# TrueConfig > Desired State Configuration for Microsoft 365 identity and access TrueConfig is a SaaS platform that helps IT administrators and security teams maintain their desired security configuration for Microsoft 365 (M365) environments. It continuously monitors Microsoft Entra ID tenants, detects configuration drift from defined baselines, and can automatically remediate deviations. ## Core Concepts - **Baselines**: Predefined security configurations representing your "desired state" - **Controls**: Individual security checks (e.g., "Limit Global Admins to 4 or fewer") - **Deviations**: When actual tenant configuration differs from baseline - **Auto-remediation**: Automated fixing of deviations with safety checks ## Content Overview - 3 Security Baselines (from Minimum to Advanced) - 55 Security Controls across 9 categories - 6 Blog posts about M365 security and configuration management ## Key Pages ### Product - Homepage: https://www.trueconfig.io/ - Pricing: https://www.trueconfig.io/pricing - Security Baselines: https://www.trueconfig.io/baselines - Security Controls: https://www.trueconfig.io/controls ### Documentation - Getting Started: https://www.trueconfig.io/docs/getting-started/quick-start - Baselines Overview: https://www.trueconfig.io/docs/core-concepts/baselines - Controls Reference: https://www.trueconfig.io/docs/controls/reference - Auto-Remediation: https://www.trueconfig.io/docs/features/auto-remediation ### Resources - Blog: https://www.trueconfig.io/blog - Video Tutorials: https://www.trueconfig.io/docs/videos ### Company - About: https://www.trueconfig.io/about - Privacy Policy: https://www.trueconfig.io/privacy - Terms of Service: https://www.trueconfig.io/terms ## Control Categories - Identity & Authentication: User authentication and identity protection controls - Privileged Access: Administrative role and privilege management - Conditional Access: Access policies and conditional requirements - Workload Identity & Applications: Application registrations and service principals - Guest & External Access: Guest users and external collaboration - Governance & Hygiene: Account lifecycle and hygiene practices - Logging & Visibility: Audit logs and monitoring capabilities - Data Protection: Data loss prevention and information protection - License Management: License utilization and cost optimization ## Baseline Levels - TrueConfig Recommended Secure Baseline: Protects against common attacks without disrupting daily work. Blocks credential theft, legacy vulnerabilities, and unauthorized access. - Enhanced Security Baseline: Adds time-limited admin access and advanced threat detection. Admins activate permissions only when needed, reducing your attack window. - Maximum Security Baseline: Hardware-backed authentication, real-time threat containment, and continuous monitoring. Designed for zero-tolerance security requirements. ## Technical Details - Target Audience: IT administrators, security teams, MSPs - Primary Platform: Microsoft 365 / Microsoft Entra ID - Key Integrations: Microsoft Graph API, Conditional Access, PIM ## API & Authentication TrueConfig integrates with Microsoft 365 via OAuth 2.0 and Microsoft Graph API. Users authenticate with their Microsoft work accounts. ## Sitemap Full sitemap available at: https://www.trueconfig.io/sitemap.xml ## Contact - Support: support@trueconfig.io - Security: security@trueconfig.io - Website: https://www.trueconfig.io --- Last updated: 2026-01-16