Thank you for purchasing Grandstream GDS3705 Audio Door Access System, an innovative IP-based powerful door system. The GDS3705 Audio Door Access system features industry-leading SIP/VoIP for 2-way audio to SIP phones. It contains an integrated PoE, HD loudspeaker, RFID card reader, and more.
GDS3705 IP Audio Door Access System can be managed by Grandstream’s free windows-based management software: GDS Manager is a client/server-based software that provides RFID card management and basic reports for the door entrance. GDS3705 is ideal for entry places such as banks, hotels, schools, office buildings, retail stores, and small warehouses.
The following table resumes all the technical specifications including the protocols/standards supported, voice codecs, telephony features, and upgrade/provisioning settings for GDS3705.
TCP/IP/UDP, RTP/RTCP/RTCP-XR, HTTP/HTTPS local upload and mass provisioning using TR-069, ARP/RARP, ICMP, DNS, DHCP, SSH, SMTP, NTP, STUN, TLS, SRTP.
Broad interoperability with most 3rd party SIP/VoIP devices and leading SIP/NGN/IMS platforms.
G.711µ/a-law, G.722, G.729A/B, DTMF (RFC2833, SIP INFO), AEC.
Layer 2 QoS (802.1Q, 802.1P).
User and administrator level access control (pending), MD5 and MD5-sess-based authentication, 256-bit AES encrypted configuration file, TLS, SRTP, HTTPS, 802.1Q.
Upgrade / Provisioning
Firmware upgrade via HTTP/HTTPS, mass provisioning using TR-069 or AES encrypted XML configuration file.
Integrated dual microphones.
Built-in HD Loudspeaker (2 Watt), sound quality suitable for up to 3 m.
Keypad / Buttons
12-Metal Keys plus a Metal doorbell button.
125KHz: EM4100 (1 RFID card and 1 RFID key fob included).
Yes, 2 channels, Vin < 15V, for door sensors or other devices.
Yes, 2 channels, 125VAC/0.5A, 30VDC/2A, Normal Open or Normal Close, for electric lock, light switch or other devices.
RS485, Wiegand (26 bits) input and output.
Dimensions and Weight
173mm(H) x 80mm(W) x 36mm(D).
PoE (Power over Ethernet) IEEE 802.3af Class 3, or 12VDC/1A connection (AC power adapter not included).
Weatherproof, vandal-resistant, with support for extra back reinforcing metal plate
Temperature and Humidity
Operation: -30°C to 60°C (-22°F to 140°F)
Storage: -35°C to 60°C (-31°F to 140°F)
Humidity: 10% to 90% Non-condensing
IP66 (EN60529), IK09 (IEC62262).
FCC: Part 15; Subpart B; Subpart C; MPE
CE: EN 55032; EN 50130; EN 61000-3-2; EN 61000-3-3; EN 60950-1; EN 300 330; EN 301 489-1; EN 301 489-3; EN 62311
RCM: AS/NZS CISPR 22/24; AS/NZS 4268; AS/NZS 60950.1
IC: ICES-003; RSS310
This chapter provides basic installation instructions including the list of the packaging contents and information for obtaining the best performance using the GDS3705 Audio Access Door System.
Below figures show the component of the back and front view of the GDS3705 IP Audio Access Door System:
The GDS3705 can be powered using PoE or PSU:
Using PoE as power supply (Suggested)
- Connect the other end of the RJ45 cable to the PoE switch.
- A PoE injector can be used if the PoE switch is not available.
Using the power adapter as power supply (PSU not provided)
- Connect the other end of the RJ45 cable to the network switch or router.
- Connect DC 12V power source via related cable to the corrected PIN of the GDS3705.
J2 (Basic) 3.81mm
Orange / White
Green / White
Blue + Blue/White
Please twist these two wires together and connect to SP1, SP2 respectively even the PoE NOT used.
Brown + Brown/White
DC 12V, 1A Minimum
J3 (Advanced) 3.81mm
Relay: 30VDC/2A; 125VAC/0.5A
For "Fail Secure" (Locked when Power Lost) Strike, connect COM2 & NO2.
For "Fail Safe" (Open when No Power) Magnetic Lock, connect COM2 & NC2.
Relay: 30VDC/2A; 125VAC/0.5A
J4 (Special) 2.0mm
Wiegand Power GND
Both Input and Output MUST be connected
Wiegand Output Signal
GDS3705 function as Output of Card Reader, Connect Pin 1, 2, 3
Wiegand Output LED Signal
For External Card Reader; Or GDS3705 as Receiver Only
Wiegand Input Signal
For External Card Reader
Wiegand Output BEEP Signal
For External Reader Only
Wiegand Power Output
For External Card Reader Only.
Table 4: GDS3705 Wiring Connection
To connect the GDS either by using PoE or PSU follow the steps below:
- Open the Back-Cover Board of the GDS3705 which should look like the following figure.
- Cut into the plastic sheath of your Ethernet cable, then Unwind and pair as shown below.
Use the TIA/EIA 568-B standard, which defines pin-outs for using Unshielded Twisted Pair cable and RJ-45 connectors for Ethernet connectivity.
- Connect each wire of the cable to its associate on the Back Cover of the GDS3705 to power the unit using PoE.
- To power the unit using PSU, use a multimeter to detect the polarity of your Power Supply, then connect GND to the negative pole and 12V to the positive pole of the PSU.
The GDS3705 has an embedded Web server to respond to HTTP/HTTPS GET/POST requests. Embedded HTML pages allow users to configure the GDS3705 through all available Web browsers in the internet.
The GDS3705 by default has a DHCP client enabled, it will automatically get IP address from DHCP server.
Two ways exist for Windows users to get access to the GDS3705:
By default, the GDS3705 has the UPnP feature turned ON. For customers using Windows network with UPnP turned on (most SOHO routers support UPnP), it is very easy to access the GDS3705:
- Find the “Network” icon on the Windows Desktop.
- Click the icon to get into the “Network”, the GDS3705s will list as “Other Devices” shown like below. Refresh the pages if nothing is displayed. Otherwise, the UPnP may not be active in the network.
3. Click on the displayed icon of related GDS3705, the default browser (e.g.: Internet Explorer, Firefox, or Chrome) will open and connect directly to the login webpage.
GS search is a program that is used to detect and capture the IP address of Grandstream devices. Below are instructions for using the “GS Search” utility tool:
- Download the GS Search utility tool from the Grandstream website using the following link: GS_Search
- Double click on the downloaded file and the search window will appear.
- Click on button to start the discovery for Grandstream devices.
- The detected devices will appear in the output field like below.
- Double click on a device to access its web GUI.
Users can know the IP address assigned to the GDS3705 from the DHCP server log or using the Grandstream GDS Manager after installing this free utility tool provided by Grandstream. Users can find instructions below, for using the “GDS Manager” utility tool:
- Download the GDS Manager utility tool from the Grandstream website using the following link: GDSManager Download
- Install and run the Grandstream GDS Manager, a client/server architecture application, the server should be running first, then GDSManager (client) later:
3. On the GDS Manager access to Device 🡪 Search and Click on the button to start device detection
4. The detected devices will appear in the output field like below:
5. Double click the column of the detected GDS3705, and the browser will automatically open and show the device’s web configuration page.
6. Enter the administrator user name and password to access the Web Configuration Interface, the default admin username is “admin” and the default random password can be found at the sticker on the GDS3705.
If there is no DHCP server in the network, or the GDS3705 does not get IP from the DHCP server, the user can connect the GDS3705 to a computer directly, using static IP to configure the GDS3705.
- The default IP, if no DHCP server, or DHCP request times out (after 3 minutes), is 192.168.1.168
- Connect the Ethernet cable from GDS3705 to the computer network port directly.
- Configure the computer using Static IP: 192.168.1.XXX (1<XXX<255, except for 168) and configure the “Subnet mask” to “255.255.255.0”. Leave the “Default Gateway” to “Blank” like below:
4. Power on the GDS3705, using a PoE injector or external DC power.
5. Enter 192.168.1.168 in the address bar of the browser, and log in to the device with admin credentials. the default admin username is “admin” and the default random password can be found on the sticker on the GDS3705.
The GDS3705 Door System can be used in different scenarios.
For environments like remote warehouse/storage, grocery store, small (take-out) restaurants, just using static IP with PoE switch to form a LAN, using Grandstream’s audio phone GXP21XX/17XX/16XX series, the GDS3705 will meet your very basic intercom and open-door requirements.
