Tellius
Tellius 5.5
Tellius 5.5
  • 🚩Getting Started
    • 👋Say Hello to Tellius
      • Glossary
      • Tellius 101
      • Navigating around Tellius
    • ⚡Quick Start Guides
      • Search
      • Vizpads (Explore)
      • Insights (Discover)
    • ✅Best Practices
      • Search
      • Vizpads (Explore)
      • Insights (Discover)
      • Predict
      • Data
    • ⬇️Initial Setup
      • Tellius architecture
      • System requirements
      • Installation steps for Tellius
      • Customizing Tellius
    • Universal Search
    • 🏠Tellius Home Page
    • ❓FAQs
      • Kaiya Conversational AI
      • Data Preparation FAQs
      • Environment FAQs
      • Search FAQs
      • Vizpads FAQs
      • Data Caching FAQs
      • Embedding FAQs
      • Insights FAQs
  • Kaiya
    • ♟️Understanding AI Agents & Agentic Flows
      • Glossary
      • Composer
      • 🗝️Triggering an agentic workflow
      • The art of possible
    • 🤹Kaiya conversational AI
      • Triggering Insights with "Why" questions
      • Mastering Kaiya conversational AI
      • 📒Kaiya Learnings
      • Kaiya Terms of Service
      • Best practices
  • 🔍Search
    • 👋Get familiar with our Search interface
    • 🤔Understanding Tellius Search
    • 📍Search Guide
    • 🚀Executing a search query
      • Selecting a Business View
      • Typing a search query
      • Constructing effective search queries
      • Marketshare queries
    • 🔑Analyzing search results
      • Understanding search results
      • Search Inspector
      • Time taken to execute a query
      • Interacting with the resulting chart
    • 📊Know your charts in Tellius
      • Understanding Tellius charts
      • Variations of a chart type
      • Building charts from Configuration pane
      • List of chart-specific fields
      • Adding columns to fields in Configuration pane
      • Absolute and percentage change aggregations
      • Requirements of charts
      • Switching to another chart
      • Formatting charts
      • Advanced Analytics
      • Cumulative line chart
    • 🧑‍🏫Help Tellius learn
    • 🕵️‍♂️Search history
    • 🎙️Voice-driven search
    • 🔴Live Query mode
  • 📈Vizpads (Explore)
    • 🙋Meet Vizpads!
    • 👋Get familiar with our Vizpads
    • #️⃣Measures, dimensions, date columns
    • ✨Creating Vizpads
    • 🌐Applying global filters
      • Filters in multi-BV Vizpads
      • Filters using common columns
    • 📌Applying local filters
    • 📅Date picker in filters
      • Customizing the calendar view
    • ✅Control filters
      • Multi-select list
      • Single-select list
      • Range slider
      • Dropdown list
    • 👁️Actions in View mode
      • Interacting with the charts
      • Exporting tables
    • 📝Actions in Edit mode
      • 🗨️Viz-level actions
      • Copy to Clipboard
    • 🔧Anomaly management for line charts
      • Instance level
      • Vizpad level
      • Chart level
    • ⏳Time taken to load a chart
      • Instance level
      • Vizpad level
      • Chart level
    • ♟️Working with sample datasets
    • 🔁Swapping Business View of charts
      • Swapping only the current Vizpad
      • Swapping multiple objects
      • Configuring the time of swap
    • 🤖Explainable AI charts
  • 💡Insights (Discover)
    • 👋Get familiar with our Insights
    • ❓Understanding the types of Insights
    • 🕵️‍♂️Discovery Insights
      • Impact Calculation for Top Contributors
    • ➕How to create new Insights
      • 🔛Creating Discovery Insight
      • 🔑Creating Key Driver Insights
      • 〰️Creating Trend Insights
      • 👯Creating Comparison Insights
    • 🧮The art of selecting columns for Insights
      • ➡️How to include/exclude columns?
  • 🔢Data
    • 👋Get familiar with our Data module
    • 🥂Connect
    • 🪹Create new datasource
      • Connecting to Oracle database
      • Connecting to MySQL database
      • Connecting to MS SQL database
      • Connecting to Postgres SQL database
      • Connecting to Teradata
      • Connecting to Redshift
        • Access S3 Data with Redshift Spectrum
      • Connecting to Hive
      • Connecting to Azure Blob Storage
      • Connecting to Spark SQL
      • Connecting to generic JDBC
      • Connecting to Salesforce
      • Connecting to Google cloud SQL
        • Connecting to a PostgreSQL cloud SQL instance
