I am more than happy to release my new tool the GPT Intune Device Trouleshooter. Wouldn’t it be awesome if you have an assistant which you explain what you want to do in Intune an he do the job for you? This dream will now become reality with the GPT Intune Device Troubleshooter.
Content
- Content
- What is the GPT Intune Device Troubleshooter
- What are the prerequisites
- How does it work
- Get access to Open AI Service
- How it the data privacy when I use the Azure Open AI service
- How to deploy the GPT Intune Device Troubleshooter
- What is the current feature sets and what are example calls
- How to create the app registration
- Post setup steps
- How to open the Webpage
- How does the Tool work
- How you can contribute?
- How does the roadmap look like?
What is the GPT Intune Device Troubleshooter
The GPT Intune Device Troubleshooter is a powerfull tool which helps Intune admins to make here day easier. It answers your free text questions based on your enviroment utilizing graph api. You can ask questions like “Can you check the status of the device XXXX” or “Can you give me a device list with all android devices in csv” and you will get the customised answer to your question.
What are the prerequisites
- GPT enabled Subscription
- App registration with deligated permissions for (DeviceManagementConfiguration.Read.All, DeviceManagementManagedDevices.Read.All, DeviceManagementApps.Read.All, User.Read)
How does it work
- You can deploy the infrastructure with one click from GitHub to azure
- The code will be pulled to the app service
- The user open the streamlit web page
- The user authenticate via a app registration with delegated permissions for graph
- This token will be used to get data from graph and put them into an prompt
- This prompt with question and enriched informations will be send to the open ai service
- The answer will be presented on the streamlit web page
Get access to Open AI Service
Fill out the following request form to enable you subscription to deploy open ai services.
How it the data privacy when I use the Azure Open AI service
You can finde more information about privacy in this MS doc.
How to deploy the GPT Intune Device Troubleshooter
You dont have to do so much. The whole magic is behind this button.
But you can also deploy the infratructure and the code manual via my github repository.
- Select the subscription and the resource group
- Select the region and the Website sku
- Enter an name for the site and the open ai service account
What is the current feature sets and what are example calls
Currently the following features are supported:
- Get Device List
- Get Device Status
- Get Single Device
- Intune How To
- Config Profiles
- App List
- Compliance Policies
- Device Group Membership
- Graph Call
Examples are:
- Can you give me a device list with all android devices in csv
- Can you check the status of the device XXXXX
- Can you check the status of the device XXXX and list the object which has conflict or have errors
- Can you give me a list of all applications
- Can you show me a list in csv of all apps which are created later than 01.01.2022
- In which groups is XXXX? Can you give me the display name and the ids
How to create the app registration
- Open the Entra portal
- Select App registration
- Click + New registration
- Enter an name for the App registration
- Select Single-Page application (SPA) as redirect type
- Add
https://WEBPAGENAME.azurewebsites.net/login/callbackas Redirect URI
- Copy the App ID
- Go to API permissions and click + Add a permission
- Select Graph
- Select Delegated permissions
- Add the following permissions (DeviceManagementConfiguration.Read.All, DeviceManagementManagedDevices.Read.All, DeviceManagementApps.Read.All, Group.Read.All, User.Read, Device.Read.All)
- Click Grant admin consent for XXX
Post setup steps
Add the App ID and the secret from the OpenAi Service to the Variables in the App Service Configuration
- Open the Open Ai Service
- Go to Keys and Endpoint
- Open the App Service
- Navigate to Configurations
- Fill in the Azure open AI key and the App Id into the variables
How to open the Webpage
- Go to the App Service and Select Browse
How does the Tool work
- Click on login to get an Token to authenticate on graph
- Insert your question in the chat box
How you can contribute?
If you have a ideas for improvements or for missing features as well as bugs, contact me via my blog, social media or open an issue on the repository with an description of your idea. You can also create merge request. I am happy for every contribution and feedback.
How does the roadmap look like?
Please provide me feedback. Based on your feedback I will include and prioritise the features I will add.
jannikreinhard.com 
Hi Jannik, with version 1.27.0 of Streamlit (released towards the end of September) your script no longer seems to work. Here the error:
TypeError: expected string or bytes-like object
Tracebacks:
File “/tmp/8dbd0b0d9280f02/antenv/lib/python3.10/site-packages/streamlit/runtime/scriptrunner/script_runner.py”, line 541, in run
scripts
exec(code, module.dict)File “/tmp/8dbd0b0d9280f02/website/app.py”, line 161, in
response = util.get_category(category_list, prompt)File “/tmp/8dbd0b0d9280f02/website/modules/utility.py”, line 169, in get_category
category_match = re.search(r’Category:\s(.?)\s*(?=Devicename|$)’, response, re.I | re.S)File “/opt/python/3.10.12 /lib/python3.10/re.py”, line 200, in search
return _compile(pattern, flags).search(string)
LikeLike
@mrv, I was able to log in successfully after deleting the Azure RG and redeploying the whole template to a different subscription. I don’t know what exactly the problem was but it is fixed now.
LikeLike
Hi There I just got the okay to have this deployed to Azure and I’m a newbie to this, but when I set the deploy with thefollowing as I’m in Canada east side I get the errors below.
Basics
Subscription
Microsoft Azure Sponsorship
Resource group
IntuneAI
Region
Canada East
Sites_name
IntuneCLC
Accounts_name
IntuneOpenCLC
Website_sku
F1
The specified SKU ‘Standard’ for model ‘gpt-35-turbo 0301’ is not supported in this region ‘canadaeast’. (Code: InvalidResourceProperties)
Validation failed for a resource. Check ‘Error.Details[0]’ for more information. (Code: ValidationForResourceFailed)
This subscription has reached the limit of 1 Free Linux app service plan(s) it can create in this region. Please choose a different sku or region. (Code: FreeLinuxAtRegionalCapacityForSubscription)
Can you tell me what I’m doing wrong? I’ve tried different locations and SKU but still fails
LikeLike
The problem is that the region you selected dont support the gpt service. Can you switch to an other one. Here you can find the supported locations:
https://learn.microsoft.com/en-us/azure/ai-services/openai/concepts/models
LikeLike
I have followed this Blog and Deans Video too – all configs are up and running, i can logon OK but when asking to show me a list of windows devices in my tenant I get NONE. Same for ios devices etc… infact every response i get is NONE.
LikeLike
Hi Jannik, any more news on the issue of NONE responses?
LikeLike
Hey sorry for this late response. I got this error reported from many testers. Currently I have limited time to investigate into this issue and I cant reproduce this. Will try to work on this in the coming days.
LikeLike