 pcs.

1.4 Access Modes

For all operation modes of the controller (Two Entrance Doors, One Entrance/Exit Door,

Turnstile, Boom Barrier, and Mantrap) each of the two access directions (each reader) can operate in

one of the three following access modes:

−Controlled Access;

−Access Locked;

−Free Pass.

The access mode of one reader (access in one direction) can differ from the access mode of the

second reader (access in opposite direction).

In addition to the long-duration access modes mentioned above, for any of the readers the

Access Allowed mode can be enabled providing granting access while presenting any credential.

Moreover, until an access procedure started before has been terminated the readers of the

controller can be in the Busy state.

1.4.1 Controlled Access

In the Controlled Access mode the controller provides both local and centralized access.

Local access in this mode is granted for holders of those credentials which are enrolled in the

database of the controller, are in effect at the time, are authorized to access the specified area, meet the

access conditions (the required number of credentials has been presented) and when no access rule

violations (time zone violations, antipassback rule violations, validity violations) are detected provided

that no alarm loop locking access is armed.

By a similar way access is granted for holders of credentials which are not enrolled in the

controller’s database but their codes match one of the ID Templates of the controller.

Centralized access is granted by a network controller (Orion Pro Workstation) commands for

holders of credentials which are not enrolled in the controller’s database and meet no ID Template.

Further in the text, while describing functions of the controller local access is implied unless

otherwise specified.

1.4.2 Locking Access

Access is locked or by presenting a special Locking credential, or by a remote command over

the RS-485 interface, or by arming the alarm loops locking access. If access was locked by a Locking

credential or remote command then the LED of the relevant reader starts pulsing once per second with

short pauses in red.

If access is locked by a special credential or by command then it is locked for all the credentials

stored in the controller’s memory (locked local access). In this case only centralized access or access

by Exit button, if applicable, can be allowed. (Centralized access can be locked only by settings of the

network controller). In addition, the reader can be switched to the Access Allowed mode for a single

authentication.

The Controlled Access mode can be restored or by second presenting of the Locking credential,

or by presenting an Unlocking credential, or by a command of the network controller over the RS-485

interface. To make the credential Locking or Unlocking, the Passage Mode parameter in the access

level of the credential is to be set to “Locking” or “Unlocking” respectively.

If access is locked because the alarm loops locking access are armed then on presenting a

combined credential authorized to disarm these alarm loops the alarm loops are disarmed and

simultaneously access is granted. For other credentials (intended only for requesting access or

combined without rights to disarm locking alarm loops) access is denied. Locking access by alarm

loops prohibits also access by EXIT button.

Locking access by alarm loops is canceled by disarming alarm loops locking access.

1.4.3 Unlocking Access

Access is unlocked on presenting a special Unlocking credential, or after activation of a special

alarm loop (see Section 1.16.14), or by a command of the network controller over the RS-485

interface. In this case the LED of the relevant reader starts pulsing ones per second with short pauses

in green.

In this mode free access can be achieved by everybody without presenting credentials.

In the Free Pass mode the controller activates the relevant relay to be open permanently (the

relay for this direction is either always on or always off) or in pulse mode (the relay is switched on or

off on every door closing). The second way to control a relay in the Free Pass mode is suitable for such

kind of barrier devices as electric strikes. Please take into account that applying voltage continuously

to some kinds of strikes can make them inoperative.

In the operation modes Two Entrance Doors and Turnstile each of the two readers (directions)

can be switched to the Free Pass mode without regard to another reader. In other operation modes (One

Entrance / Exit Door, Boom Barrier, Mantrap) activation of the Free Pass mode on one reader

automatically activates this mode for another reader.

If before passing a user has presented its credential enrolled in the controller memory and

intended for access then its passage in the Free Pass mode is logged by the same way as in case of the

Controlled Access mode. It can be necessary for time & attendance purposes or for correct operation

of antipassback functions.

If the Free Pass mode was switched on by means of the alarm loops then to restore the

Controlled Access mode it is necessary to normalize the resistance of the alarm loops. In other cases

the Controlled Access mode is achieved or by the second presenting of the Unlocking credential, or by

presenting a Locking credential, or by a command of the network controller over the RS-485 interface.