This is the solution to upgrade the traditional analog Intercom system. All you need is a Power source, Switch or PoE Switch, and Grandstream IP phones.
The equipment list can be found below:
- Grandstream IP Phones
- PoE Switch with related Cat5e/Cat6 wiring
For large deployment, multiple GDS3705 units might be required, peered connection will not work in such case due to multiple connections. Such scenarios require an IPPBX or a SIP Proxy to accomplish the tasks.
If remote access is required, a router with internet access should be added to the below-needed equipment list:
- Several GDS3705
- UCM6XXX or another SIP Server
- Grandstream IP Phones
- PoE Switch with related Cat5e/Cat6 wiring
- Electronic Lock
Below is the illustration of GDS3705 peripheral connections for related applications.
Alarm_In could use any 3rd party Sensors (like IR Motion Sensor).
Alarm_Out device could use 3rd party Siren, Strobe Light, or Electric Door Striker, etc.
The figure below shows an illustration of the Circuit for Alarm_In and Alarm_Out.
- The Alarm_In and Alarm_Out circuit for the GDS3705 should meet the following requirement:
3V<Vin<15V, PINs (1.02KΩ)
125VAC/0.5A, 30VDC/2A, Normal Open, PINs
- The Alarm_In circuit, if there is any voltage change between 3V and 15V, as specified in the table above, the GDS3705 Alarm_In port will detect it and trigger the action and event.
- Higher voltage and wrong polarity connection are prohibited because this will damage the devices.
When connecting the GDS3705 to a door strike it is recommended to set an EMF protection diode in reverse polarity for secure use, below are examples of deployment for the protection diode.
The reverse EMF protection diode must always be installed in reverse polarity across the door strike.
Below are examples, show how to use wiring on the back cover of the GDS3705 to connect with external devices. The “NO” (Normal Open) model strike is used as an example, “NC” (Normal Closed) should be similar and users need to decide which model (NO or NC) to be used on the door.
GDS3705 package is shipped with one Wiegand cable for Input/Output Wiegand connections. The following examples show how to connect the Wiegand Input/Output devices to the GDS3705.
Make sure to connect the GND of the Wiegand device and the GDS3705 Wiegand port.
For Wiegand input mode, LED and Beep pins require that the Wiegand device support those interfaces. These two pins will not affect the Wiegand bus when not connected.
If the power source is 12VDC, the Wiegand device can share the same power source as GDS3705. However, users need to check the max power consumption and the max capability of the power source.
If Wiegand device is using 5VDC, GDS3705 Wiegand port can provide 5VDC with max 500mA to power up Wiegand device.
When the Wiegand output of the GDS3705 is connected, it acts as the signal receiver of the 3rd party Wiegand device, connecting to the door controller. The major wiring is GND, D0, and D1. Because usually, the door controller will consume a big current and power, the power supply should be separated.
When this feature is enabled (special wiring required, see below wiring diagram), an abnormal open door will be detected by the DI port (Alarm_In2 or IN2 in the below diagram showed) if wired correctly (connecting the COMx port to DIx port) therefore trigger the siren alarm. Once an abnormal open door alarm is triggered, the siren will sound non-stop, until manually overridden by a related person.
There are several ways to stop and disable the alarm:
- Power cycle the GDS3705
- Pick up the Alarm Phone Call (if configured)
- Open Door using a PIN (either public PIN or private PIN)
Once the alarm is triggered, the GDS3705 will play a siren sound, send an email to the administrator (if configured SMTP); call the configured alarm SIP phone, and send the alarm output (if connected). Users will only be able to disable the siren using the 3 methods mentioned above.
For detailed action information please refer to GDS37xx User Manual, “Alarm Action Settings” configuration. Below are some diagrams showing the correct wiring to enable this new security enhancement feature.
GDS3705 Connection: IN2 set as Normal Close and “Fail-Safe” Electric Strike using 3rd Party Power Supply
GDS3705 Connection: IN2 set as Normal Open and “Fail Secure” Electric Strike using 3rd Party Power Supply
This feature needs related matching GDS3705 firmware to work. The minimum firmware version needed:
- GDS3705: 184.108.40.206 or higher.
From the GDS3705 side, the configuration is the same. The only difference is the number of doors to be controlled: If using Local Relay controlled by GDS3705, TWO DOORS can be controlled.
If using GSC3570 Relay, ONLY ONE DOOR can be controlled. The PIN and other settings are the same as SIP remote open door or GSC3570 secure open door.
The difference will come out in the touch screen UI operation of GSC3570.
When GSC3570 established a call with GDS3705, the screen will display the virtual open door button(s), and the user will press the button to open the door:
At the GSC3570 idle screen, press “Monitor →Door system”, and the related GDS305 will be displayed. In the blue bar, left is a “Phone” icon and right is the “Open door” icon. The“Phone” icon will establish the SIP call as the previous firmware behaved.
Press the “Open door” icon, and the GSC3570 will open the door directly and NO SIP CALL will be established. Depending on how many doors are controlled, if one door is configured, the door will open directly; if two doors are configured, another screen will pop up to allow the user to choose which door to open, as shown below:
When the door is successfully opened the following message will appear:
This secure open door feature needs to include GSC3570 to make it a whole solution. The GDS3705/GSC3570 will be peering together in LAN/WAN via IP/SIP, and the door lock/strike will be wired to the GSC3570Alarm_Out port and controlled by GSC3570. This way the strike control is inside the building with enhanced security. Below is a setup example:
Note: Minimum firmware required for this to work:
- Outdoor Device: GDS3705 firmware 220.127.116.11 and higher.
- Indoor Device: GSC3570 firmware 18.104.22.168 and higher.
For “Secure Open Door”, the GSC3570 is paired with GDS3705. The GSC3570 controls the relay/strike/lock from inside the building (Unlike GDS3705 installed outside), but only ONE door can be controlled because GSC3570 only has one Relay Control circuit built-in. This pairing can be via LAN/WAN but LAN is recommended and actually, most of the application scenes are in a LAN environment because most likely the GSC3570 and GDS37xx are in the same building.
For the GSC3570 and GDS37xx pairing, it can be used via SIP only (Cloud or UCM); IP only (No SIP proxy or UCM but static IP address), and Mixed (SIP and fallback to IP if Proxy failed).
GDS3705 Web Configuration
This setup can be found under the device web UI under, Door System Settings →Basic Settings:
GSC3570 Web Configuration
The GSC3570 side also need to be configured accordingly, like below example:
- Once the IP address of the GDS3705 is entered on the user browser, the login web page will pop up allowing the user to configure the GDS3705 parameters.
- When clicking on the “Language” drop-down, supported languages will be displayed as shown in the Figure below. Click to select the related webpage display language.
Users can configure system operations parameters, like input PIN for the door, and manage users’ settings.
Door Relay Options
There are two choices in the pull-down selection: Local Relay and Webrelay.
Note: In web relay mode, the strike is wired to the web relay controller device.
Webrelay URL ON
When Door relay Option set to Webrelay, then enter the correct URL used by the third party controller so that the GDS3705 send the command to activate the relay.
This adds an extra layer of security so when legal open door event happened, the configured web relay will get the communication from GDS3705, and will operate the strike to open door for the authenticated open door request or use that command to operate other industry application.
Webrelay URL OFF
When Door relay Option set to Webrelay, then enter the correct URL used by the 3rd party controller so that the GDS3705 send the command to disable the relay.
Enter the web relay username.
Enter the web relay password.
This option allows to choose to use Alarm_Out (COM1) interface for either as alarm out with 3rd party device, or to control a second door “Door 2” (the two functions are mutual exclusive).
When option “Open Door” is selected, will enable GDS3705 to control the operation of two doors via RFID, local and remote PINs.
Select Normal Open or Normal Close depending on the lock used.
Delay before Unlock (s)
Device will open door after specified delay (in seconds) when user issuing the authorization.
Unlock Holding Time (s)
Configures the lock holding time, in seconds (default value is 5 seconds).
Device will hold the door unlocked for this specified duration.
Range: 1-1800 seconds.
Minimum Interval of Swiping Card (ms)
Defines the interval in ms to swipe consecutive RFID cards. The range should be between 0ms and 2000ms. Default 300 ms.
