Tealium
Tealium is a customer data platform (CDP) that collects, unifies, and activates first-party customer data across web, mobile, and offline channels in real time. The Tealium API lets you send behavioral events to Tealium Collect, read and manage AudienceStream visitor profiles, fulfill GDPR/CCPA data subject requests, and manage iQ Tag Management configuration, Hosted Data Layer files, and Omnichannel file processing status.
Power end-to-end data operations for your Tealium API with Nexla. Our bi-directional Tealium connector is purpose-built for Tealium, making it simple to ingest data, sync it across systems, and deliver it anywhere — all with no coding required. Nexla turns API-sourced data into ready-to-use, reusable data products and makes it easy to send data to Tealium or any other destination. With comprehensive monitoring, lineage tracking, and access controls, Nexla keeps your Tealium workflows fast, secure, and fully governed.
Features
Type: API
- Seamless API Integration: Connect to any endpoint as source or destination without coding, with automatic data product creation
- Visual Composition & Chaining: Build complex integrations using visual templates, chain API calls, and compose workflows with data validation and filtering
- API Proxy: Expose curated slices of your data securely with a secure and customizable API proxy that validates and transforms data on the fly
- Request optimization with intelligent batching, retry, and caching to minimize API calls and costs
Prerequisites
Tealium's HTTP APIs authenticate with a Username (your Tealium account email) and an API Key, which are exchanged for a short-lived JWT bearer token. Nexla handles this token exchange automatically once you provide the underlying credential fields. Tealium separates its APIs into two generations that use different token endpoints and are represented in Nexla as two separate credential types:
- V3 API — used by the HTTP Event (Collect), Visitor Profile, Visitor Privacy, and iQ Profiles endpoints.
- V2 API — used by the iQ Revisions, Hosted Data Layer, and Omnichannel File Status endpoints.
You will also need your Tealium Account and Profile names. In Tealium, an account is the top-level container for your organization, and a profile is a subdivision of that account that typically corresponds to a website, app, or group of properties with shared tagging requirements — both names appear in your Tealium installation (tag) code and in the Tealium UI.
To obtain your Tealium API key:
-
Sign in to Tealium iQ Tag Management with an account that has user admin (or Manage Users) permission, or ask your Tealium administrator to authorize your account to generate its own API key. Authorization sends the target user an email notification once granted.
-
From the admin menu, click Manage Users, select the user who needs the key, and click Edit/View User Settings.
-
In the left-hand panel of the user settings dialog, click API Key, then click Generate Key.
-
Tealium displays the generated key once in a pop-up. Copy it immediately and store it securely — the raw key value cannot be retrieved again after you close the dialog. If it is lost, you must generate a new one.
The API key is tied to the individual Tealium user account used to generate it and inherits that user's permissions. For details on authorization and key generation, see the Tealium API Keys documentation, and for the underlying token exchange used by Nexla, see the Tealium V3 Authentication and Tealium V2 Authentication documentation.
Authenticate
Credentials required
- V3 API (Event Collection & Visitor APIs)
- V2 API (iQ Revisions, Hosted Data Layer, Omnichannel)
Token-based authentication for Tealium V3 APIs (HTTP Event, Visitor Profile, Visitor Privacy). Exchanges username + API key for a 30-minute JWT bearer token.
| Field | Required | Secret | Description |
|---|---|---|---|
| Username | Yes | No | Your Tealium account email address used to log in. |
| API Key | Yes | Yes | Your Tealium API key from iQ Tag Management > Admin > API Keys. |
| Account | Yes | No | Your Tealium account name (e.g., mycompany). |
| Profile | Yes | No | Your Tealium profile name (e.g., main). |
Token-based authentication for Tealium V2 APIs (iQ Revisions, Hosted Data Layer, Omnichannel File Status). Exchanges username + API key for a 30-minute JWT bearer token.
| Field | Required | Secret | Description |
|---|---|---|---|
| Username | Yes | No | Your Tealium account email address used to log in. |
| API Key | Yes | Yes | Your Tealium API key from iQ Tag Management > Admin > API Keys. |
| Account | Yes | No | Your Tealium account name for V2 API calls (iQ Revisions, HDL, Omnichannel). |
| Profile | Yes | No | Your Tealium profile name for V2 API calls (iQ Revisions, HDL, Omnichannel). |
Create a credential in Nexla
-
After selecting the data source/destination type, click the Add Credential tile to open the Add New Credential overlay.
