TerraProvider automates policy configurations across your Microsoft 365 tenants so you can keep them consistent and auditable. M365 settings are managed as Terraform configuration file in a version control system and applied to each tenant via Microsoft's Graph API. This approach helps you ensure maximum control over your tenant configuration.

If you have multiple tenants in your environment, you can easily keep all tenants in sync, simplify compliance audits, and help ensure that all tenants are using best practices. The ability to quickly set up a new tenant based on existing policies also helps with disaster recovery - a component often overlooked by backup software.

Illustration of Microsoft 365 configurations as code on a computer monitor
Manually configuring M365 configurations is very time-consuming and error-prone. TerraProvider enables you to define all configurations as code that is version controlled so that you can fork, audit, and roll-back any changes to Microsoft 365 configurations with ease, helping operationalize and scale your configuration management.
Illustration of downloading Microsoft 365 updates from the cloud to a computer
TerraProvider instruments Microsoft’s Graph API as a provider for Terraform and OpenTofu. Rather than coding the provider manually, the code is auto-generated based on Microsoft’s specifications. That means your provider will always be ready to manage latest updates in M365 configuration policies.
Security lock with circular arrows representing change management for conditional access policies
Conditional access rules secure the front door for your enterprise and are critical for creating a zero-trust environment. Manually configuration poses risks for compliance and security alike. TerraProvider aligns conditional access rules with internal policies and provides a clean approval process and audit trail through the version history of the configuration code.
Illustration of uniform configuration across environments
Configuring policies manually across environments is time-consuming and error-prone. Test results become unreliable, causing you to chase unexpected bugs. Differences in user roles and permissions between environments can expose sensitive data or functionality inadvertently. TerraProvider keeps all environments in identical states and simplifies change management.
Illustration of multi-tenant management and configuration consistency
Multi-tenant management and consistency is challenging when you are doing all configurations manually. With TerraProvider, you have peace of mind that you’re following your best practice everywhere. And when you need to make a change, it’s easy to roll out updates across all tenants – no matter whether you’re managing tenants by region and organization.
Illustration of disaster recovery with tenant configuration backups
Backup solutions focus on files and databases but miss tenant configurations. TerraProvider helps you recover from a disaster with all of your configurations intact. It’s the final piece of the puzzle for your disaster recovery plan.
Illustration of cloning tenant configurations into code
Copying all of your configurations into code by hand is tedious. TerraProvider helps you clone your golden-image tenant to code, so you can audit, update and deploy it across all of your tenants. Your versioned configuration cleanly documents your best practices.

Terraform + GitHub = Configuration as Code for Microsoft 365

Diagram illustrating the architecture of TerraProvider
Microsoft Security Copilot
Microsoft Security Copilot
If you’re managing multiple Microsoft 365 tenants, you’ll love RealmJoin, the cloud-born companion to Microsoft Intune. It's the missing piece to achieve an enterprise-ready client management platform. RealmJoin makes it easier to deploy nearly 2,000 pre-packaged standard applications for Intune with higher quality - a modern package factory for custom applications and additional features such as LAPS, remote support, and Runbook automation.
Photo of the product team
We'd love to hear from you!
sales@TerraProvider.com