Chooses whether to make call to the SIP number or Virtual Number when dialing from the GDS3705 keypad.
Configures the action to be taken when the doorbell is pressed, three options are available:
Doorbell Call Out Account
This option sets the account to be used to make call upon the doorbell trigger. If set to Auto, the GDS will use the first available account.
Door Bell Call Mode
Select the ring strategy for the Numbers Called when pressing the Door Bell button to be either Serial or Parallel:
Number Called When Door Bell Pressed
Configures SIP extension number (SIP Server mode), or IP address with port number (peering mode), to be called when the Door Bell is pressed:
Note: This field supports a Maximum of 256 characters.
Remote PIN to Open the Door
Configures PIN code stored in the GDS3705, remote SIP phone needs to input and match this PIN (the PIN is sent via DTMF while in call) so that the GDS3705 can open the door.
Note: For enhanced security, when the call is initiated from GDS then only the numbers existing in “White List” will be able to use DTMF PIN to open door remotely.
Maximum Number of Dialed Digits
Configure the maximum digits allowed to dial in the keypad. Once the configured condition satisfied, the device will send out the digit to call automatically without pressing #. Disabled if set to 0.
No Key Input Timeout (s)
Defines the timeout (in seconds) for no key entry. If no key is pressed after the timeout, the digits will be sent out without pressing #. The default value is 4 seconds. The valid range is from 1 to 15.
Press Doorbell Schedule
Configure a schedule for the Doorbell button, once configured, the doorbell with turn ON/OFF based on configured schedule. Default setting is “All Day”.
Local PIN Type
Three options are available: Private Card PIN, Unified PIN or Card and Private PIN.
Note: Door can still be opened by Card and with the sequence [*Virtual Number*Private PIN#].
Local PIN to Open Door
Configures PIN stored in GDS3705, input locally this PIN on the GDS3705 keypad will unlock the door.
This feature needs Private PIN, means every member has a private PIN, the GDS will record who unlocked the door every time.
Users need to enter the following sequence from the GDS3705 to open the door [*Virtual Number*Private PIN#].
Note: When local PIN type is set to private card PIN, users can also open the door by swiping their cards.
Local PIN to Open Door Schedule
Configure a schedule for the Local PIN to open the door for “Unified PIN” mode only. Once configured, the door opening ability using local PIN with turn ON/OFF based on configured schedule. The schedule can ONLY be edited when “Central Mode” disabled.
Notes: If “Central Mode” enabled, the “Schedule” page cannot be edited. (a green “Central Model” label will display in top right corner of the UI).
When “Central Mode” enabled, the “Schedule” will be edited in GDSManager and synchronized by pulling from GDSManager down to GDS3705 device.
Default setting is “All Day”.
Enable DTMF Open Door
When enabled, remote SIP phones can open the door while in call by entering the remote PIN code configured (the PIN code is sent via DTMF). Default settings is disabled.
Enable Guest PIN
Enables password entry for guests.
Configures the password that will be used by guests
Guest PIN Start Time
Selects the start time when the Guest PIN start to take effect.
Guest PIN End Time
Selects the end time when the Guest PIN will stop working.
Disable Auto Answer
If checked, GDS3705 will not answer incoming calls automatically, users can press any key to answer the call.
Default setting in unchecked.
Enable Doorbell Button to Hang up Call
If checked, Users can hang up an active call when pressing the doorbell button. Enabled by default.
Disable Keypad (except the Doorbell Button)
When checked the Keypad will be disabled, only Door Bell button can be pressed.
Enable On Hook After Remote Door Opened
When checked calls will be disconnected automatically 5 seconds after the remote open door event.
Enable HTTP API Remote Open Door
Enabling this option allows to use HTTP API command to open the door remotely.
Important note: We will not be responsible for any security problems resulting from opening the HTTP API remote function, this option is disabled by default and the user should enable it while knowing how to mitigate the risk.
Disable Keypad SIP Number Dialing
When Keypad SIP number Dialing disabled, device will interpret each digit entry as private-password open door request after pressing #.
Enable Card Issuing Mode
Enables RFID card issuing/program into the GDS3705. When selected sweeping an RFID card into the GDS3705 will add card information into [Card Management]
Card issuing State Expire Time (m)
Card issuing mode will be automatically disabled when timer reached (The range of value is 1 – 1440, in minutes).
Enable Key Blue Light
When checked, the blue light will be activated when pressing the GDS3705 Keys.
Enable Doorbell Blue Light
When enabled, Keypad LED will light based on the configured Start/End Time. For instance, this option can be used when GDS is deployed on dark environment, the GDS will be located easily using Keypad LED.
Enable Keypad Blue Light
When enabled, Keypad LED (except for Doorbell LED) will light based on the configured Start/End Time. For instance, this option can be used when GDS is deployed on dark environment, the GDS will be located easily using Keypad LED.
If enabled, Group/Schedule/Holiday/Keep Door Open, can only be synchronized from the Central (GDS Manager), local configuration will not be allowed.
If disabled, only local configuration from GDS3705 is allowed.
Key Tone Type
Configures the key tones for the GDS3705.
Enable Wiegand Input
This option needs to be enabled when GDS is connected to the wiegand. output device (RFID card reader for example)
This option is to be enabled when the GDS is the wiegand output device. (example: input device is a door controller)
Notes: Remote SIP phone needs a password (digits 0-9 only, ended with # key) matching the configuration on the web page to open the door (via DTMF).
GDS3705 support RFID for multiple users to open door, therefore every user has its own PIN. For an environment with 100 users and more, it’s difficult for the GDS3705 to manage all these users and a separate PC or Server should be involved for such kind of management and monitoring.
In environments with more than 100 users the GDS3705, another possibility would be to set one unified Local PIN for opening the door for all the users.
Starting from firmware 22.214.171.124, the user can now set Alarm_Out (COM1) interface to control a second Door, in addition to the existing Locker/COM2 interface (controlling Door1).
This feature allows GDS3705 to control the operation of two doors via RFID, and local and remote PINs.
For example, a 3rd party Wiegand Input device or GDS3705 can be installed at Door2 with a related cable wired into the control GDS3705 installed at Door1. The Door1 and Door2 can be configured to be open by programmed RFID cards, and PINs either separately or both.
- Interface for Door Control (which Door can be OPEN):
If Alarm_Out (COM1) interface is set to control Door 2 opening, “ALMOUT1 Status” can be configured by choosing “Normal Open” or “Normal Close” based on the strike used.
Unlike the default COM2 which is designed for strike control and has three connecting sockets, COM1 only has two connecting sockets. Therefore correct lock mode has to be configured to make the strike work as expected.
For the above example, the GDS3705 is configured to control Door1 (wiring to COM2 interface); the 3rd party Wiegand Input is set to control Door2 (wiring to COM1 interface).
In case of a power loss then the DOOR STATUS when power is off will be depending on the following situations:
- COM2 has three wiring PINs, corresponding to NO or NC accordingly. Therefore when connecting NC2 and COM2 (Fail Safe) the strike will open when power is lost and when using a NO2 strike (connecting COM2 and NO2) the door is “locked” when power is lost (Fail Secure).
- COM1 (ALMOUT1) has only two PINs and NO ONLY. If the connected strike/lock is a NO strike, this means ALMOUT1 Status should be set to “Normal Open” then the door will be closed when power is lost, while if the strike connected is NC strike, and ALMOUT1 Status is set to “Normal Close” then the door will be open when power is lost.
- Universal PIN for Operation of Doors:
If Unified PIN (Universal PIN) is configured to open door, then which door can be controlled by the PIN is configured in the UI once “Unified PIN” is selected.
For example, like the above screenshot, if this universal PIN is set to open both Door1 and Door2, but due to the previous “Control Option” set to open Door1, and “Wiegand Control” set to open Door2, therefore the final result will be the INTERSECT result of both sets with condition qualified.
- Remote PIN to Operation of Doors:
For remote PIN to open door, the PIN can be configured in example down below.
The PIN can be different for Door1 and Door2 and has to be configured correctly in related IP Phone which will be used to operate “One Key Open Door”.
If BOTH doors need to be opened at the same time, then both Door1 and Doo2 have to be configured with the exactly SAME password or PIN as DTMF open door.
- Private PIN or Card & Private PIN:
If using an RFID card or Private PIN to open door, then which door can be opened by the RFID card or Private PIN is configured via “Card Management”, see above screenshot.