-
Enter a name for the credential in the Credential Name field and a short, meaningful description in the Credential Description field.
-
Select the credential type that matches the endpoints you plan to use:
- V3 API (Event Collection & Visitor APIs) — use this for the Send Event, Send Bulk Events, Send Integration Event, Visitor Profile, Visitor Privacy, and iQ Profile endpoints.
- V2 API (iQ Revisions, Hosted Data Layer, Omnichannel) — use this for the iQ Revisions, Hosted Data Layer, and Omnichannel File Status endpoints.
For either type, enter your Username (the email address you use to sign in to Tealium) and your API Key (generated in Prerequisites), then enter your Account and Profile names, which identify the specific Tealium implementation Nexla should connect to.
The API key is a sensitive credential and is stored securely by Nexla. If a key is compromised, revoke authorization and generate a new one from your Tealium user settings. Bearer tokens obtained from your key are short-lived (30 minutes); Nexla automatically refreshes the token as needed.
For more information about Tealium authentication and account/profile structure, see the Tealium V3 Authentication documentation and About profiles.
-
Click the Save button at the bottom of the overlay. The newly added credential will now appear in a tile on the Authenticate screen during data source/destination creation.
Use as a data source
To create a new data flow, navigate to the Integrate section, and click the New Data Flow button. Select the Tealium connector tile, then select the credential that will be used to connect to Tealium, and click Next; or, create a new Tealium credential for use in this flow.
Endpoint templates
Nexla provides pre-built templates that can be used to rapidly configure data sources to ingest data from common Tealium endpoints. Select the endpoint from which this source will fetch data from the Endpoint pulldown menu. Available endpoint templates are listed in the expandable boxes below.
Once the selected endpoint template has been configured, click the Test button to the right of the endpoint selection menu to retrieve a sample of the data that will be fetched. Sample data will be displayed in the Endpoint Test Result panel on the right, allowing you to verify that the source is configured correctly before saving.
Manual configuration
Tealium data sources can also be manually configured to ingest data from any valid Tealium API endpoint, including endpoints not covered by the pre-built templates, chained API calls, or custom request parameters. Select the Advanced tab at the top of the configuration screen, and follow the instructions in Connect to Any API to configure the API method, endpoint URL, date/time and lookup macros, path to data, metadata, and request headers.
Once all of the relevant settings have been configured, click the Create button in the upper right corner of the screen to save and create the new Tealium data source. Nexla will now begin ingesting data from the configured endpoint and will organize any data that it finds into one or more Nexsets.
Use as a destination
Click the + icon on the Nexset that will be sent to the Tealium destination, and select the Send to Destination option from the menu. Select the Tealium connector from the list of available destination connectors, then select the credential that will be used to connect to Tealium, and click Next; or, create a new Tealium credential for use in this flow.
Endpoint templates
Nexla provides pre-built templates that can be used to rapidly configure destinations to send data to common Tealium endpoints. Select the endpoint to which data will be sent from the Endpoint pulldown menu. Then, click on the template in the list below to expand it, and follow the instructions to configure additional endpoint settings.
Manual configuration
Tealium destinations can also be manually configured to send data to any valid Tealium API endpoint. Select the Advanced tab at the top of the configuration screen, and follow the instructions in Connect to Any API to configure the API method, data format, endpoint URL, request headers, attribute exclusions, record batching, and response webhooks.
Tealium APIs expect JSON request bodies for most POST/PATCH operations, with the exception of Delete Visitor (GDPR), which uses application/x-www-form-urlencoded, and Send Event (GET / Pixel), which sends parameters as a query string.
Save & activate
Once all endpoint settings have been configured, click the Done button in the upper right corner of the screen to save and create the destination. To send the data to the configured Tealium endpoint, open the destination resource menu, and select Activate.
The Nexset data will not be sent to the Tealium endpoint until the destination is activated. Destinations can be activated immediately or at a later time, providing full control over data movement.