Azure AD

Setting up Azure AD authentication for Tellius

Follow the steps below to configure Azure Active Directory (Azure AD) as an authentication provider for your Tellius instance.

1. Start by signing in to using your administrator credentials.

2. In the search bar at the top, type "Azure Active Directory" and select it from the search results.

3. Make sure you are in the correct active Azure AD tenant where you want to configure Tellius authentication. You can check and switch tenants using the tenant selector in the upper-right corner.

1. In the left-hand menu, click on Enterprise → + New application.

1. Click on the Non-gallery application tile.

1. Provide a suitable name and click on Add.

1. A notification will be displayed once the application is created successfully. You can track progress in the Notifications panel at the top of the screen.

1. After the application is created, go to its Overview page. From the left-hand menu, select Properties.

2. Set User assignment required to No to allow all users in the directory to access Tellius. If you prefer to grant access only to specific users or groups, leave this setting as Yes.

1. Navigate back to the Azure Active Directory Overview page. In the left menu, select App registrations.

1. Go to the All Applications tab and search for the application you just created (in this case, it's "TelliusAD"). Click on it to open its configuration page.

1. From the application overview page, copy the following for later use in Tellius. These values are required to complete the configuration in Tellius.

• Application (Client) ID

• Directory (Tenant) ID

1. On the app’s overview page, click on Add a Redirect URI.

2. Select + Add a platform, then choose Web.

1. Enter the following URL in the redirect field. Replace <your-tellius-hostname> with your actual Tellius domain (e.g., tellius.company.com).

https://<your-tellius-hostname>/azure_callback

1. Click Configure to save the changes.

Once this setup is complete in Azure, proceed to Tellius to enter the copied Client ID, Tenant ID, and Redirect URI.

Finalizing Azure AD Authentication Setup in Tellius

Under Settings → Security → Authentication → Azure AD, provide the following details.

• Azure Client ID: Paste the Application (Client) ID you copied from Azure.

• Azure Tenant: Paste the Directory (Tenant) ID from Azure.

• Azure Redirect URL: Enter your Tellius login URL.

• Default User Role: Sets initial permissions for users authenticating via Azure AD.

• Click on Save button to apply the Azure AD authentication settings.

Once saved, Tellius will use Azure AD for login authentication. You and other users in the configured Azure AD environment can now sign in securely using your organization’s credentials.