Velaxe
AccessGuard — IAM with JWT, MFA, RBAC & SSO (SAML/OIDC) | Velaxe

AccessGuard

Enable self-service account recovery

Configure recovery emails/SMS and secure reset workflows.

10 min Beginner Support Lead, Security Engineer Updated Sep 19, 2025
View App All Guides

Overview

Configure recovery emails/SMS and secure reset workflows.

Prerequisites

None.

Permissions required

iam:configure

Steps (3)

Estimated: 10 min
  1. 1

    Configure templates

    Support 3 min Back to top

    Settings → Templates → Recovery. Customize email/SMS copy and links.

    Tips

    Validation

    Success criteria

  2. 2

    Set token policy

    Security 3 min Back to top

    Set reset token TTL (e.g., 15 minutes) and single-use enforcement.

    Tips

    Validation

    Success criteria

  3. 3

    Test end-to-end

    Support 4 min Back to top

    Trigger recovery for a test user; verify rate-limits and success path.

    Tips

    Validation

    Success criteria

    • Recovery completes only with correct token + MFA if required.

About this guide

AccessGuard secures apps and external sites with hosted authentication and short-lived JWTs. Enable MFA, define RBAC permissions, and connect enterprise identity via SAML or OIDC. A lightweight HMAC bridge lets you embed login, registration, and token refresh flows on any domain without CORS pain.

Admins manage users, sessions, connections, and policies from one console. Profiles consolidate verified emails/phones, consents, KYC docs, and risk flags. Events and metrics provide visibility for security and ops.

Designed for velocity and safety: opinionated defaults, least-privilege keys, Prometheus counters, and exportable audit logs.