1. Dedicated Synergis Cloud Link for Suprema Devices
Description
A dedicated Synergis Cloud Link is required for managing Suprema devices.
Details
Assigning Suprema devices together with other devices (for example, Mercury boards) to the same Synergis Cloud Link is not recommended.
One Synergis Cloud Link can reliably control up to 50 Suprema devices. The absolute maximum is 64 devices, but this may impact performance and stability.
Recommendation
Use a dedicated Synergis Cloud Link for Suprema devices, and keep the number of connected Suprema devices at or below 50 per Cloud Link.
2. Access Rule Logic
Description
1) The plugin applies Genetec Access Rules using logical OR behavior: if any single Access Rule grants access, the user is allowed.
2) Plugin can not supports "deny access to cardholders" type Access rule
Details
Suprema devices do not support logical AND behavior across multiple access groups, so AND-style Access Rules cannot be enforced at the device level.
“Deny access to cardholders” type Access Rules are not supported by the plugin.
3. Duplicate Card Number Behavior
Description
Certain card numbers may be treated as duplicates by Suprema devices even when they use different card formats or have different raw values in Genetec.
Details
Suprema devices normalize and store card numbers internally for matching and parsing. During this process, different raw values or formats may end up being considered identical.
For the same reason, all card formats that will be used must be explicitly configured in the plugin UI before synchronization.
Recommendation
Configure all required card formats in the plugin before the first synchronization, and avoid using overlapping formats that may result in duplicate internal representations.
4. Duplicate Face and Fingerprint Enrollment
Description
The plugin cannot detect duplicate faces or fingerprints when enrolling biometric data.
Details
It is technically possible to enroll the same face and/or fingerprint template for multiple users.
Suprema’s biometric matching algorithms are not exposed at the SDK level due to company policy, so the plugin cannot perform biometric similarity checks to prevent duplicates.
Recommendation
Define and enforce an enrollment policy and operational procedures to minimize accidental duplicate biometric registration.
5. Device Factory Reset Requirement
Description
Suprema devices must be factory-reset and completely empty before being connected to Genetec Security Center via the plugin.
Details
The plugin attempts to clear residual data from previous systems or plugins when a device is first connected.
If the device still contains users, doors, or other configuration data from a different plugin or application, synchronization may fail or behave unpredictably.
Recommendation
Before onboarding a device into the plugin, perform a factory reset and verify that no users, doors, or access rules remain on the device.
6. User Capacity per Device and Access Rule
Description
Suprema devices have inherent limits on the number of users and access rules they can support. Exceeding these limits may cause synchronization to fail or behave unpredictably.
Details
Suprema devices support up to 15 Access Rules (Access Groups). Any Access Rules beyond this limit cannot be synchronized to the device.
Each Suprema device model supports a specific maximum number of users (cardholders) and biometric templates. Synchronization cannot exceed these model-specific capacity limits.
Recommendation
Before installing the plugin, verify each device’s capacity specifications and ensure an appropriate device model is used according to system requirements.
7. Bulk Face Enrollment from Existing Profile Photos
Description
The bulk face enrollment feature uses existing profile photos stored in Genetec Security Center.
Details
Successful completion of the bulk enrollment operation does not guarantee that all enrolled faces will match correctly during authentication.
This is especially true for low-quality photos (poor lighting, occlusions, side views, low resolution, etc.), although the plugin attempts to handle such cases as much as possible.
Recommendation
Use high-quality, front-facing photos for cardholder profiles and verify authentication performance after bulk face enrollment, especially in large deployments.
8. Door Lock Control in Offline Mode
Description
When the system is offline, door lock control is limited if entry and exit readers are on separate Suprema devices.
Details
In a typical configuration, two Suprema devices are connected via TCP/IP to the plugin and assigned as entry and exit readers for the same door.
If the door lock is physically wired to the entry reader’s output port, the exit reader cannot trigger that output when the system goes offline.
In offline mode, each device can only trigger its own output ports; it cannot send output trigger signals to another device.
Recommendation
When offline operation is critical, wire the door lock and reader outputs so that each device only needs to control its own outputs in offline mode, or consider using a controller design that centralizes output control.
9. Biometric Credential Association with Multiple Credentials
Description
For cardholders with multiple credentials, biometric credentials are associated only with the first credential.
Details
The effective biometric access depends on the status of this primary credential.
If the first credential becomes inactive or is deleted, the biometric data associated with the cardholder is also removed, even if other credentials for the same cardholder remain active.
Recommendation
Plan credential assignment so that the primary credential remains valid for as long as biometric access is required, and avoid unnecessary deactivation of the first credential if biometrics are in use.