AXIS Device Manager Extend

About

AXIS Device Manager Extend solution provides system administrators with an interface for discovering, configuring, and operating Axis devices on their organization’s networks.

The AXIS Device Manager Extend desktop app

The desktop app is a software utility program that can be used as an on-demand, or always available user interface for managing the system. It can be run on a dedicated machine together with a locally installed site controller or separately from the site controller on a remotely connected laptop. The client presents the user with the overall status of the system readily available and management actions can be executed.

The site controller

The site controller component in ADM Extend is an always available, on-premise management service that is responsible for maintaining local devices, such as cameras. The ADM Extend site controller also acts as a link to the Axis remote management service, where the same API functionality supports remote administration of sites via the Axis service platform.

Solution overview

  1. Desktop app
  2. Site controller
  3. Devices
  4. VMS
  5. Site
  6. My Axis
  7. Secure access
  1. Desktop app
  2. Site controller
  3. Devices
  4. VMS
  5. Local sites
  6. My Axis
  7. Secure access
  8. Remote access functionality
  1. Alternative A: Via Proxy
  2. Alternative B: Direct connection to site
  3. Desktop app
  4. Site controller
  5. Devices
  6. VMS
  7. Local sites
  8. My Axis
  9. Secure access
  10. Remote access functionality
  11. Access via proxy

Prerequisites

Compatible operating systems:

  • Windows 10 Pro, Enterprise, Server 2016 and 2019 (x64-based system).

  • System Administrator privilege required for installation and configuration changes.

System recommendation:

  • CPU: Intel Core i5

  • RAM: 4 GB

  • Network: 100 Mbps

Internet connectivity

Note

The AXIS Device Manager Extend application requires internet connectivity to be provisioned with certificates identifying it as belonging to the organization created and associated with the MyAxis account used in the installation. However, to benefit from certain features such as warranty information and multisite support you need an internet connection. In addition, the client and/or site controller only automatically updates in the online mode.

Synchronized time and date

Note

Ensure all the system components are synchronized, otherwise certificate authentication between the site controller and the client or backend could fail. It is recommended that all host machines are synchronized to a common Network Time Server to avoid any potential issues.

Open network ports:

For secure connections from the ADM Extend desktop app to the site controller (SC), site controller discovery and Axis Remote Service.

  1. Axis Service Platform
  2. ADM Extend desktop app
  3. Site controller
  4. Devices
  5. HTTPS (port 443)
  6. HTTPS (port 443, WSS (port 443)
  7. HTTPS (port 37443), UDP Multicast discovery (port 6801), HTTP discovery (port 37080)
  8. UDP Multicast discovery (port 6801)
  9. HTTPS and HTTP (port 443 and 80), Multicast discovery —SSDP (port 1900) — Bonjour (port 5353), Unicast discovery (port 1900), HTTP discovery (port 80 and 443)

Outgoing network access

We are in ongoing development of the application, and we therefore advise you to allow firewall access to outgoing network connections for the ADM Extend desktop app and any site controller.

Get started

Install the software, create an organization and add devices

Register a MyAxis account

Register a MyAxis account at axis.com/my-axis/login.

You can make your MyAxis account more secure by activating multi-factor authentication (MFA). MFA is a security system that adds another layer of verification to ensure the user’s identity.

  1. Activate MFA:
  2. Go to https://auth.axis.com/user-center/account/security-settings.

  3. Turn on 2–Step verification.

  4. You are redirected to a login page.
  5. Log in with your MyAxis credentials.

  6. MFA is now active.

  1. Log in when MFA is active:
  2. Log in to your MyAxis account.

  3. An email is sent to you.
  4. Open the email and click Authenticate.

  5. If you didn’t receive an email, then check if it’s in your spam folder. If it’s not there, then contact IT support.

Install the site controller

The site controller and the desktop client is included in the AXIS Device Manager Extend installer. We recommend you install the site controller on a server as close to your devices as possible.

  1. Choose a server where you want to install the site controller

  2. Run the installer on the server and only select to install the site controller.

Install the client and activate your account

Go to the project page on axis.com and download the AXIS Device Manager Extend desktop app installer

  1. Locate where you downloaded the application and click to install.

  2. Select the client and click Install.

  3. Sign in to your MyAxis account.

  4. Confirm your e-mail address to complete the activation.

  5. Create or join an existing organization that the site belongs to.

  6. Note

    The activation and the organization you select to join can’t be changed once the process completed

Claim the site controller

To create a secure connection to your devices from the ADM Extend desktop app, you must first claim the site controller to your organization.