This feature allows users to set either an immediate or scheduled open door, this will allow usage scene like schools or similar private or public places where the door needs to keep open at specific time window and closed otherwise. Also handy for buildings or properties where a seminar needs to be hosted for some period or lunch breaks in a factory or company where the door keeps open and no access log required then back to locked with authorized entry after that, by default it’s disabled.
There are two modes under this section:
- Immediate Open Door (One Time Only Action)
Keep Door Open
Select the Keep Door Open mode.
Interval of Keep Door Open (min)
Set the amount of time in minutes where the door will keep opened. Click to open door immediately.
2. Schedule Open Door (Repeated Action)
Keep Door Open
Select the Keep Door Open mode.
Schedule Start Time
Selects the start time when the door will be opened.
Schedule End Time
Selects the end time when the door will be locked.
Users can specify which Holiday Schedule to be included in the Keep Door Open schedule
Click on Edit schedule to select which periods for each day the door will remain open, as shown below screenshot.
This page allows users to add information about RFID cards, two options are possible either add RFID cards manually or automatically.
To add users, click on , the following page will pop up.
Configures the username to identify the user.
Specifies a PIN to unlock the door for this particular user.
Selects a gender, either Male or Female.
Enters an ID number (This number is set by the admin to identify each user uniquely).
Enters the RFID Card number (this is the number written on the RFID card. When “card issuing mode” is enabled, this field will be added automatically.
Valid Start Date
Configures the start date of validity of the RFID card.
Valid End Date
Configures the End date of validity of the RFID card.
When dialing directly from the keypad, the GDS accepts only Virtual number to identify a user, once the Virtual number is typed followed by the # key, the SIP Number will be dialed.
Configures the SIP Number which is mapped with a virtual number. Once the virtual number is dialed the GDS3705 will send an INVITE to the SIP Number.
Note: The SIP Number can be configured with an extension/phone number or IP address. Example: 192.168.5.124
Call Out Account
Select the SIP account that will be used to call the SIP Number extension, when choosing Auto, the unit will use the first available SIP account.
Configures the cellphone of the user.
Specifies to which group the user will be added.
Specifies the schedule that will be assigned to the user.
Right of Card
and Private PIN
Select the doors that can be accessed by the user.
When checked, the user’s RFID and Private PIN will be active for door opening. If unchecked, the Private PIN nor RFID card swipe won’t take effect.
If [Enable Card Issuing Mode] is checked, the GDS3705 keypad will start blinking and once an RFID card is swiped, data stored on the card will be added into the GDS3705 card management page, user can still edit the entry added automatically by modifying some fields.
- Click on to edit the entry or show details of the entry.
- Select the entries and click on to delete the selected users.
- Click to refresh the data entered to the GDS3705.
- Users can use to navigate through User Management pages.
The Group page permits to manage the groups which will contains multiple users, click on to create new groups or to edit existing groups or to delete the group.
Configures the name to identify the group.
Specifies the schedule that will be used by the group.
The following screenshots display the list of the created groups.
The Schedule page allows to manage schedule time frames which will be assigned to the users for door system usage. Out of the configured time intervals, GDS3705 will not allow users to access.
Click on to edit a schedule or for schedule details.
The Holiday page allows to manage holidays which will be assigned to the users for door system usage.
Click on to edit the holidays or for holiday details.
This page allows users to configure date and time, network settings as well as access method to the GDS3705 and password for accessing the Web GUI.
This page allows users to adjust system date and time of the GDS3705.
Displays the current system time.
Defines whether DHCP Option 42 should override NTP server or not. When
enabled, DHCP Option 42 will override the NTP server if it’s set up on the
LAN. The default setting is “Yes”.
Clicks to synchronize current time with the computer.
Selects from drop down menu the preferred time zone.
Enable Daylight Saving Time
Enables Daylight Saving Time.
Selects the Start time of DST.
Selects DST end time.
Enables NTP to synchronize device time.
Configures the domain name of NTP server.
Configures the Interval (in minutes) to retrieve updates from the NTP server.
This page allows users to set either a static or DHCP IP address to access the GDS3705.
IP Address Mode
Selects DHCP or Static IP. Default DHCP. (Static recommended)
Configures the Static IP of the GDS3705.
Configures the Associated Subnet Mask.
Configures the Gateway IP address.
DNS Address Type
Specifies the DNS type used: Dynamic DNS or Static DNS.
DNS Server 1
Configures DNS Server 1 IP address.
DNS Server 2
Configures DNS Server 2 IP address.
Controls the LLDP (Link Layer Discovery Protocol) service. The default setting is “Enabled”.
Controls the VLAN. Default setting is “Disabled”
Assigns the VLAN Tag of the Layer 2 QoS packets.
Valid range: 0-4096. Default value is 0.
Layer 2 QoS 802.1p Priority Value
Assigns the priority value of the Layer2 QoS packets. Default value is 0.
Enables/disables OpenVPN® functionality and requires the user to have access to an OpenVPN® server.
Note: To use OpenVPN® functionalities, users must enable OpenVPN® and configure all of the settings related to OpenVPN®, including server address, port, OpenVPN® CA, certificate and key. Additionally, the user must also set the SIP account to use “VPN” for the “NAT Traversal” (under Account 🡪 Network Settings).
OpenVPN® Server Address
Defines the URL/IP address for the OpenVPN® server.
Defines the network port for the OpenVPN® server. The default setting is 1194.
Determines network protocol used for OpenVPN® (UDP or TCP).
The default setting is TCP.
OpenVPN® CA file (ca.crt) required by the OpenVPN® server for authentication purposes. Press “Upload” to upload the corresponding file to the device.
OpenVPN® Client Certificate
OpenVPN® CA file (ca.crt) required by the OpenVPN® server for authentication purposes. Press “Upload” to upload the corresponding file to the device.
OpenVPN® Client Key
OpenVPN® Client key (*.key) required by OpenVPN® server for authentication purposes. Press “Upload” to upload the corresponding file to the device.
OpenVPN® Cipher Method
The cipher method of OpenVPN®, must be the same cipher method used by the OpenVPN® server. Supported methods are: Blowfish, AES-128, AES-256 and Triple-DES.
Configures the OpenVPN® authentication username (optional).
Configures the OpenVPN® authentication password (optional).
This page configures the GDS3705 TR-069/GDMS parameters.
|Enable TR-069||Enables/disables TR-069|
|ACS URL||Specifies URL of TR-069 ACS (e.g.,http://acs.mycompany.com), or IP address. Default setting is “https://acs.gdms.cloud”|
|ACS User Name||ACS username for TR-069.|
|ACS Password||ACS password for TR-069.|
|Periodic Inform Enable||Enables periodic inform. If set to “Yes”, device will send inform packets to the ACS. The valid range is 1 – 4294967295. The default setting is “Yes”.|
|Periodic Inform Interval (s)||Sets up the periodic inform interval to send the inform packets to the ACS. The default value is “60”.|
|Connection Request User Name||The username for the ACS to connect to the phone.|
|Connection Request Password||The password for the ACS to connect to the phone.|
|Connection Request Port||The port for the ACS to connect to the phone. The default value is “7547”.|
|CPE Cert File||The Cert File for the phone to connect to the ACS via SSL.|
|CPE Cert Key||The Cert Key for the phone to connect to the ACS via SSL.|
This page configures the GDS3705 access control parameters.
Web Access Mode
Selects the access mode to the webGUI either HTTP or HTTPS.
Web Access Port
Specifies the TCP port for Web Access, default 443.
User Login Timeout(min)
If no action is made within this time the GDS3705 will logout from the Web GUI, range is between 3 and 60.
Maximum Number of Login Attempts
Specifies the allowed login times error limit, if the unsuccessful login attempts exceed this value, the GDS3705 webGUI will be locked for the time specified in Locking Time of Login Error.
Locking Time of Login Error (m)
Specifies how long the GDS3705 is locked before a new login attempt is allowed.
Allow or deny the web access to the GDS3705. (HTTP API do not take effect when this option is enabled).
Note: If both Web UI and SSH are disabled, GDS3705 will get blocked and not be able to be accessed. Only two ways to get it back:
Enable UPnP Discovery
UPnP (or mDNS) function for local discovery. Default setting is enabled.
Once enabled, there will be an “eye” icon displayed in the web UI, putting the cursor to the “eye” icon, the related password or PIN will be displayed at the web UI. Once mouse cursor moved away, the PIN/Password will be displayed as dot “.” as usual.
