This article describes import and export to the Physical Access component, which is used to integrate Smart ID Identity Manager to a specific PACS system.
For more information, see Integrate Identity Manager with physical access control system (PACS).
The service polls for connector look messages in the message queue at regular interval and transfers any changes to to access control system.
When an access control system is integrated with the Physical Access component, all administration of Users, Access Token and Entitlements (besides defining them) should be done in Identity Manager, never in the access control system.
The following data can be imported from the access control system to Physical Access:
Entitlements are created in the access control system and used to assign access to doors.
For Bewator Omnis, see the configuration setting
The following data can be exported from Physical Access to the access control system:
A user will be exported to the access control system if it has an active access token and at least one active entitlement assignment, this is the default behavior. You can override default behavior by adding general configuration’s deleteUserOnNoAccessToken and deleteUserOnNoEntitlement settings.
For more information, see Physical Access database - common parameters.
If at any time this requirement should not be fulfilled, the user and all belonging access tokens will be removed from the access control system entirely, until they are again.
An access token must be assigned to a user and have the status ACTIVE to be exported to the access control system.
If at any time any of these two requirements should not be fulfilled, the access token will be removed from the access control system entirely until they are again.
Entitlements are defined in the access control system and then assigned to users in Physical Access after they have been automatically imported by the PACS connector.
If the assignment has been specified to be active during a certain time span, it will be transferred to the access control system when it becomes active, and when it expires it will be removed entirely again.
All access tokens belonging to the user will be given access to all entitlements assigned to the user.