  1. Click the site controller with the status Unclaimed site

    1. Click Scan for local site if there is no site controller in the list

    2. Type the IP address of where the site controller is located

  2. Type the name of your site

  3. Add an optional description (recommended)

  4. Click Claim site controller

Add devices to your site

  1. Click Sites

  2. Go to Devices > Discovered devices

  3. Select the devices you would like to add, or select all of the devices by checking the box at the top of the selection column.

  4. Click Add devices to site.

Log in to your devices

  1. Click Sites

  2. Select a site.

  3. Go to Devices > Site devices

  4. Select the devices you want to access, or select all of the devices by checking the box at the top of the selection column.

  5. Click Add credentials to automatically log in to multiple devices.

  6. Type the username and password.

  7. Click Use

Note

If the username and password are correct, the Device status will show Reachable

Configuration

Activating remote access

If your firewall settings block outbound connections, you may have to enter a proxy connection to access the site remotely. Internet access is activated by default.

  1. Select the site you want to activate remote access.

  2. Go to Settings > Site controller connections.

  3. Type the address of the proxy server

You will be notified once the connection is active.

Note

To activate Remote Access to site controllers on other subnets than where the client is running, add this additional firewall configuration: Endpoint Port Protocol signaling.prod.webrtc.connect.axis.com 443 HTTPS *.turn.prod.webrtc.connect.axis.com 443 HTTPS webRTC (Turn and P2P) 5349, 49152 - 65535 DTLS (UDP and TCP)

Add users to your organization

How to invite users and how they join.
  1. Click you organization’s name to access the organization drop down menu.

  2. Select the organization where you would like configure user settings.

  3. Go to Organization and click Users.

  4. Click Invite to organization.

  5. Type the email address of the user you’d like to invite to your organization.

  6. Click Send invite.

Note

The user will receive an invitation email that they can use to sign in to AXIS Device Manager Extend. If they don’t have a My Axis account, they must use that email to sign up in order to access the organization. Invites can be revoked while pending acceptance.

Elevate user role

  1. Click you organization’s name to access the organization drop down menu.

  2. Select the organization where you would like configure user settings.

  3. Go to Organization and click Users.

  4. Go to Role of the user you’d like to elevate

  5. Click the drop down menu to select the new role

Note

The role changes immediately once selected. For security reasons, invites are limited to the administrator role.

Remove users

  1. Click you organization’s name to access the organization drop down menu.

  2. Select the organization where you would like configure user settings.

  3. Go to Organization and click Users.

  4. Move the mouse pointer to the user you would like to remove.

  5. Click ... and select Remove member in the drop down menu.

Troubleshooting

How to configure firewall settings

In order for AXIS Device Manager Extend client and site controller to communicate with the Axis service the following IP addresses and/or domain names should be added to the allowlist by the organization’s firewall:

The URL prod.adm.connect.axis.com  is a simple A DNS entry which resolves to IP address 52.224.128.152 or 40.127.155.231. These IP addresses host a single application gateway that forwards the requests to the appropriate (depending on the incoming request path) backend host.

AXIS Device Manager Extend client and the site controller use the domain name for all requests.

For this to work, the network will need to use a public DNS (or for example cache the domain name in a local DNS). Therefore, in addition to the application gateway IP address, some public DNS server IP should also be added to the allowlist.

For example: Google’s public DNS which is available at IPs: 8.8.8.8 and 8.8.4.4.

Add IP addresses

Add subnets, individual IP addresses or an IP range either directly or import a comma separated text file (CSV).

  1. Go to a site claimed by your organization.

  2. Go to Settings > Device discovery options.

  3. Click Add subnet or IP address

  4. Select either Manual entry or Import from file.

Note

The file should have:
A header for the column of IP addresses.
A single column.
A maximum of 25,600 IP adresses.

Provide feedback

To send us feedback about the application:

  1. Click main menu icon in the top right corner.

  2. Select Provide feedback

  3. Describe your experience and any thoughts on improvements

  4. Enter your email address (optional)

  5. Click Send feedback

Note

Local Axis customer representatives do not offer full support. We kindly refer you to axis.com/support.