Note: This feature ONLY works in HTTPS mode. Due to the insecurity of HTTP, PIN/Password will NOT be displayed. PIN/Password can ONLY be displayed in HTTPS mode.
Selects to Enable/Disable SSH access. Default setting is enabled.
Specifies the SSH port. Default setting is 22.
User can set in this field a custom admin password instead of using GDS3705 webUI administrator’s credentials, and this custom admin password will be the one used when adding the GDS3705 unit to GDSManager database.
This page allows users to configure the password for administrator. Since this is a door system which must be a secure product, the use is only limited to administrator.
Old password must be entered to change new password.
Fill in the revised new password in this field.
Confirm User Password
Re-enter the new password for verification, must match.
Password Recovery Email Address
If the password is lost, you can recover it on the configured Email address here.
Note: Make sure to configure SMTP Email Settings under “Email Settings”.
To recover lost password, users can from the login page click on Forgot Password?
Click the link will pop up the following page to ask to input the “Email Address” for the Recover Password to be sent to:
If the “Password Recover Email Address” and related SMTP is configured correctly, then click the “OK” button, the device will email the administrator password to the inputted email address, if the email address entered matches the pre-configured “Password Recover Email Address” inside the device and the device with working SMTP service configured.
Otherwise the device will prompt the following message at top of the UI page to advise user to configure the related parameters or service, to make this feature working. User can still click “Cancel” to omit these setting and continue the UI operation, but this is bad operation behavior.
Grandstream strongly suggest user to configure a working email address as “Password Recover Email Address” and configure a good SMTP service to the device. So, if something happened, the administrator can get the password recover email to unlock the device.
Users could access factory functions in order to diagnosis the hardware and software of the unit like verifying the audio loopback and certificates verification.
Press Start button and speak to the GDS3705. If you can hear your voice, your audio is working fine. Press Stop to exit audio loopback mode.
This is used to validate certificate chain for the server’s certificate.
The GDS3705 supports 4 SIP accounts and 4 lines, this section covers the configuration of basic and advanced SIP settings for each SIP account.
This page allows the administrator to configure the SIP account basic and advanced settings for each SIP account:
SIP Basic Settings
This field indicates whether the account is active. Default setting is “Yes”.
Configures the FQDN or IP of the SIP server from VoIP service provider or local IPPBX.
Secondary SIP Server
Configures the FQDN or IP of the Secondary SIP server from VoIP service provider or local IPPBX.
Configures the IP address or the domain name of the outbound proxy, media gateway, or session border controller. It's used by the GDS for firewall or NAT penetration in different network environments.
If a symmetric NAT is detected, STUN will not work and only an outbound proxy can provide a solution.
Backup Outbound Proxy
Configures the backup outbound proxy to be used when the “Outbound Proxy” registration fails. By default, this field is left empty.
Configure which DNS mode will be used to translate the SIP Server FQDN (Default value is A Record):
Note: Service providers can use DNS SRV feature to provider smooth service transition backup in case service down.
SIP User ID
Configures the SIP username or telephone number from ITSP.
Note: Letters, digits and special characters including @ are supported.
Configures the Authenticate ID used by SIP proxy.
Sets the Authenticate password used by SIP proxy.
Note: For security reasons, the SIP password is invisible on the web UI.
The GDS3705 is an audio only device, unlike GDS3710, user cannot see who in at the door. Adding this “Display Name” will also allow user receiving calls from GDS3705 knowing where the call is coming from (e.g.: which door or extension the call is made), improve user experience when user is using a IP phone with LCD display.
Select “User=Phone” or “Enabled” from the dropdown list.
If the SIP account has an assigned PSTN telephone number, this field should be set to "User=Phone". Then a "User=Phone" parameter will be attached to the Request-Line and "TO" header in the SIP request to indicate the E.164 number. If set to "Enable", "Tel:" will be used instead of "SIP:" in the SIP request. The default setting is "Disable".
SIP Advanced Settings
Registration Expiration (m)
Sets the registration expiration time.
Default setting is 60 minutes. Valid range is from 1 to 64800 minutes.
Re-register before Expiration (s)
Specifies the time frequency (in seconds) that the GDS3705 sends re-registration request before the Register Expiration. The default value is 0. Range is from 0 to 64800 seconds.
Local SIP Port
Sets the local SIP port. Default setting is 5060 for Account 1, 5062 for Account 2, 5064 for Account 3, 5066 for Account 4.
Chooses the SIP transport protocol. Default settings is UDP.
Specifies the mechanism to transmit DTMF digits. There are 2 supported modes:
DTMF Payload Type
Configures the payload type for DTMF using RFC2833.
Default value is 101. Range: 96~127.
Enable Keep Alive
Checks to help NAT resolution, sending alive packets.
Unregister On Reboot
Allows the SIP user's registration information to be cleared when the GDS3705 reboots. The SIP REGISTER message will contain “Expires: 0” to unbind the connection.
This parameter configures whether the NAT traversal mechanism is
activated. Users could select the mechanism from No, STUN, Keep-alive,
UPnP, Auto or VPN. The default setting is “No”.
If set to “STUN” and STUN server is configured, the GDS3705 will route according to the STUN server. If NAT type is Full Cone, Restricted Cone or Port-Restricted Cone, the unit will try to use public IP addresses and port
number in all the SIP&SDP messages.
The GDS will send empty SDP packet to the SIP server periodically to keep the NAT port open if it is configured to be “Keep-alive”. Configure this to be “No” if an outbound proxy is used. “STUN” cannot be used if the detected NAT is symmetric NAT. Set this to “VPN” if OpenVPN is used.
Enable SRTP mode based on your selection from the drop-down menu.
The default setting is “Disabled”, the two other modes are “Enabled but Not Forced” and “Enabled and Forced”.
Configures GDS settings to meet different vendors’ server requirements.
Users can choose from Standard, Broadsoft or Telefonica Spain.
The default setting is “Standard”.
Outbound Proxy Mode
In route: outbound proxy FQDN is placed in route header. This is used for the SIP Extension to notify the SIP server that the device is behind a NAT/Firewall.
Always sent to: SIP messages will always be sent to Outbound proxy.
Not in route: remove the Route header from SIP requests.
Validate Incoming Messages
Specifies if the device will check the incoming SIP messages caller ID and CSeq headers. If the message does not include the headers, it will be rejected. The default setting is "No".
This option allows 3rd party Service Provider or Cloud Solution to monitor the operation status of the GDS3705 by using related SIP Calls.
By default, it’s disabled. Users can choose either RTCP or RTCP-XR.
Accept Incoming SIP from Proxy Only
When set to “Yes”, the SIP address of the Request URL in the incoming SIP message will be checked. If it doesn’t match the SIP server address of the account, the call will be rejected. The default setting is “No”
SIP URI Scheme When Using TLS
This option allows the GDS3705 to work with Cisco WebEX server as SIP client. The two modes are SIP and SIPS.
Support SIP Instance ID
When enabled, the GDS3705 will work with Cisco WebEX server as SIP client.
Custom SIP Headers
Use P-Access-Network-Info Header
Enables/disables the use of P-Access-Network-Info header in SIP request. When disabled, the SIP message sent from the phone will not include the selected header. Default setting is “Yes”.
Add MAC in User-Agent
If Yes except REGISTER, the SIP message for register or unregister will contains MAC address in the header, and all the outgoing SIP messages except REGISTER message will attach the MAC address to the User-Agent header;
If Yes to ALL SIP, the sip message for register or unregister will contains MAC address in the header, and all the outgoing SIP message including REGISTER will attach the MAC address to the User-Agent header;
If No, neither will the MAC header be included in the register or unregister message nor the MAC address be attached to the User-Agent header for any outgoing SIP message.
The default setting is “No”.
Select multiple audio codecs by priority order (lowest is the highest priority).
Supported codecs are: PCMU, PCMA, G.722 and G.729A/B.
Voice Frame per TX
Configures the number of voice frames transmitted per packet. When
configuring this, it should be noted that the “ptime” value for the SDP will
change with different configurations here. This value is related to the codec
used and the actual frames transmitted during the in-payload call. For end
users, it is recommended to use the default setting, as incorrect settings may influence the audio quality.
The default setting is 2.
Range is from 1-64.