        • Connecting to an MSSQL cloud SQL instance
        • Connecting to a MySQL Cloud SQL Instance
      • Connecting to Amazon S3
      • Connecting to Google BigQuery
        • Steps to connect to a Google BigQuery database
      • Connecting to Snowflake
        • OAuth support for Snowflake
        • Integrating Snowflake with Azure AD via OAuth
        • Integrating Snowflake with Okta via OAuth
        • Azure PrivateLink
        • AWS PrivateLink
        • Best practices
      • Connecting to Databricks
      • Connecting to Databricks Delta Lake
      • Connecting to an AlloyDB Cluster
      • Connecting to HDFS
      • Connecting to Looker SQL Interface
      • Loading Excel sheets
      • 🚧Understanding partitioning your data
    • ⏳Time-to-Live (TTL) and Caching
    • 🌷Refreshing a datasource
    • 🪺Managing your datasets
      • Swapping datasources
    • 🐣Preparing your datasets
      • 🤾Actions that can be done on a dataset
      • Data Pipeline
      • SQL code snippets
      • ✍️Writeback window
      • 🧩Editing Prepare → Data
      • Handling null or mismatched values
      • Metadata view
      • List of icons and their actions
        • Functions
        • SQL Transform
        • Python Transform
        • Standard Aggregation
        • Creating Hierarchies
      • Dataset Scripting
      • Fusioning your datasets
      • Scheduling refresh for datasets
    • 🐥Preparing your Business Views
      • 🌟Create a new Business View
      • Creating calculated columns
      • Creating dynamic parameters
      • Scheduling refresh for Business Views
      • Setting up custom calendars
      • Custom Calendars for Live Connections
    • Tellius Engine: Comparison of In-Memory vs. Live Mode
    • Refresh pipeline
  • Feed
    • 📩What is a Feed in Tellius?
    • ❗Alerts on the detection of anomalies
    • 📥Actions done on a tracking Feed
    • 🖲️Track a new metric
  • Assistant
    • 💁Introducing Tellius Assistant
    • 🎤Voice-based Assistant
    • 💬Interacting with Assistant
    • ↖️Selecting Business View
  • Embedding Tellius
    • What you should know before embedding
    • Embedding URL
      • 📊Embedding Vizpads
        • Apply and delete filters
        • Vizpad-related actionTypes
        • Edit, save, and share a Vizpad
        • Keep, remove, drill sections
        • Adding a Viz to a Vizpad
        • Row-level policy filters
      • 💡Embedding Insights
        • Creating and Viewing Insights
      • 🔎Embedding Search
        • Search query execution
      • Embedding Assistant
      • 🪄Embedding Kaiya
      • Embedding Feed
  • API
    • Insights APIs
    • Search APIs
    • Authentication API (Login API)
  • 🛠️Settings
    • 👨‍💻My Profile
    • Users & Groups
      • Users
      • Groups
      • Synchronization
      • Default user group
      • User roles and permissions
    • Security
      • Authentication
        • LDAP
        • Azure AD
        • SAML
          • XML file
          • Using Okta as an IdP (SAML Integration)
        • OIDC
      • Configuration
    • User License
    • Application Settings
      • Search, Discover, Predict
      • Time Configuration
      • Vizpads
      • Email
      • Anomalies
      • Query time
      • Styles
      • Assistant
      • Miscellaneous
      • Centralized Job Alerts
      • Setting up LLM for Kaiya
  • ✨What's New
    • Release 5.5
    • Release 5.4
      • Patches 5.4.0.1 to 5.4.0.4
      • Patch 5.4.0.5
      • Patch 5.4.1
      • Patches 5.4.1.1 and 5.4.1.2
    • Release 5.3
      • Patch 5.3.1
      • Patch 5.3.2
      • Patch 5.3.3
    • Release 5.2
      • Patch 5.2.1
      • Patch 5.2.2
    • Release 5.1
      • Patch 5.1.1
      • Patch 5.1.2
      • Patch 5.1.3
    • Release 5.0
      • Patch 5.0.1
      • Patch 5.0.2
      • Patch 5.0.3
      • Patch 5.0.4
      • Patch 5.0.5
    • Release 4.3 (Fall 2023)
      • Patch 4.3.1
      • Patch 4.3.2
      • Patch 4.3.3
      • Patch 4.3.4
    • Release 4.2
      • Patch 4.2.1
      • Patch 4.2.2
      • Patch 4.2.3
      • Patch 4.2.4
      • Patch 4.2.5
      • Patch 4.2.6
      • Patch 4.2.7
    • Release 4.1
      • Patch 4.1.1
      • Patch 4.1.2
      • Patch 4.1.3
      • Patch 4.1.4
      • Patch 4.1.5
    • Release 4.0
Powered by GitBook

