Access

The Access configuration page is your organization's security command center. From here, you can dictate exactly who is allowed to create an account, restrict logins to your corporate VPN, and review a forensic log of all administrative actions.

Plan or Add-on Required The features on this page require either the Ultra plan or the Security+ add-on. If your workspace does not meet either requirement, you will see a locked preview state. Contact our sales team to upgrade your workspace.

To manage these settings, navigate to Configuration > Access in the Admin Portal sidebar.

1. Registration Controls

The Registration tab allows you to control how new users join your TechClass workspace.

Invite-Only Mode

By default, or when you toggle Public Registration off, your workspace operates in a strict invite-only mode. New users cannot sign up on their own; they must be explicitly invited by an Administrator or Group Lead. The public registration page will automatically display a message directing users to contact their manager.

Registration Tab - Invite Only

Public Registration & Domain Restrictions

If you toggle Public Registration on, users can self-register. However, you can secure this process by utilizing Allowed Email Domains.

Registration Tab - Public

If you leave the "Allowed Email Domains" list empty, anyone with a valid email address can join. To lock this down to your employees only, type your company's email domain (e.g., acmecorp.com) into the "Add Domain" field and click + Add.

Once domains are listed, the platform will automatically reject any registration attempt from an unauthorized email provider (like @gmail.com or a competitor's domain).

Registration Tab - Allowed Domains

2. Network Security (IP Allowlisting)

The Network tab allows you to restrict platform access at the network level. When IP Allowlisting is enabled, users can only log into TechClass if they are connected to an approved IP address (such as your corporate office network or employee VPN).

Network Tab - Disabled

Safe Setup Flow (Preventing Lockouts)

To prevent you from accidentally locking yourself out of the admin portal, the system requires you to add your own IP address before you can flip the master switch.

At the top of the page, the system will auto-detect your current network. Click + Add My IP.
This will safely store your current connection in the Allowed IP Addresses list.
Once your IP is safely listed, you can confidently toggle IP Allowlisting to the On position.

Network Tab - Adding IP Network Tab - Enabled

Managing IP Entries

You can add additional networks by clicking + Add Entry. The system accepts both single IP addresses (e.g., 85.156.86.177) and CIDR ranges to cover entire office subnets.

Network Tab - Edit Entry

If you need to remove an old VPN or office location, click the red Trash Can icon. Be careful: removing an active IP will instantly block any users currently connected from that location.

Network Tab - Delete Entry

3. Audit Logs

The Audit Log tab provides a read-only, forensic ledger of critical actions taken by administrators and the system. It does not track standard learner activity (like watching a video), but rather high-level structural changes.

Audit Log Tab

Navigating the Log

Retention: Logs are retained for the last 30 days.
Search & Filter: Use the search bar to find specific users or events, and the "All actions" dropdown to filter by category (e.g., only show "Course Deleted" events).
Metadata: If an action has additional technical context (such as the exact IP address a user tried to spoof, or the specific settings changed during a course update), a {} icon will appear in the far right column. Clicking this icon opens a dialog with the raw JSON metadata for deep troubleshooting.

On this page