Table 15: SIP Account Basic & Advanced Settings
The phone settings allow users to configure the GDS3705 phone settings and the White list for all the SIP accounts.
This page allows users to configure the GDS3705 phone settings.
Configures the STUN server FQDN or IP. If the device is behind a non-symmetric router, STUN server can help to penetrate & resolve NAT issues.
Local RTP Port
Sets the local RTP port for media. Default setting is 5004.
Local RTP Port Range
Define the range of local RTP port from 48 to 10000
Forces the GDS3705 to use random ports for both SIP and RTP messages. This is usually necessary when multiple units are behind the same full cone NAT. The default setting is “Disabled”
Note: This parameter must be set to “Disabled” for Direct IP Calling to work.
Auto On-Hook Timer
Configures the auto on-hook timer (in seconds) for automatic disconnecting the SIP call. Default setting is 300.
Specifies the Ring timeout, when no reply is returned from the called party after exceeding this field, the GDS3705 will hang up the call. The value is in the range of 0s – 90s. By default; it is “30” seconds.
SIP TLS Certificate
Copy/Paste the TLS certificate here for encryption.
SIP TLS Private Key
Input private key here for TLS security protection.
SIP TLS Private Key Password
Specifies the password for SIP TLS private Key.
Enable Direct IP Call
Accepts peer-to-peer IP call (over UDP only) without SIP server.
Default is “Enabled”.
Enable two-way SIP Calling
Allows the user to enable/disable the alarm sound during a SIP call triggered by doorbell pressing.
Allows to factory reset the devices directly through SIP Notify.
If “Allow Reset Via SIP NOTIFY” is “check”, then once the GDS3705 receives the SIP NOTIFY from the SIP server with Event: reset, the GDS3705 will perform a factory reset after authentication.
This authentication can be either with:
Default is unchecked (disabled).
This page allows users to configure the white list per account, which is a phone number or extension list that can call the GDS3705. (The call will be automatically answered when calling from a phone set on the white list, and all other inbound calls will be blocked), the user can configure up to 30 white phone numbers per SIP account.
Moreover, besides numbers associated to active cards, and numbers on the “Number Called When Door Bell Pressed” setting, all whitelisted numbers can open door remotely by using the respective PIN code.
The table below gives a brief overview of the options:
Enable White Number List
Enables the White List feature.
Phone Number 1 -200
Adds a new phone number to the white list.
The audio settings allow users to configure the audio codecs and Volume related settings.
This page allows users to configure the audio settings.
Preferred Audio Codec
Configures the audio codec. Three codecs are available:
PCMU, PCMA and G.722 are supported.
Adjusts the speaker volume connected.
Adjusts the doorbell volume.
User can check this option in order to use the custom Doorbell Ringtone.
Default Ringtone is used when this option is disabled.
This button will redirect user to our Grandstream Ringtone Generator tool in our website.
- Click onto upload the ringtone file, then press
- Click onto delete the existent custom ringtone.
- Support upload WAV, PCM audio file (size <= 600K). Format limit to:
1. Sample Rate: 8k or 16k.
2. Channel: Mono-channel or Dual-channel.
1. Sample Rate: 8K.
2. Channel: Dual-channel.
This page allows users to configure alarm schedule and alarm actions.
This page allows users to configure GDS3705 events to trigger programmed actions within predefined schedule.
If Silently Alarm Mode is enabled, GDS3705 will disable alarm sound and background light for specified alarms types (Digital Input) when they are triggered.
Enable Silently Alarm Mode
Enable/Disable silent alarm mode.
Silently Alarm Options
When the silently alarm mode is enabled, users can specify to which alarm options the silently mode will be applied to.
The available options are: Digital Input, Tamper Alarm, and Password Error.
Hostage password can be used in a critical situation for instance a kidnaping or an emergency, users need to enter the following sequence to trigger the actions set for the Hostage Mode: “* HostagePassword #”.
Enable Hostage Code
Enable/Disable the Hostage password mode.
Configures the password for the hostage mode.
Select Alarm Action Profile
Select the Alarm action to be taken when the hostage password is typed on the GDS3705 keypad.
Note: No sound alarm will be triggered in this mode.
Tamper alarm is anti-hack from Hardware level. When this option is checked, if the GDS3705 is removed from the installation board, it will trigger configured alarm actions. There is an embedded mechanism on the GDS3705 that allows it to detect when the unit is removed.
Enable Tamper Alarm
When activating this mode, GDS3705 will keep alarming until the alarm is dismissed.
Select alarm Action Profile
Select the type of alarms actions to be triggered for the tamper alarm mode.
Enable Alarm for PIN Input Error
Enable/Disable the Input Error Alarm, GDS3705 will trigger alarm actions at every 5 incorrect attempts.
Select Alarm Profile
Select the type of alarms actions to be triggered after 5 incorrect attempts.
Enable Non-scheduled Access Alarm
When enabling this feature, GDS3705 will trigger alarm to related administrator to be aware when legitimated users access the door out of the allowed configured schedule.
Select Alarm Action Profile
Select the type of alarms actions to be triggered.
This page specifies the configuration of Alarm Schedule.
Note: Schedule must be configured first to allow the alarm to take the related action.
GDS3705 supports up to 10 alarm schedules to be configured, with time span specified by users. User can edit the alarm schedule by clicking button. Usually the 24 hours’ span is 00:00 ~ 23:59, which is 24 hours’ format.
Users can copy the configuration to different date during the schedule programming.
This option can be enabled from the web GUI, under Alarm Settings → Alarm Event Config
Any illegal card swiped trying to access the door will trigger alarm based on user’s configuration, like below:
User will get email, snapshot, etc., based on the Alarm Action Profile configured, to enhance the security of access control.
This page specifies the configuration of Profile used by the Alarm Actions. A Profile is required before the Alarm Action can take effect.
User can edit the alarm action by clicking button, the following window will popup.
To test an alarm action profile, users can click on button and the GDS will initiate all actions specified on the select alarm profile.
Upload to Alarm Center
If selected, the GDSManager will popup alarm window and sound alarm in the computer speaker.
Audio Alarm to SIP Phone
If selected, GDS3705 will call pre-configured phone and will play sound alarm.
If selected, an email will be sent to the pre-configured email destination.
If selected, GDS3705 will play alarm audio using built-in speaker.
If selected, the alarm will be sent to the equipment (for example: Siren) connected to Alarm Output interface.
This page allows users to configure the Alarm Phone List, which are phone numbers or extensions list that the GDS3705 will call out when event is trigged (e.g.: doorbell pressed), the administrator can configure up to 10 phone numbers to be called and specify the SIP account to trigger the alarm call.
Alarm Call Out Account
Define the SIP account that will be used to trigger the alarm call, when choosing Auto, the unit will use the first available SIP account.
Alarm Phone 1-10
Add the phone numbers to be called into the alarm list.
Once the event is triggered (Door Bell Pressed…), the GDS3705 will call the first number, once time out is reached and no answer is returned from the first number, the GDS3705 will try the next number on the list and so on. Once the remote phone answers the call, an alarm will be played to notify users that an event is triggered.
This page contains Email Settings.
This page allows users to configure email client to send out an email when the alarm is trigged.
Configures the SMTP Email Server IP or Domain Name.
SMTP Server Port
Specifies the Port number used by server to send email.
From E-mail address
Specifies the email address of alarm email sending from, usually client email ID.
Sender Email ID
Specifies sender’s User ID or account ID in the email system used.
Sender Email Password
Specifies sender’s password of the email account.
Alarm-To Email Address 1
Specifies the 1st email address to receive the alarm email.
Alarm-To Email Address 2
Specifies the 2nd email address to receive the alarm email.
Check if the SMTP email server requires SSL.
This page shows the GDS3705 Maintenance parameters.
This page contains the upgrade parameters of the GDS3705.
Selects the upgrade method (HTTP, HTTPS).
Firmware Server Path
Configures the IP address or the FQDN of the upgrade server.
Config Server Path
Configures the IP address or the FQDN of the configuration server.
HTTP/HTTPS User Name
User name if needed by remote provisioning HTTP/HTTPS server.
Password to authenticate with remote provisioning HTTP/HTTPS server.
Firmware File Prefix
Prefix that will be added when requesting firmware file.
Firmware File Postfix
Postfix that will be added when requesting firmware file.
Config File Prefix
Prefix that will be added when requesting config file.