To make the credential Locking or Unlocking, the Passage Mode parameter in the access level of the

credential is to be set to “Locking” or “Unlocking” respectively.

1.4.4 Access Allowed Mode

This mode can be switched on by pressing the PERMIT access button and is effective only for

one authentication. In this mode the LED of the relevant reader pulses with green once per second.

In this mode a holder of any credential can achieve access regardless of the purpose of the

credential (Master, Unlocking. Locking, Operating, etc.) even if access rules are violated or the

credential is not enrolled in the controller.

The Access Allowed mode terminates just after granting access for a presented credential or the

expiry of 10 s timeout (if no credential was presented) as well as after the second press on the

PERMIT button. The reader returns to its long-term mode in which it was before: Controlled Access,

Access Locked, or Free Pass.

The PERMIT button is supposed to be situated near a guard and is uses for those cases when it

is necessary to approve granting access with logging passage with a credential without access rights or

with registered access rule violations (for time & attendance purpose or correct operation of

antipassback rules).

1.4.5 Busy State

Until a current access procedure is completed the controller generates an internal Busy signal.

For such operation modes as Turnstile, Boom Barrier, and Mantrap, while this signal is in effect no

access is provided for a next credential. In the operation modes One Entrance/Exit Door and Two

Entrance Doors an internal Busy signal is ignored.

In spite of internal Busy signals an external Busy signal can be sent to the BUSY input of the

controller. Its effect on each of the readers is defined by a relevant configuration parameter of the

reader and doesn’t depend on the operation mode of the controller. The BUSY input / output is

designed to synchronize operation of several controllers in case of arranging sophisticated access

points and to connect a presence detector (occupancy sensor) in a mantrap, vehicle loop detector at a

parking lot etc.

If a credential is presented when an internal or external Busy signal is being active, then access

cannot be achieved, please try to access later.

1.5 Two-Factor Authentication

One of the ways to strengthen protection against unauthorized access is two-factor

authentication when a user is required to present two credentials rather than a single one (for example,

a Proximity card and a PIN).

In case of two-factor authentication a procedure of granting access or operating alarm loops

begins with presenting a first credential – a Primary Code. After that the controller proceeds to the

mode of waiting for presenting an additional code, with the reader LED flashing with green five times

per second. Within 30 seconds a second credential should be presented – the Extra Code.

If the presented code does not coincide with the Extra Code then the controller generates an

Access Denied message with the Extra Code Error attribute. If a correct additional code is presented

then the authentication is considered to be completed successfully and the controller or grants access,

or proceeds to authentication of a next user (if a two-person rule or three-person rule is in effect), or

arms or disarms the alarm loops operated by the presented credential.

Necessity to apply two-factor authentication is programmed for every group of users (for every

access level) individually for each reader by setting the configuration parameter Two-Factor

Other manuals for S2000-2

Table of contents

Other bolid IP Access Controllers manuals

bolid

bolid Proxy-KeyAV User manual

Popular IP Access Controllers manuals by other brands

Ava

Ava bqt miPASS BT510 installation guide

ZKTeco

ZKTeco SpeedFace-V5L user manual

2N Access Unit Configuration manual

Kedacom

Kedacom KSCA120 Series quick start guide

H3C

H3C WX2880X installation guide

G4S

G4S S870-EX Installation and user instructions

PRASTEL

PRASTEL M2000PE manual

Allegion

Allegion interflex IF-281 Cylinder manual

TECOM

TECOM TS1067E manual

Fermax

Fermax Memokey 100C Installer manual

Fermax

Fermax CITYLINE MEMOKEY User& installer's manual

Civintec

Civintec CV9601T-T-1F installation manual

BioMax

BioMax N-X90W user manual

ZKTeco

ZKTeco OP-200 quick start guide

FingerTec

FingerTec s-Kadex user guide

H3C

H3C WX5002ACCESSCONTROLLER installation manual

Conrad Electronic

Conrad Electronic KeyMatic CAC operating instructions

IDTECK

IDTECK Star 100R manual

bolid S2000-2 User manual

Popular IP Access Controllers manuals by other brands