Drift Detection
Know exactly what changed in your Azure environment in real time.
Zero-noise drift detection for Azure infrastructure. Full diff details, identity tracking, and one-click remediation.
Overview
What drift detection looks like in Clophi
Infrastructure drift occurs when the live state of your Azure resources diverges from the desired state defined in your IaC. Clophi continuously monitors this divergence, displays only meaningful changes, identifies who triggered the change, and handles the revert process with a single click.
Supported IaC formats
Whether your infrastructure is defined in Bicep, Terafform or ARM, Clophi tracks it consistently.
Note on Bicep & ARM
Bicep and ARM have no native drift detection capability. Clophi is the only tool that provides true drift detection for Bicep & ARM managed infrastructure.
How it works at a glance
01
Inventory
Clophi fetches full inventory of your Azure tenant.
02
Monitor
Tracks your Azure tenant every 3 minutes and compare against the desired state.
03
Filter
Elimininates any possible drift noise such as Read-only properties and/or property order changes.
04
Resolve
Each change is presented to user for review with option to revert to baseline with a single click.
Monitor resource state.
Capabilities
What Clophi tracks, and what it ignores
Most drift detection tools report every diff between desired and actual state, including changes that are irrelevant. Clophi's drift engine is built to surface only the changes that matter to you.
Full Azure tenant inventory
Clophi fetches the complete inventory of your Azure tenant across all subscriptions and treats this as the live state for comparison.
Continuous Azure tracking
All activities in Azure are fetched every 3 minutes. Any change made through the portal, CLI, ARM/Bicep deployments, or third-party tools is compared against the desired state of the corresponding resource.
Read-only property filtering
Properties such as etag, provisioningState, and other system-managed fields are filtered out before comparison. These properties change frequently in Azure and produce false drift alerts in tools that report all diffs.
Smart object array comparison
Object arrays are compared by content, not by index. A subnet reordering inside a VNet, for example, is not reported as drift because no property actually changed. When an item in an array does change, Clophi pinpoints the specific object, not the entire array.
Identity and timestamp attribution
Every drift event includes the user or service principal that made the change and the exact timestamp.
One-click remediation
Each drift event includes a Revert to baseline action that restores the resource to its desired state. Clophi handles the deployment; no manual plan or apply is required.
In the dashboard
Drift events in clear, actionable context
All detected drifts are surfaced in a single dashboard view. Each entry includes the resource identifier, the changed properties, the responsible actor, the timestamp, and the available remediation action.
The drift dashboard — one event per row, with actor and timestamp inline.
Detailed configuration inspection
For each drift event, Clophi provides a detailed view of the baseline configuration and the current drifted configuration.
Property-level diff between baseline and drifted configurations.
Remediation
One click back to your desired state
When you identify a drift that needs to be reverted, no manual deployment is required. Clophi handles the entire revert operation through the Azure REST API, scoped to the affected resource only.
Revert to baseline —> scoped to the drifted resource, not the entire state.
Two ways to handle a drift
Option 1
Revert to baseline
Restore the resource to the desired state defined in your IaC. Clophi deploys the baseline configuration.
Option 2
Accept the drift
Adopt the current state as the new baseline. The desired state is updated and the drift event is cleared from the dashboard.
Why this matters
Unlike Terraform, where reverting requires a full plan and apply across the entire state file affecting every resource in scope, Clophi reverts only the drifted resource. Nothing else in your environment is touched.
Why switch
The Clophi advantage: better than state files
Many teams rely on Terraform state files to manage drift, but Clophi solves the critical headaches that state-based management creates.
| Feature | Terraform statefiles | Clophi drift detection |
|---|---|---|
| Reliability | Unreliable Known for false positives and erroneous drift reporting — a major headache for infrastructure teams. | Highly reliable Shows only genuine changes to your Azure resources. No false alarms. |
| Frequency | Manual Only detects drift when a manual terraform apply is executed. | Continuous Tracks your environment 24/7, reporting drifts within ~3 minutes. |
| Accountability | No tracking Cannot identify who made the unauthorized change. | Full audit Pinpoints the specific user or service principal responsible for every drift. |
| Precision revert | Full statefile Requires a full plan/apply across the entire state file, affecting all resources. | Resource-specific Revert a single drifted resource without touching anything else in your environment. |
| Automation | Manual Requires manual intervention to trigger a fix every time. | Fully automatable Fixes can be triggered automatically upon detection, zero human intervention. |
See it in your own environment
See Clophi drift detection running against your Azure tenant.
Book a 30-minute demo and we will walk you through drift detection on your own resources or on a test environment if you prefer. No setup required from your side.
Explore other capabilities
E-mail
info@clophi.com
info@clophi.com
Enterprise Grade Azure Management
@2026 Clophi all right reserved.
Information
Company
Features
Enterprise Grade Azure Management
Information
Pricing
Docs
Privacy Statement
Terms Of Service
Company
About Us
Contact our team for your need
Request a demo
Professional Services
Features
Drift Detection
Enterprise Policy
Infrastructure Repository Generator
Policy Repository Generator
Infrastructure As Code
Server Configuration
Devops Tooling
Azure Integration
Built-In Solutions & Training
@2026 Clophi all right reserved.