Synchronization

Automatic user and group sync settings, sync schedule, detailed log

Under Settings → Users & Groups → Synchronization, the User-Group Synchronization allows seamless integration with Azure Active Directory (Azure AD), enabling automated user and group provisioning. This reduces manual effort, ensures data consistency, and centralizes access management—especially for organizations using SAML-based authentication.

This tab allows admins to configure:

  • One-time or scheduled sync

  • User-group mapping

  • Filter criteria for groups

  • Synchronization logs

Synchronization

IdP Connection Panel

An IdP (Identity Provider) connection is required to authenticate and manage users and groups securely from a centralized source like Azure AD. It allows Tellius to sync users and groups automatically from your organization’s identity system.

This ensures single sign-on (SSO) access and role-based provisioning. Makes Azure AD (or your IdP) the source of truth—removing the need for manual user/group management in Tellius.

IdP connection panel
  • Identity Provide (IdP): Provide the IdP in the dropdown. For now, only Azure AD is supported.

  • Tenant ID: Unique identifier for your Azure tenant.

  • Client ID: Application ID registered in Azure.

  • Client Secret: Secure key generated from Azure to authorize API access.

  • Click on Connect to establish connection between Tellius and Azure AD.

  • Click on Disconnect to break the connection and re-enables manual group management.

  • Click on Cancel to dismiss without saving changes.

Once connected, all user and group sync logic is managed via Azure AD. Manual group edits in Tellius are disabled to preserve IdP as the source of truth.

Users Synchronization

If enabled, Tellius will automatically sync users based on Azure AD membership. I

Define the Azure AD group name. It will synchronize only the users in the specified group(s). This ensures that only members of those Azure AD groups are managed and updated within Tellius.

New users are auto-provisioned upon their first login with assigned access and roles.

Groups Synchronization

The Groups Synchronization panel allows admins to manage group-level synchronization from an external IdP.

If the Groups Synchronization section is enabled, then you can apply filters for the groups. This ensures that only Azure AD groups matching the specified filter are imported into Tellius, helping to control and limit which groups are brought into the platform.

Provide the filter operator and value:

Filter operator

Scheduled Synchronization

The Scheduled Synchronization panel allows admins to automate the syncing of users and groups between Tellius and an external IdP. This ensures that user data and group memberships remain up to date.

  • Enable the toggle to activate synchronization.

  • Set up the start date and start time when the first scheduled sync should begin.

  • Define how often the sync should repeat and the interval unit (day, hour , minute, week, year).

A dynamic confirmation message at the bottom summarizes your setup:

"User and user group synchronization will start at <scheduled_date> at <scheduled_time> and will repeat every <frequency> <frequency_unit>."

Click on Save button to commit the changes made and start the synchronization of users and groups.

Synchronization Log

The Synchronization Log provides a historical view of all user and group synchronization attempts between Tellius and your connected IdP, such as Azure AD. Helpful for admins to track, audit, and troubleshoot synchronization issues in real time.

Sync log

Date: The calendar date when the sync was executed

Time: The exact time the sync started

Duration: How long the sync process took

Status: Indicates whether the sync succeeded or failed.

Info: A detailed log message explaining the sync operation and any errors encountered, including system-generated error codes and descriptions

Last updated

Was this helpful?