DemoInteractive walkthrough
See a governed call end to end.
Pick a scenario, press run, and watch the request flow through Azure AD, Keycloak, the SymmetriQ policy engine, the HSM, and the on-chain verifier. No wallets, no test crypto — a faithful simulation of the production flow.
Scenario
User: alice.chen@acme.com · role: treasury-ops
Flow
01 · Azure AD
Sign-in + MFA
OIDC token issued for user with MFA claim.
02 · Keycloak
Resolve roles
Roles: treasury-ops
03 · DID Registry
Resolve DID
DID active · key handle bound
04 · Policy Engine
Evaluate policy
All predicates pass
05 · HSM
Hardware signature
PKCS#11 · secp256k1
06 · On-chain
Verifier + execute
Solidity verifier accepts DID signature
Request inspector
What SymmetriQ sees
{
"iss": "login.microsoftonline.com/acme",
"sub": "alice.chen@acme.com",
"roles": ["treasury-ops"],
"did": "did:symmetriq:acme:alice.chen",
"key": "hsm://eu-west/keyhandle/0x7f2a…",
"action":"vault.transfer(USDC, 0xA1…f3, 100000)",
"chain": "ethereum:mainnet",
"ts": "2026-06-04T16:07:59.495Z"
}Audit log · tamper-evident
Live events
Press run to begin. Events appear here in real time.