Config File Postfix
Postfix that will be added when requesting config file.
XML Config File Password
Specifies the password for the configuration file.
Enable this option to validate certificate with trusted ones during TLS connection.
Automatic Upgrade Interval(m)
Specifies the upgrade interval in minutes.
Enable DHCP Option 66 Override Server
Activates DHCP option 66 to override upgrade/config servers.
Enables Zero Config feature for auto provisioning.
Enables automatic upgrade and provisioning.
Set schedule for provisioning for either every X minutes, every day or every week. Default is No.
Enable and define the start/End hours of the day and days of the week where the GDS will randomly checking for update.
If this option is checked, the Device will not challenge NOTIFY with 401.
Default setting is Enabled.
This page allows user to reboot (scheduled or immediate) and reset the GDS3705.
When clicked, the GDS3705 will restart (soft reboot).
With this feature, users can configure convenient selected schedule for the device to reboot by itself, per week or per day.
There are two options for the reset function.
Clear All Data
All data will be reset, GDS3705 will be set to factory default.
Retain Network Data Only
All data will be erased except for Network data like IP address…
Retain Only Card Information
All data will be erased except for cards information.
Retain Network Data and Card Information
All data will be erased except for Network Data and Card Information.
This page allows user to configure SYSLOG to collect information to help troubleshooting issues with GDS3705.
This page allows users to manage the GDS3705 configuration file by importing / exporting the configuration files.
Click on to save the GDS3705 configuration in a predefined directory.
This page allows users to enable real-time or periodic email notifications about the GDS system status: Registration, Running Status and Temperature. This will require Email Settings already configured.
Enable System Health Alert
When this option is checked, then the GDS will send alert emails regarding the events selected under Event Name section using the already configured [Email Settings].
There are two options:
This would be the Email Subject title. Maximum characters number is 256.
SIP Registration Status: When checked, Email will contain Offline/Online indication for all 4 accounts.
System Running Status: When checked, Email will contain the system uptime.
System Temperature: When checked, Email will contain Temperature value of the system in °C and °F, as well as whether the temperature is normal on not.
This page allows users to configure the event notification details that will be used by GDS3705 to communicate to an HTTP server and Log Events. When the feature Enable and Configured, all the event logs will be uploaded to server: RFID open door, PIN open door, SIP Call, Alarm, etc…
For instance, the GDS3705, after an RFID Card swiping, will send to the configured HTTP server the following HTTP POST containing “Use card open door” event:
POST / HTTP/1.1
Authorization: Basic Og==
Date: 2017-11-09; Time: 14:07:27; Event describe: Use card open door. Card ID: 378690700.
Or, the GDS3705, after making a Call, when doorbell pressed, will send to the configured HTTP server the following HTTP POST containing “Phone call” event:
Date: 2017-11-09; Time: 14:13:12; Event describe: Phone call.
These HTTP POST messages can be used by a 3rd party software to integrate the GDS3705.
Users could check all device logs directly from the GDS web UI under the menu “Maintenance 🡪 Event log”.
To get logs for a specific date interface, select the Start Time and End Time, then select which Event type you want to check using the drop-down list, and click on to display the records.
The following Event Types are included for filtering:
OpenDoor (via card, Pin or DI, Card+PIN, remote PIN.).
- Open Door via Card
- Visiting Log
- Open Door via PIN
- Open Door via DI
- Open door by SI
- Call Log
- Open Door via Card and PIN
- Open Door via Remote PIN
- DI Alarm
- Door & Lock Abnormal Alarm
- Dismantle by Force
- System Up
- Config Update
- Firmware Update
- Non-scheduled Access
- Hostage Alarm
- Invalid Password
- Temperature Alarm
- Unauthorized door opening attempt
For more information about event logs, please visit this guide.
In order to upload your Trusted CA certificate:
Click on button to upload a file and some related information to the uploaded file will be displayed, such as “Issued by” and “Expiration date”.
User could press to delete one of the files.
In order to upload your Custom certificate:
Click on button to upload a file and some related information to the uploaded file will be displayed, such as “Issued by” and “Expiration date”.
User could press to delete one of the files.
This page displays GDS3705 accounts, system and network information.
This page displays of configured accounts’ SIP user ID, SIP server as well as the SIP Registration status, from Account 1 to Account 4.
- When the SIP account is registered, the SIP Registration status display will be Online
- When SIP account is unregistered, the SIP Registration status display will be Offline
This page displays information such as the product model, the hardware version, firmware…
Displays the Product Model.
Displays the Hardware Version.
Displays the Part Number.
Displays the Boot Version.
Displays the Core Version.
Displays the Base Version.
Displays the Prog Version.
Displays the time since the first boot of the GDS3705.
Click the button to check whether the firmware in the firmware server has an updated version, if so, update immediately.
Shows the current system temperature ( in °C and °F)
Shows if the Tamper Sensor is triggered or not.
Shows if the door control is triggered or not (in case door is opened for example it will show triggered
Door 1 Ctrl
Shows if Door 2 is opened.
Door 2 Ctrl
Shows if Door 2 is opened.
Input Digit 1
Shows if Alarm-IN 1 is triggered.
Input Digit 2
Shows if Alarm-IN 2 is triggered.
Shows if digital output is triggered.
This page displays the network system information of GDS3705.
Displays the GDS3705 MAC Address.
IP Address Mode
Displays the IP address mode used.
Displays the IP address of the GDS3705.
Displays the Subnet Mask used.
Displays the GDS3705 Gateway.
DNS Server 1
Displays the Preferred DNS Server.
DNS Server 2
Displays the secondary DNS Server.
To perform factory reset to the GDS3705 via the Web GUI, please refer to following steps:
- Access to GDS3705 Web GUI using the using the shipped default password.
- Navigate to Maintenance 🡪Reboot & Reset.
- Select the reset type from Rest drop down menu and press reset button as displayed on the following screenshot.
Some users did not keep the revised password safely and forgot the changed password. Due to GDS3705 did NOT have built-in reset button (Grandstream purposely designed this way to enhance security), this will make the GDS3705 inaccessible even for the true owner who lost the changed password.
Below is a photo of the normal connection of the provided Wiegand cable.
To perform hard factory reset to the GDS3705, please refer to following steps:
- Power OFF the GDS3705.
- Take the provided Wiegand cable, connect (or shorting) the related color wires as illustrated on the following picture. Please make sure the connection is correct and solid:
- Connect WHITE and BROWN cable together.
- Connect GREEN and ORANGE cable together.
3. Power ON the GDS3705. In about 10 seconds, the key pad LED lighting will change from solid lighting to blinking, the blinking time window is about 30 seconds. The user needs to enter the following key combination *0# while the LED is blinking.
- If the correct key combination inputted, the last key input will play with a long tone, illustrating the correct key combination entered, then the GDS3705 will get into factory reset mode.
- During the blinking time window, if the user does not finish the key combination operation, or pressed the wrong key combination, the GDS3705 will play short beep quickly three times illustrating error. Nothing will happen and the GDS3705 will get into normal booting process. User who wants to do hard factory reset has to perform the operation from the beginning again.
4. After 3 ~ 5 minutes the GDS3705 will finish performing the reset process, then the user can log into the GDS3705 web GUI using the shipped default password.
5. User must power OFF the GDS3705, unplug the Wiegand cable, power ON the GDS3705 again and make sure the GDS3705 is running correctly.
1. Access your GDS3705 UI by entering its IP address in your favorite browser.
2. Go to Phone Settings # page.
3. Enable “Allow Reset Via SIP NOTIFY” by checking this option. (Default is disabled)
4. Once a SIP NOTIFY with “event: reset” is received, the GDS3705 will perform factory reset after authentication phase.
The authentication can be done either using admin password (if no SIP account is configured) or via SIP account credentials (SIP User ID and Password).
This feature allows customers to reset the device administrator password to factory default via keypad operation through some special key combination. When performing this operation, ONLY password will be reset back to factory default. All other setting or parameters will NOT be changed and will remain the same. This feature is specially designed for field engineers or technicians when dispatched in field but for some reason the administrator password is not available therefore not able to access the GDS37xx device to do the related maintenance.
Here are the steps to do such password reset operation via keypad:
Alphabet A – Z mapping to digit 1 – 26 respectively, no difference in lower or up case.
