Skip to content

deploymenttheory/terraform-demo-microsoft365

BranchesTags

Repository files navigation

terraform-demo-microsoft365

This repository provides a demonstration of using Terraform to manage Microsoft 365 resources using the terraform-provider-microsoft365 provider.

This repo is designed for workplace engineers familiar with click ops with a learning pathway to start using declarative management with terraform for their operational workflows. This repo demonstrates how to use IaC principles to lifecycle manage as code microsoft tools and services as code.

This lab has the following dependancies

  • a Microsoft 365 tenant
  • terraform cloud
  • github with github actions
  • access to create various enterprise app types with Entra ID to test different authentication methods

Getting Started

Before you begin working with this Terraform demo for Microsoft 365, you'll need to set up the required dependencies on your local system.

Prerequisites

  1. Python 3
    • Python is required to run the prerequisite installation scripts
    • Download Python
    • Verify installation with: python --version or python3 --version

Installing Dependencies

Navigate to the prerequisites directory:

cd ./GitHub/deploymenttheory/terraform-demo-microsoft365/scripts/pre_reqs

For Windows Users

If you're using Windows, run the winget-based installation script:

# Run with Administrator privileges
python install_dependencies_with_winget.py

This script will:

  • Check if winget is installed
  • Install or update the following tools:
    • Python (latest version)
    • Go (latest version)
    • Terraform (latest version)
    • Terraform-docs (latest version)
    • Azure CLI (latest version)
    • Git (latest version)
    • PowerShell (latest version)

For macOS Users

If you're using macOS, you'll need to run two scripts:

  1. First, ensure Homebrew is installed:
python install_brew.py
  1. Then, install the required dependencies:
python install_dependencies_with_brew.py

These scripts will:

  • Check if Homebrew is installed and install it if needed
  • Install or update the following tools:
    • Python (latest version)
    • Go (latest version)
    • Terraform (latest version)
    • Terraform-docs (latest version)
    • Azure CLI (latest version)
    • Git (latest version)
    • PowerShell (latest version)

Verifying Installation

After running the appropriate script for your platform, you should see a summary of the installed versions. Verify that all required tools have been successfully installed.

Using Terraform Cloud as a Backend

To use Terraform Cloud as a backend for your local development environment, follow these steps:

  1. Sign up for Terraform Cloud at app.terraform.io if you haven't already.

  2. Create an organization and workspace in Terraform Cloud:

    a. Sign up and create an organization:

    • Go to app.terraform.io and sign up for an account if you haven't already
    • After signing up, create a new tf cloud organization (e.g., "deploymenttheory") or use an existing one

    b. Create and configure workspaces:

    • In your organization, navigate to "Workspaces" and click "New Workspace"
    • Choose "CLI-driven workflow" for local Terraform execution
    • Name your workspace (e.g., "terraform-demo-microsoft365-sandbox")
    • Under the workspace settings, add tags that match your configuration (e.g., "microsoft_365")
    • Configure any additional settings like environment variables or version control settings

    c. Ensure your Terraform configuration matches your organization and workspace:

    terraform {
  required_providers {
    microsoft365 = {
      source  = "deploymenttheory/microsoft365"
      version = "0.12.0-alpha"
    }
  }

  cloud {
    organization = "deploymenttheory"  # Replace with your organization name

    workspaces {
      # Using tags to allow multiple workspaces to use this configuration
      tags = ["microsoft_365"]
    }
  }
}

    d. Set execution mode to local (if needed):

    • In your workspace settings, go to "General"
    • Set the "Execution Mode" to "Local" if you want all Terraform operations to run on your local machine
    • This allows you to run commands locally while still using Terraform Cloud for state management

  3. Generate an API token:

    • Go to Account Settings > Tokens
    • Create an API token and call it something contextual e.g 'terraform-cli'
    • Copy the token value and store it for later (you won't be able to see it again)

  4. Configure local Terraform authentication:

    You can authenticate to Terraform Cloud using environment variables instead of the .terraformrc file. This is what we shall use for auth to our lab environment.

    Option A: Using a specific environment variable for app.terraform.io:

    # For Terraform Cloud (app.terraform.io)
export TF_TOKEN_app_terraform_io=YOUR_TERRAFORM_CLOUD_TOKEN

    Option B: Setting the token as an environment variable in your current shell:

    # For bash/zsh
export TF_TOKEN_app_terraform_io=YOUR_TERRAFORM_CLOUD_TOKEN

# For Windows PowerShell
$env:TF_TOKEN_app_terraform_io="YOUR_TERRAFORM_CLOUD_TOKEN"

# For Windows Command Prompt
set TF_TOKEN_app_terraform_io=YOUR_TERRAFORM_CLOUD_TOKEN

    Option C: Creating the credential file programmatically:

    # Create the credentials file with the token
mkdir -p ~/.terraform.d
echo '{"credentials":{"app.terraform.io":{"token":"YOUR_TERRAFORM_CLOUD_TOKEN"}}}' > ~/.terraform.d/credentials.tfrc.json

    Replace YOUR_TERRAFORM_CLOUD_TOKEN with your actual Terraform Cloud API token in all examples.

  5. Configure your project to use Terraform Cloud:

    • Add a cloud block in your main Terraform configuration file (e.g., main.tf).
    • You must choose only one of these two approaches:

    Option A: Using a named workspace (for single workspace configurations):

    terraform {
  required_providers {
    microsoft365 = {
      source  = "deploymenttheory/microsoft365"
      version = "~> 0.12.0-alpha"
    }
  }

  cloud {
    organization = "deploymenttheory"

    workspaces {
      name = "terraform-demo-microsoft365-sandbox"
    }
  }
}

    Option B: Using workspace tags (for multiple workspace configurations):

    terraform {
  required_providers {
    microsoft365 = {
      source  = "deploymenttheory/microsoft365"
      version = "~> 0.12.0-alpha"
    }
  }

  cloud {
    organization = "deploymenttheory"

    workspaces {
      tags = ["microsoft365"]
    }
  }
}
    • Option A lets you specify a single workspace by name
    • Option B lets you select workspaces by tags (useful for managing multiple environments)

  6. Initialize your Terraform project:

    terraform init

  7. Run Terraform commands as usual:

    terraform plan
terraform apply

The cloud block is the recommended approach for new configurations with Terraform v1.1.0 and later, replacing the older backend "remote" configuration. With this setup, your state will be stored in Terraform Cloud while you can still run Terraform commands locally.

Before you begin working with this Terraform demo for Microsoft 365, you'll need to set up the required dependencies on your system.

About

A gha demo using gitlab branching and terraform to automate configuration for microsoft365

Topics

demo terraform microsoft365

Resources

Readme

License

MIT license

Code of conduct

Code of conduct

Security policy

Security policy
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages