Nexus Documentation
CURL vulnerability information (CVE-2023-38545) - Nexus awareness advisory on Microsoft's update KB5014754

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 3 Next »

This article describes how to install and configure the SiPass Integrated Service, to enable integration between the Smart ID Physical Access component in Smart ID Identity Manager and SiPass.

SiPass Integrated is an Access Control System provided by Siemens and managed by a GUI and a Restful API. After integration, all administration of Users, Access Token and Entitlements (besides defining them) should be done in Identity Manager, never in SiPass

Some sections below are only relevant for Windows installations. For Docker deployment, see Deploy Smart ID. The instructions on configuring data fields are common for Windows and Docker deployments. 

For details on which data can be imported and exported from SiPass, see About import and export to Physical Access.


Prerequisites

 Prerequisites

The following prerequisites apply:

Configure SiPass Service on Windows

The service is configured in the configuration file. All configuration is cached when the service starts so any configuration changes will require the service to be restarted in order to take effect.

 Set parameters in the configuration file

The configuration file is named SiPassService.exe.config

Error rendering macro 'excerpt-include' : No link could be created for 'Set parameters in PACS connector configuration file'.

 Apply configuration

Error rendering macro 'excerpt-include' : No link could be created for 'Apply configuration changes in PACS connector service'.

Configure SiPass Service data fields

The SiPass data is configured in the configuration table in the Physical Access database. All configuration is cached when the service starts so any configuration changes will require the service to be restarted in order to take effect.

 Configure database

Error rendering macro 'excerpt-include' : No link could be created for 'Configure database in PACS admin panel'.

group: messagingqueue

keyData typeRequired or OptionalDescription
serverstringRequired

IP Address of Message Queue Server. If it is installed on the local server then we can use localhost. If we are accessing this server remotely then need to mention IP address.

usernamestringRequired

Username of message queue server.

Default value: “guest”

passwordstringRequired

Password of message queue server.

Default value: “guest”

systemstringRequired

Defines which messaging queue to be used, either "rabbitmq" or "azureservicebus".

Default value: "rabbitmq"

group: general

keyData typeRequired or OptionalDescription
deleteUserOnNoEntitlementstringOptional

Defines if the user shall be deleted if no active entitlement assignment are present for that user.

Valid values: true or false.

Default: true

deleteUserOnNoAccessTokenstringOptional

Defines if the user shall be deleted if no active access tokens are present for that user.

Valid values: true or false.

Default: true 

heartbeatInterval

intOptional

Heartbeat interval is the time difference between two successive heartbeats, and it is used to know if the system is in active (running) or in inactive (stopped) state.

Default value and minimum value: 60 seconds. If it is set less than 60 seconds, it will be considered as 60 seconds to update the status.

group: sipass.system

keyData typeRequired or OptionalDescription

clientUniqueId

stringRequired

The Unique client name for SiPass HR API.

Default: PHYSICAL-ACCESS-SIPASS-CLIENT

username

stringRequired

The username that will be used when accessing SiPass HR API endpoints.

Default: Siemens

passwordstringRequired

The password that will be used when accessing SiPass HR API endpoints.

Default: spirit

group: sipass.general

keyData typeRequired or OptionalDescription
apiUrlstringRequired

API URL of SiPass HR Restful Service API of SiPass Integrated Service.

Default: https://sipass-system:8745/

Install SiPass service on Windows

 Install service

The installation file is named SiPassService.exe.

Error rendering macro 'excerpt-include' : No link could be created for 'Install PACS connector service'.

Restart SiPass service on Windows

 Restart service

The default service SystemId is named SiPass

Error rendering macro 'excerpt-include' : No link could be created for 'Restart PACS connector service'.

This article is valid for Smart ID 20.11 and later.

Related information

  • No labels

Copyright 2024 Technology Nexus Secured Business Solutions AB. All rights reserved.
Contact Nexus | https://www.nexusgroup.com | Disclaimer | Terms & Conditions