Some of the technical content on this site is only available in English.

System requirements

Server configuration

ItemRequirement
Devices per serverThere is no physical limit on the number of Devices per server.

The specification here is capable of providing a response time of 2 seconds or less for every user when access requests are made simultaneously by 70 Devices with Salto Space and Salto XS4 Face co-located.

Consideration needs to be given to the number of concurrent access requests that can be expected. Increasing processor core count and clock speed will provide more concurrent requests if needed.

In this context simultaneously means within a 10 second window.
Network interfacesThis must be a wired connection.
CPUsMin. 3.2 GHz 8 Cores
Memory32 GB
StorageMirrored SSD - 480 GB
We strongly recommend that physical storage is encrypted.
ArchitectureIntel/AMD x64 must support AVX2 instruction set

Supported processors:
AMD Ryzen 7 and 9, Threadripper
Intel Core i9, Corre i7

This is only a guide, you should confirm that the processor of your selectted hardware (or virtualisation driver) supports AVX2 instructions.
FirewallThe Server requires the following inbound traffic to be allowed from the Devices on the following ports:
UDP/123 - NTP. The Server uses Cloudflare Time Services for time synchronization.
TCP/443 - HTTPS

Network configuration

ItemRequirement
Network TypeA dedicated, isolated Access Control VLAN for all XS4 Face Devices (may be shared with other Salto network devices)
IP SubnetMust be large enough to support all locks, camera units, and servers/controllers. Must not use 172.31.255.0/24
Traffic RulesNo inbound or oubound traffic allowed within the VLAN except to the Server. Devices must remain isolated from external networks.
Server Outbound Ports123 (NTP), 443 (HTTPS/TLS), 8883 (MQTT/mTLS). Only the Server requires outbound access.
Allowed External HostsMust alow outbound traffic from the Server to: datadoghq.eu time.cloudflare.com *.datadog.pool.ntp.org *.xs4face.app zrqlyb08zwo87fkeomp0on.azurecr.io enrollmentapiweu38d07.blob.core.windows.net
DHCPRequired to assign IPs to Devices. The Server must have a reserved, fixed IP address that cannot change once Devices are commissioned.
DNSRequired for the Server only. Devices do not use DNS and receive the Server IP during commissioning.
Physical NetworkCat 5e or Cat 6 cabling with Gigabit switches. Wired connections only.

Salto Systems, S. L. uses third-party data storage and retrieval devices in order to allow secure browsing and gain a better understanding of how users interact with the website in order to improve our services. You can accept all cookies by clicking the "Accept cookies" button or reject their use by clicking the "Reject cookies" button. For more information, visit our Cookies Policy