Algunos de los contenidos técnicos de este sitio web solo están disponibles en inglés.

Expiration and validity in Nebula Beta

Introducción

In Salto Nebula there are two broad ways of defining the validity of users and their keys:

  1. User validity: giving users time-limited access to the system.
  2. Key validity: either through the Key renewal duration option or the Card key updater option.

This section of the user guide explains these options in more detail.

User validity

You can give users time-limited access to the system using the Valid from and Valid until fields on the individual user's profile page.

User validityYou can either set users to be valid until a specified day, or to be always valid

See the section on creating users for more detailed information.

Key renewal duration

La opción de la duración de la renovación de la llave te permite definir el tiempo máximo de validez de una llave antes de que sea necesaria su actualización. Para esta opción, "llave" puede referirse a diferentes tipos de llaves. Por ejemplo, podría ser una llave física como una tarjeta de acceso, llavero o pulsera, o una llave digital, como una llave de Apple Wallet o una llave app. Esta duración define la vida efectiva de una llave, tras la cual debe ser actualizada para mantener los privilegios de acceso.

This option improves overall security as it makes sure users have to present their key at an online access point within the defined period to keep having access to an installation. At the same time, whenever their key is presented to an online access point, their access rights and other associated data are updated to reflect the latest changes in the system.

For example, if key renewal duration is set at seven days, access rights are extended for another seven days every time the user presents their key at an online access point, even if the key has been updated the day before.

La duración de la renovación de la llave se establece, por defecto, en siete días, pero, en caso necesario, puedes cambiarla a 14 días.

Key renewal duration is crucial for ensuring security in the system, as it determines how frequently keys need to be renewed. Ten en cuenta las implicaciones de seguridad de ampliar la duración a 14 días.

Key renewal durationKey renewal duration allows you to define the maximum time keys are valid before requiring an update

Esta es una configuración global que se aplica a toda la instalación. You can find it in the Settings > General section of Nebula.

As it's a global setting, Key renewal duration applies to all active keys in an installation. It cannot be applied on a per user or per access point basis.

Card key updater

Card key updater is an option that can be enabled or disabled on specific access points in the system. It refers to SVN-Flex updates that are activated by an electronic lock when a user presents a physical key like a keycard, fob or wristband.

SVN-Flex

Before detailing the card key updater feature, it's important to have some understanding of Salto's SVN-Flex system. Based on Salto's BLUEnet wireless communications technology and SVN core technology - which was introduced in the Salto Space platform, the SVN-Flex functionality extends and increases the number of updating points to any access point in the system.

This means that any online access point in your installation can be an updater point, so that users can use them to update their keys. For example, an employee presents their keycard at a staircase access point, this gives them new access rights to use a meeting room on that floor.

This option is not applicable to access points where their associated devices are offline.

For example, a user who passes through an online perimeter access point (a controller with a reader) updates their key. If a manager then disables this option, when the user passes through the same online point again, the system won't launch an SVN-Flex update again on that specific lock.

When the SVN-Flex process is turned off, the user experience when unlocking access points is improved. For example, users don't need to wait for the process to complete when they hold their physical keys at the reader on the lock. See also the section on unlocking best practices.

However, you should be aware of the security implications when disabling this option on specific access points. Also, in a number of cases, updates to an installation's access plan are not continuous, so the SVN-Flex update process has no effect.

Disabling card key updater

The Card key updater option is enabled by default for online access points in Nebula. To disable it, go to Devices and select the individual device that you want to apply it to in the Access point section of the associated device. Uncheck the option.

Card key updater optionYou can enable or disable the card key updater option from the individual device screen

See also the devices section of the user guide.

Be aware that the more access points that have the Card key updater option disabled, the more insecure your system can become.

Salto Systems, S. L. utiliza dispositivos de almacenamiento y recuperación de datos de terceros para permitir una navegación más segura y comprender mejor cómo interactúan los usuarios con el sitio web con el fin de mejorar nuestros servicios. Puedes aceptar todas las cookies haciendo clic en el botón "Aceptar cookies" o rechazar su uso pulsando en el botón "Rechazar cookies". Para más información, visita nuestra Política de cookies