# Authentication and Access Control

## Sign in to Telmai

### General Login Steps

1. Go to the Login Page: Navigate to the Telmai login page.
2. Enter Credentials: Use your registered email address and password.
3. Click "Sign In": Click the sign-in button to access your Telmai account.

### Single Sign-On (SSO) Login Steps

Many organizations use SSO for a more secure and streamlined login experience. If your company uses an identity provider (IdP) like Okta, you'll use this method to log in.

1. Go to the Login Page: Navigate to the Telmai login page.
2. Enter Credentials: Use your registered email address.
3. If SSO is configured for your account, you will be navigated to the IDP option. If multiple SSOs are configured, you will need to select the desired one.
4. You will be redirected to your organization's identity provider login page.
5. Enter your Company Credentials: Use your standard company username and password to authenticate.
6. Redirect to Telmai: After successful authentication with your IdP, you'll be redirected back to the Telmai Account.

Please click [here](/telmai/authentication-and-access-control/sso-configuration.md) to learn more about setting up your SSO configuration.

### Sign in Issues

Potential issues you may face when signing in:

* Account locked out
* User not added to SSO group
* User not added to Telmai account

## Managing Users <a href="#managing-users" id="managing-users"></a>

Telmai allows you to create, edit, and delete users via the Manage users UI menu:

<figure><img src="/files/gjoycxPtj0iO1dUAHPKW" alt=""><figcaption></figcaption></figure>

<figure><img src="/files/03z63MpvDXAeXfbKH2Rj" alt="" width="563"><figcaption></figcaption></figure>

### Role-based Access <a href="#role-based-access" id="role-based-access"></a>

Telmai supports project-scoped permissions. Tenant admins are able to modify these permissions accordingly:

| Role         | Add/Modify Users | Add, Edit or Delete Source | Scan Source / Schedule Scans | View scan results |
| ------------ | ---------------- | -------------------------- | ---------------------------- | ----------------- |
| Tenant Admin | x                | x                          | x                            | x                 |
| Editor       |                  | x                          | x                            | x                 |
| Operator     |                  |                            | x                            | x                 |
| Viewer       |                  |                            |                              | x                 |

To modify user roles,

1. Click “**Manage Tenant Users**” under the user menu
2. Click on the user you would like to modify permissions for
3. “**Project Permissions**” table with different roles
4. Select appropriate roles
5. Click Save


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.telm.ai/telmai/authentication-and-access-control.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.