© 2025 Tellius

On this page
  • User creation on the first login
  • Setting up LDAP on Tellius

Was this helpful?

  1. Settings
  2. Security
  3. Authentication

LDAP

PreviousAuthenticationNextAzure AD

Last updated 19 days ago

Was this helpful?

The following is the detailed technical guide to configuring LDAP (Lightweight Directory Access Protocol) for user authentication in Tellius. By integrating LDAP, you can centralize user management, securely authenticate users, control access, and manage roles within Tellius.

Tellius follows a specific workflow when interacting with the LDAP server to authenticate users and create their accounts.

User creation on the first login

Users are created within Tellius at the time of their first login. The LDAP system validates the user credentials, and Tellius automatically creates an internal user record using the LDAP attributes defined during the configuration.

There is no risk of creating duplicate users. Tellius uses the mapped username (usually cn or uid) to check for existing users in the system before creating a new account. If a user already exists in Tellius with the same username attribute (e.g., cn or mail), Tellius will not create a duplicate.

Setting up LDAP on Tellius

Click on the user icon in the bottom left corner and navigate to Settings → Security → Authentication and choose LDAP from the "Authenticate via" dropdown. The following screen will be displayed

Setting up LDAP

Under General Settings, fill the following fields:

  1. Enable LDAP Toggle the switch to enable LDAP for authentication. When enabled, the system will attempt to authenticate users against the configured LDAP directory before considering internal Tellius authentication methods.

  2. URL (LDAP server address) Enter the full URL for the LDAP server. The format should be ldap://<hostname>:<port>. Example:ldap://ldap.example.com:389

  3. Port Enter the port number on which the LDAP service is running. The default port is 389 for non-SSL and 636 for SSL (LDAPS).

  4. Bind User Specify the distinguished name (DN) of the user that will bind to the LDAP directory to perform queries. This account should have read access to the LDAP directory. Example: cn=admin,dc=example,dc=com

  5. Bind Password Enter the password for the Bind User to authenticate with the LDAP server.

  6. Search Base Define the distinguished name (DN) of the entry in the LDAP directory from which searches for user accounts will begin. This base DN acts as the root context for any search operations. Example: ou=users,dc=example,dc=comThis DN specifies the Organizational Unit (OU) or domain under which the user entries exist. The search will be limited to this subtree.

  7. Query Provide a specific LDAP query to filter the users that should be imported or authenticated. This is useful when you only want to target specific user objects. Example: (objectClass=inetOrgPerson) This filter limits the search to users who are organizational persons.

LDAP provides standard attributes for user identification, which can be mapped (optionally) to fields in Tellius. Proper attribute mapping ensures that user information is synchronized correctly between the LDAP directory and Tellius.

Under Mappings (Optional), provide the following fields:

  1. Username Mapping Enter the LDAP attribute that should be used as the Tellius username. This is typically cn (common name) or uid, depending on your directory schema.

  2. Email Mapping Enter the LDAP attribute that corresponds to the user's email address. This is typically mail.

  3. First Name Mapping Enter the LDAP attribute that contains the user's first name. In most directories, this is givenName.

  4. Last Name Mapping Enter the LDAP attribute for the user's last name. This is typically sn (surname).

  5. Use TLS Toggle this setting to enable TLS for secure LDAP communication. TLS ensures that all data exchanged between Tellius and the LDAP server is encrypted.

To configure LDAPS, upload the SSL certificate to the LDAP server and enable the Use TLS setting in Tellius. The server must support ldaps:// on port 636.

Default User Role Choose the default user role for LDAP-authenticated users. This role defines the permissions users will have in the system. Available roles are typically predefined within Tellius.

Click on Save to commit all the details provided. Or click on Delete to dismiss.

Mappings
🛠️