Skip to main content

Digital credentials

Kisi provides digital credentials alongside physical and mobile options for access control. These encompass access links and QR codes, offering versatile and secure access solutions.

Access links in Kisi are web-based credentials that allow visitors or temporary staff to unlock doors without having to sign up for a Kisi account or download the mobile apps.

The access link can be shared through email, text message, or other preferred communication channels like WhatsApp. When the user taps on the access link, they will see a list of doors they have access to. By tapping on the desired door, they can unlock it instantly.

Validity dates allow you to set specific durations for the access link to remain active.

info

Users with a digital credential can unlock doors associated with the link without having to sign in. Also, Geofence restrictions and Kisi Reader restrictions do not apply to digital credentials, allowing remote door opening from any location. To ensure secure usage, please follow our recommended access link best practices.

Limits and quotas

Please note that the monthly limit for text message links is 10, and for email links, it is 1000, with a cumulative total that does not reset monthly. To increase any of these limits, please contact your Kisi Account Executive or Kisi Sales.

QR codes

As an admin, you have the option to send out QR codes as digital credentials to your users. The recipient simply presents this QR code to a compatible Kisi Terminal upon arrival at the site to unlock the door.

QR codes streamline the process by removing the necessity for manual door selection. Unlike regular access links, which display a list of authorized doors, QR codes enable immediate door unlocking without additional steps.

Similar to other Kisi credentials, QR codes provide Kisi administrators with a comprehensive audit trail of user access.

QR code use cases

Streamline visitor access with QR codes

In this scenario, QR codes serve as an added feature to access links. When administrators send out an access link, they have the option to include a QR code in the emails sent to recipients. The recipient simply presents this QR code to a compatible Kisi QR Code Scanner upon arrival at the site to unlock the door. This eliminates the need for manual door selection, as with regular access links that display a list of authorized doors.

Administrators also have the capability to send QR codes that can be used offline. Just like the Kisi Reader, the Kisi QR Code Scanner verifies if the user is in the offline cache and grants or denies access based on that information. This works even if both the mobile device and the reader are offline, as long as the QR code image has been saved on the phone.

Similar to other Kisi credentials, QR codes provide Kisi administrators with a comprehensive audit trail of user access.

Securely identify users through rotating QR codes

(Coming soon) For Tap to Unlock, the mobile badge screen in the Kisi mobile app displays a rotating QR code, valid for less than a minute at a time. This feature enhances security by preventing QR code copying and sharing. Users can gain entry by presenting the QR code to a compatible Kisi QR Code Scanner. In cases where users encounter difficulties using the Tap to Unlock functionality due to issues with the Bluetooth/NFC settings, these QR codes provide a great alternative solution.

Enable access via partner-generated Kisi QR codes

(Coming soon) Partners can generate Kisi QR codes without relying on the Kisi API by utilizing a shared secret for authentication. This works for both access link and Tap to Unlock-based QR codes.

Delegated evaluation of third-party QR codes

(Coming soon) The Kisi Terminal can be configured to forward non-Kisi QR codes can to an external webhook for delegated decision-making (grant/deny access). This allows partners to evaluate QR codes independent of access rights stored in Kisi.

Digital credential best practices

While sending digital credentials (i.e., access links and QR codes) to share access to a space is convenient, we highly recommend following these best practices to maintain a secure environment:

  • Utilize digital credentials exclusively for short-term access, such as for infrequent guests
  • Utilize digital credentials for low-security doors, given that Geofence and reader restrictions do not apply, enabling remote door opening from any location
  • Always set an expiry date that promptly takes effect when access is no longer required
  • For users who heavily rely on this feature, regularly rotate their digital credentials by destroying and recreating them

Whenever feasible, encourage regular users to opt for the Kisi app or a physical credential when accessing the space, as these methods provide enhanced security measures.