The Kisi Controller Pro 2 allows you to migrate to the Kisi platform and modernize your access control system while keeping your existing wiring, readers, and even credentials.
- Secure as many doors as you want
- Reuse as much of your existing hardware as you want
- No disruption of operations
Decentralized, scalable network of controllers and readers
On your local network, Kisi operates as a decentralized system, distinct from traditional hardwired systems, and utilizes modern network protocols. Kisi allows for the connection of up to four doors per controller, but the number of readers per door is not limited by the doors' connection to a controller. This design enables Kisi to be scalable, ranging from configurations for a single door to systems for thousands of doors, with the flexibility to have varying numbers of readers per door.
Inputs and outputs
- Wiegand board adapter connection: 4 x 7 Wiegand in/output (12 volts direct current, GND, D0, D1, LED1, LED2, BZR)
- Four dry or wet relays wiring to door security hardware: dry, 12/24 volts direct current; wet: max 0.35 ampere x 24 volts or 0.7 ampere x 12 volts per relay
- One dry or wet relay wiring to intrusion detection hardware (siren/third party alarm systems): dry, 12/24 volts direct current; wet, max 0.35 ampere x 24 volts or 0.7 ampere x 12 volts per relay
- Short circuit protection on relay outputs
- 12 generic inputs configurable as either contact sensor or request to exit
- One tamper input to send a message whenever the Controller is tampered with
- One RS-485 interface input to support third-party devices, e.g. wireless locks or cameras
Required power input
- 24 volts direct current at 2.5 amperes
Power adapter cable
- Length: 10.5 feet (320 centimeters)
- Idle current less than 0.06 ampere
- Total power depends on the number of wet relays used
- Up to 75 volts on 24 volts direct current input (including reverse polarity)
- Up to 60 volts on relay outputs (including reverse polarity)
Communication and connectivity
- Ethernet: 10BASE-T/100BASE-TX
- Wi-Fi: Supported only on devices with revision numbers whose first three digits are less than 553xxxxxx. You can check your revision number under Controller details.
For more information on connecting Kisi devices to the internet, please refer to Get Started - Connect to the internet.
As an internet protocol based access control system, Kisi does not require controllers and readers to be directly wired to each other. However, controllers and readers must be on the same local network for optimum performance, including offline support. Should local network communications be unavailable, controllers and readers will communicate through the internet.
Network access requirements
Kisi controllers and readers are able to connect to the Internet using both Ethernet and WiFi. Ethernet is the preferred connection method and it will be prioritized over WiFi. However, we recommend setting up Kisi to work with both networking options (Ethernet and WiFi) for redundancy. If the Kisi Controller is located in an area with no WiFi connection, it might be relevant to set up a dedicated 4G hotspot.
Controller Pro 2 devices with revision numbers under 553xxxxxx support both Ethernet and Wi-Fi. For higher revision numbers, only Ethernet is available. You can verify your revision number under Controller details.
The Kisi devices can connect to a network through a wired Ethernet connection, supporting both 10 Mbps and 100 Mbps connections.
Kisi devices can function on both 2.4 GHz and 5 GHz frequencies. They don't necessitate an open network to operate, as they can function on WPA, WPA2, and Open networks. As a best practice, we recommend installing your Kisi Controller next to the router.
Kisi devices currently do not support enterprise-level WiFi authentication (802.1x), which mandates a username and password login in addition to the usual SSID. Connecting your Kisi Controller to such a network is not possible unless downgraded to 802.11n WiFi operating in the 5 GHz band. Kisi devices also work seamlessly with 802.11a, 802.11b, and 802.11g networks.
Kisi devices do not support networks that require users to enter login details before granting network access (Captive Hotspot networks). This is commonly encountered in public hotspots and some guest networks in office environments.
Network address specifications
Kisi devices must have internet connectivity and initiate outbound connections only, meaning that no ports have to be open from the outside. Kisi devices will resolve DNS names for the following domains:
For Kisi devices to initiate outbound connections, it is necessary for specific TCP and UDP ports to be allowed through your firewall. Below is a list of specific ports that need to be allowed.
|Initial device-server connection
|Fallback device-server connection
|Fetch device firmware
|Fallback fetch device firmware
|Allow DNS lookups
A Kisi device will first attempt to connect via TCP port 31314. If this fails, it will attempt to use TCP port 993, which is typically open by default for email traffic. Ports 443 and 80 are used to request and transfer firmware updates. This port is typically open by default for HTTP/HTTPS.
By default, Kisi devices will use whichever DNS server is referenced by the local network’s DHCP server. If that DNS server is external, the firewall must allow access to it through port 53. Wi-Fi- and Ethernet-compatible Kisi devices only make outbound connections, so firewall configuration is only required if the firewall stops outbound connections.
For offline support, Kisi devices will send messages over the local network using the User Datagram Protocol (UDP) port 62435.
- Secure over-the-air (OTA) updates
Web based management
- Inputs and outputs can be managed from the Kisi Dashboard
Dimensions, enclosure color and material
- Board height: 4.6 in (11.7 cm)
- Board width: 4.1 in (10.5 cm)
- Board depth: 0.7 in (1.8 cm)
- Enclosure height: 12 in (30.48 cm)
- Enclosure width: 9 in (22.86 cm)
- Enclosure depth: 3 in (7.62 cm)
- Color: White
- Material: ABS
- Operating temperature: 32°F to 122°F (0°C to 50°C)
- Screw-in wall using the provided drilling template
The Kisi Controller Pro 2 has a tamper input feature that allows installers to add a tamper switch inside the controller enclosure and connect it to the tamper input. This enables Kisi to detect any attempt to tamper with the enclosure. Customers can configure an alert policy for the
tampered event to receive notifications when such events occur.
To enable or disable tamper detection, go to the controller's hardware overview page.
- Works with any off-the-shelf alarm panel, e.g. the Bosch FPA-1000 Fire Panel
- If you’re installing the fire alarm control panel (FACP) yourself, we recommend introducing an external power supply with FACP input to override access control