receiving, by the access control system, a public cryptographic key of a cryptographic key pair from a cryptography circuit manufacturer device associated with manufacture of a cryptography circuit of the access control device, wherein the cryptographic key pair includes the public and a corresponding private cryptographic key, and wherein at least the private cryptographic key is stored in the cryptography circuit of the access control device;

with the access control system and without powering up the access control device, creating a device twin for the access control device within the access control system, generating commissioning data for in-field commissioning of the access control device in response to receiving the public cryptographic key, and encrypting the commissioning data, wherein the commissioning data for the access control device is associated with a unique identifier located on the access control device;

receiving, by the access control system, a request from a mobile device for the commissioning data in response to the mobile device scanning the unique identifier on the access control device; and

transmitting, by the access control system, the commissioning data to the mobile device for transmittal to the access control device.