Matrix Single Location Access Control

Access control for offices, clinics, and branches on Matrix COSEC — biometric, card, PIN, and mobile credentials, web-based setup with no server PC, scaling to 255 controllers and 25,000 users on one PoE+ network.

Most access-control pitches assume a server room and an IT team to run it.

A single office, clinic, or branch has neither — so it either over-buys enterprise kit it can't administer, or settles for a standalone keypad that logs nothing. IPTech deploys Matrix COSEC's single-location tier to close that gap: the same biometric, card, and mobile credentials, the same audit trail and sensitive-area controls the large sites get, but configured from a browser with no server PC, powered over the existing network with PoE+, and scaled to a single site's reality — up to 255 controllers and 25,000 users.

Capabilities

Enterprise control without a server room

COSEC is configured from a browser — no server PC, no extra software to license or maintain. Controllers are plug-and-play: connect them to the network and they come up ready to enroll users.

PoE+ carries both power and data on one cable to panels, controllers, readers, and locks, so there are no separate power runs and no electrician needed at every door. A centralized supply with a UPS means a quick install and one thing to back up, not a wiring project.

Enterprise control without a server room

Hardened controls for the rooms that matter

Even a single site has rooms that need more than a card swipe — a server closet, a cash room, a pharmacy, a records store. The policy engine handles the corner cases that catch most operators out:

First-In User — a zone cannot open until an authorized opener is physically present
Anti-Passback — one credential cannot be reused to tailgate a second person through the same door
Man-Trap — two adjacent doors cannot be open at the same time, forcing single-person passage
2-Person Rule — dual-credential authentication for the highest-security rooms
Dead-man Zone — a monitored area that flags if someone stays past a safe limit

Real-time alerts to the people on site

Entry and exit events, access violations, exceptions, and device failures are pushed in real time by email and SMS. A small site does not need a security operations center watching a wall of screens — the alert reaches whoever is responsible, the moment it matters.

Notifications are programmable, so routine traffic stays quiet and only operationally meaningful events break through. That is what keeps the channel useful instead of ignored.

A complete event record, backed up

COSEC stores up to 500,000 entry and exit events, viewable and downloadable on demand for auditing or review. For a single site, that is years of history without an external log server.

Automatic and manual backup, backup-and-restore, and backup over FTP mean the record survives a hardware failure without an IT team babysitting it — the evidence is still there when someone asks who entered and when.

Reuse the readers you already have

The industry-standard Wiegand interface accepts third-party readers, so an existing card system migrates to COSEC without re-wiring every door or re-enrolling every user. The initial reader investment is protected, not thrown away.

Matrix and third-party readers coexist during the switch, and credentials — card, fingerprint, or mobile — carry across. The migration happens at the pace the site can absorb, not in one disruptive cutover.

Features

Multiple Credential Support

Fingerprint, RFID card, mobile (BLE / NFC / QR), and PIN — pick what fits the user and the door.

Plug and Play

Built-in web software runs from a browser — no server PC and no additional software to install.

Scalable

Manage up to 255 controllers and 25,000 users from one centralized, web-based console.

PoE+ Connectivity

Power and data on one cable, direct to locks — less cabling, faster install, fewer points of failure.

Informative Reports

Audit-ready reports on door events, access attempts, and violations — exportable for quick review.

Secured Communication

SSL-encrypted device communication — credentials and events never traverse the network in cleartext.

Deployment Options

Dimension

CloudRecommended

Matrix COSEC VYOMLearn More

On-Premise

Matrix COSEC CENTRALearn More

Infrastructure

AWS-hosted; no on-site server

Server inside your network

Uptime

99.95% (AWS SLA)

Site-managed; depends on local IT

Data residency

AWS region (KSA region available)

Inside your network

Scaling

Add doors via the UI; no site visit

Plan controller capacity per growth

Upgrades & maintenance

Continuous; handled by Matrix + IPTech

Administrator-controlled backups + upgrades

Ideal for

Single sites with no in-house IT, fastest rollout

A data-residency requirement or existing local servers

Related Use Cases

Multi-Tenant Access Control

Facilities Management

Tenant-specific zones in commercial buildings with role-based credentials — each tenant manages their own employees and visitors while building management retains oversight of common areas, lifts, and after-hours access. Reduces FM team interruption for tenant-level access changes.

Learn More

Back-of-House Access Control

Hospitality

Separate guest and staff zones with role-based credentials — kitchens, housekeeping storage, executive offices, plant rooms. Biometric or card credentials grant access only to the zones the role requires, with audit-grade entry logs for incident review.

Learn More

Production Zone Access Control

Manufacturing

Restrict entry to high-risk production zones — clean rooms, chemical handling areas, hygiene-critical lines — with role-based credentials, palm-vein readers, and audit trails tied to the operator who entered each zone.

Learn More