- When device is idle, input the special keypad combination with format: ***last_6_MAC**#
- Device will reach restore mode after correct digits in Step 1) entered. The backlight of keypad will flash quickly to tell operator the device is now in password reset/restore mode.
- Operator will enter the correct decoded default password ending with # with format: default_password_code# via the keypad within 60 seconds.
- If wrong code combination entered, the GDS3705 will beep with error sound (three short beeps) then exit the password reset mode, and the backlight will stop flashing.
- If the correct default password decoded entered within 60 seconds, GDS3705 will play a long beep sound (advising correct operation), the device will reboot itself automatically.
- If keypad entry time out (not finish the input within 60 seconds), the device will exit this password reset mode automatically and stop the backlight flashing.
- After successful password reset, operator will then be able to log into the GDS3705 webUI with default password, all the configuration inside the device will be the same and will NOT be changed.
Decoding the string into digits and write to paper before doing the operation:
Device with last 6 MAC address: 33DDDD
Decoding the last 6 MAC to digits would be: 334444
Default password is: xwpxz6AA
Decoding the default password to digits would be: 2423162426611
- Enter ***334444**# via keypad, get into the password reset mode, the keypad backlight will flash quickly.
- Within 60 seconds, enter 2423162426611#, the device will play one long beep then reboot itself.
- Wait the device finishing boot up, log in the webUI using the default password, xwpxz6AA
This section documents significant changes from previous versions of user manual for GDS3705. Only major new features or major document updates are listed here. Minor updates for corrections or editing are not documented here.
Firmware Version 126.96.36.199
- Added TR069/GDMS support. [TR-069]
Firmware Version 188.8.131.52
- Cisco WebEx IOT: Added Web UI Option “SIP URI Scheme When Using TLS” and “Support SIP Instance ID” [Table 15: SIP Account Basic & Advanced Settings]
- Added support for configurable keypad blue light On/Off. [Table 5: Door System Settings]
- Added unauthorized card swiped on wired external 3rd party Wiegand reader will also have alert message in event Log [Event Log]
- Increased Whitelist Number to maximum 200 in each Account [Table 17: White List]
- Added prompt “Alarm Schedule Name” and “Alarm Action Profile Name” cannot be blank. [Alarm Config]
- 3CX IOT: Support “Add MAC in User-Agent” and Added “Codec Negotiation Priority” configuration [Table 15: SIP Account Basic & Advanced Settings]
- Added error prompt if illegal port value is set to web access [Table 12: Access Settings]
Firmware Version 184.108.40.206
- Added open door without SIP call when paired with GSC3570. [Door opening without SIP Call]
- Added scheduled Auto Reboot. [Auto Reboot]
- Enhanced open door via 3rd party Webrelay ON/OFF URL. [Table 5: Door System Settings]
- Added Alarm Action triggering when illegal card swiped. [Alarm Action When Illegal Card Swiped]
- Added enable/disable password display on Web UI when using HTTPs. [Table 12: Access Settings]
- Added secure open door with GDS3705/GSC3570 setup. [Secure Open Door via GDS3705/GSC3570 Peering]
- Added the time zone GMT-03:30 for Newfoundland. [Time Zone]
- Added OpenVPN® support. [OpenVPN® Settings]
- Added WebRelay Open Door Feature. [Door System Settings]
- Increased Unlock Holding Time to 30 minutes. [Table 5: Door System Settings]
- Changed SIP Account Name to Display Name. [Table 15: SIP Account Basic & Advanced Settings]
- Added reboot/resync via SIP Notify. [Disable SIP NOTIFY Authentication]
- Added support for failover mechanism based on DNS SRV. [Table 15: SIP Account Basic & Advanced Settings]
- Added siren alarming function when door opened abnormally (special wiring required). [Siren alarming when door opened abnormally]
- Added including Holidays at Keep Door Open schedule. [Holiday Mode]
- Added reset/restore factory default password via special keypad combination operations. [Reset Factory Password]
- Added support for re-registration before expiration. [Table 15: SIP Account Basic & Advanced Settings]
- Enhanced security and prevent ghost calls. [Table 15: SIP Account Basic & Advanced Settings]
- Added support for DHCP Option 42. [Allow DHCP Option 42 to override NTP server]
- Added support for Voice Frame Per TX at audio settings. [Table 15: SIP Account Basic & Advanced Settings]
- Added support of separated webUI credentials for GDSManager. [GDSManager Configuration Password]
- Added support for G.729 audio codec. [Table 15: SIP Account Basic & Advanced Settings]
- Added ability to enable multiple audio codecs simultaneously and specify priority of codecs. [Table 15: SIP Account Basic & Advanced Settings]
- Added support for randomize firmware upgrade and provisioning. [Upgrade]
- Added support for second door control via Alarm Output 1. [Using Alarm Out (COM 1) to Control a Second Door]
- Added support for “Normal Open” or “Normal Close” setting when Alarm Out1 is set to Open Door. [ALMOUT1 Status]
- Added option to specify digital input to be normal Open or normal Close. [Digit Input 1 Status]
- Added support for using Digit Only as Private PIN. [Local PIN Type]
- Added support for System Health Alerts via Email. [System Health Alert]
- Added option to upload custom doorbell ringtone. [Enable Custom Doorbell Ringtone]
- Added option to disable WEB/SSH access. [Access Settings]
- Added option for calling out automatically without pressing #. [No Key Input Timeout(s)]
- Added option to disable SIP dialing from GDS keypad. [Disable Keypad SIP Number Dialing]
- Added option to set Schedule for “Local PIN to Open Door”. [Local PIN to Open Door Schedule]
- Added option to customize DTMF Payload. [DTMF Payload Type]
- Added RTCP/RTCP-XR for SIP Call. [Technical Specifications] [Enable RTCP]
- Added Boot version information into System status. [System Info]
- Enhanced security by only allowing numbers existing under “White List” to open the door remotely when call is initiated from GDS3705. [Remote PIN to Open the Door]
- Added option to synchronize Keep Door Open from GDSManager version 220.127.116.11 or later. [Central Mode]
- Added event log showing the users (Username) opening door via private PIN [Event Log]
- Added SIP NOTIFY to factory reset [Allow Reset Via SIP NOTIFY] [Restore to Factory Default Via SIP NOTIFY]
- Added option to disable outbound proxy route header [Outbound Proxy Mode]
- Added option to verify received SIP Message [Validate Incoming Messages]
- Added support for special character “@” in the SIP User ID. [SIP User ID]
- Added SIP password hided and not visible in the Web UI. [Password]
- Extended VLAN range from 0-4094. [Layer 2 QoS 802.1Q/VLAN Tag]
- Added ability to configure device with custom certificate signed by custom CA certificate [Certificates]
- Added option to display device temperature in Fahrenheit. [System Temperature]
- Added option to assign a schedule to the doorbell. [Press Doorbell Schedule]
- Added option to set the maximum number of digits dialed. [Maximum Number of Dialed Digits]
- Added support for Parallel Hunting when doorbell pressed. [Door Bell Call Mode]
- Added firmware check status button. [Firmware Status]
- Added Account section. [Account]
- Enhanced Event Notification Template Variables. [Event Notification]
- Added Random Port option. [Use Random Port]
- Added NAT Traversal option. [NAT Traversal]
- Added Doorbell Call Out Account. [Doorbell Call Out Account]
- Add ability to set schedule for Alarm IN door opening. [Input Digit]
- Added Account Status section. [Account Status]
- Added “Enabled but Not Forced; Enabled and Forced” under SRTP Configuration. [Enable SRTP]
- Added alarm notification of non-scheduled access users. [Non-Scheduled Access Alarm]
- Added support for HTTP command to Open Door [Enable HTTP API Remote Open Door]
- Added Keep Door Open section. [Keep Door Open]
- Added “Test” Button for Alarm Action. [Alarm Config]
- Added displaying logs at device Web UI. [Event Log]
- Added ability to upload Trusted CA certificate files. [Trusted CA certificate ]
- Added option to enable/disable certificate validation. [Validate Server Certificate]
- Added Ability to configure Start/End Valid date for users. [Card Management]
- Changed password recovery email option to user settings page. [User Management]
- Added UI showing Temperature/TamperSensor/DoorControl/DI/DO in the System Info Page [System Info]
- Added Support for system events notification via HTTP. [Event Notification]
- Added Factory Functions for Audio Loopback and Certificate Verification. [Factory Functions]
- This is the initial version for GDS3705.