Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
The msgraph Terraform provider allows you to define the tenant infrastructure you want to deploy, such as groups or applications, in a Terraform configuration, then manage the development lifecycle of it as infrastructure. Terraform is a domain-specific language (DSL) that uses declarative syntax to deploy resources, typically for your infrastructure as code solutions.
Suppose you want to call custom APIs from Azure Logic Apps where the web app is secured using Microsoft Entra ID. To create the two application identities for the logic app and the web app, you can define the Microsoft Graph application and service principal resources in Terraform, instead of creating them manually beforehand. In the same file, you can define the logic app and web app resources. Then, you can repeatedly deploy the file throughout the development lifecycle and have confidence that all your Azure and Microsoft Graph resources are deployed consistently.
Important
The msgraph provider for Terraform is currently in PREVIEW.
See the Supplemental Terms of Use for Microsoft Azure Previews for legal terms that apply to Azure features that are in beta, preview, or otherwise not yet released into general availability.
Microsoft Graph Terraform provider
Historically, Terraform users could utilize the azuread provider to manage users, groups, service principals, and applications. The new msgraph provider also supports these features and extends functionality to all Microsoft Graph endpoints. These include new Entra APIs like privileged identity management as well as M365 Graph APIs like SharePoint sites.
- Azure customers can use familiar tools to deploy Azure resources together with the Microsoft Graph resources they depend on, such as applications and service principals, using infrastructure as code (IaC) and DevOps practices.
- It also opens the door for existing Microsoft Graph customers to use Terraform and IaC practices to deploy and manage their tenant's resources.
Benefits of the msgraph Terraform provider
Day 0 support for beta and v1.0 API versions: The
msgraphprovider allows you to reference both beta and v1.0 versions of supported Microsoft Graph resource types within the same Terraform file. Since support for resource types is automatic, you can access the latest features and functionality as soon as they're released via the provider.Authoring experience: You get a first-class authoring experience via the Microsoft Terraform VSCode Extension when you use it to create your Terraform
msgraphconfiguration. The editor provides rich type-safety, intellisense, and syntax validation.
Common and consistent development: Terraform is multi-cloud and multi-provider. Using Terraform means you can define MSGraph resources to authenticate with Azure and create resources via the
azapiorazurermproviders.Full Terraform state file fidelity: All set properties and values can be saved to state to ensure your team can effectively track drift of resources across their lifecycle.
License requirements
Deploying Microsoft Graph resources using Terraform requires any licenses necessary to work with the Microsoft Graph resources you're deploying. A valid Azure subscription is required, if also deploying any Azure resources.
Get started
Try out your first quickstart
Deploy your first Terraform configuration containing Microsoft Graph resources in minutes
Learn more
Learn more about Terraform
- Understand Terraform, its uses, and structure and syntax of Terraform files.
- Explore Learn modules for Terraform on Azure.
Learn more about Microsoft Graph
- Learn about Microsoft Graph.
- Understand authentication and authorization principles in Microsoft Graph.
- Try the Microsoft Graph tutorials.