Skip to main content

Nexus Access Vault

Enterprise-grade access management platform with SSO authentication, device enrollment, application provisioning, and zero-trust network access control.

Get StartedExplore Features

Secure Access Control

Quick Start

Get up and running with Nexus Access Vault in just a few steps

1

Install and Configure

Deploy Nexus Access Vault using Docker or install it directly on your infrastructure. Configure your environment variables and connect to your Supabase database.
Installation
git clone https://github.com/infra-neo/nexus-access-vault.git
cd nexus-access-vault
cp .env.example .env
npm install
2

Set Up SSO Authentication

Configure Zitadel OIDC authentication for secure single sign-on. Create your OIDC application in Zitadel and configure the redirect URIs.
Environment Configuration
VITE_ZITADEL_ISSUER_URL="https://your-zitadel-instance.com"
VITE_ZITADEL_CLIENT_ID="your-client-id"
VITE_ZITADEL_REDIRECT_URI="https://your-domain.com/auth/callback"
See the Zitadel Setup guide for detailed configuration instructions.
3

Configure Your First Organization

Create your organization structure and configure user groups with role-based access control. Map Zitadel groups to local permissions.Run the application and access the admin panel to:
  • Create your organization
  • Configure group mappings
  • Assign roles and permissions
4

Enroll Your First Device

Enroll devices to your network using the built-in enrollment wizard. Devices can connect via Netbird or Tailscale for secure zero-trust access.
Device Enrollment
# Navigate to /enroll in your browser
# Follow the step-by-step wizard to:
# 1. Select your device type
# 2. Generate an enrollment token
# 3. Install the VPN client
# 4. Connect to your network

Key Features

Everything you need for enterprise access management

SSO Authentication

OIDC-based single sign-on with Zitadel integration. PKCE-secured authentication flow with automatic group synchronization.

Device Management

Comprehensive device enrollment and management with support for multiple platforms and VPN providers.

Application Provisioning

Deploy and manage applications with role-based access control. Built-in marketplace for quick provisioning.

Zero-Trust Network

Secure network access via Netbird and Tailscale integration. Network isolation with VPN-only access.

Multi-Tenant Organizations

Hierarchical organization structure with parent-child relationships and granular access control.

Audit Logging

Comprehensive audit trails for all authentication events, access requests, and administrative actions.

Explore by Topic

Dive deeper into specific areas of the platform

Authentication & SSO

Configure Zitadel OIDC, group mapping, and role-based access control for secure authentication.

Learn more

Network & Infrastructure

Set up zero-trust network access with Netbird, Tailscale, and Headscale integration.

Learn more

Administration

Manage users, organizations, roles, permissions, and security policies from the admin panel.

Learn more

API Reference

Explore edge functions, database schemas, and API endpoints for integration and automation.

View API docs

Ready to Get Started?

Deploy Nexus Access Vault in your infrastructure and start managing access with enterprise-grade security.

Get StartedView on GitHub

Build docs developers (and LLMs) love

Get started for freeTalk to us