Intune Graph API – Complete Management
A comprehensive skill enabling OpenClaw agents to fully manage Microsoft Intune via the Graph API. Covers devices, apps, policies, compliance, users, groups, reporting, Autopilot, scripts, and remote actions.
Why use this skill?
Automate your Microsoft Intune workflows with OpenClaw. Easily manage devices, compliance, policies, and remote actions through simple natural language commands.
Install via CLI (Recommended)
clawhub install openclaw/skills/skills/mattiacirillo/openclaw-intune-skillWhat This Skill Does
The Intune Graph API Complete Management skill provides OpenClaw agents with the capability to interface directly with Microsoft Intune. By utilizing the Microsoft Graph API, the agent serves as an automated administrator for your organization's device fleet. It handles the full lifecycle of managed endpoints, including device discovery, detailed compliance reporting, application deployment, and remote administrative actions like syncing, retiring, or wiping devices. This skill bridges the gap between raw API calls and human-readable interaction, ensuring that IT operations are streamlined while maintaining strict safety standards.
Installation
To integrate this skill into your OpenClaw environment, ensure you have your Entra ID App Registration configured with the required API permissions such as DeviceManagementManagedDevices.ReadWrite.All and DeviceManagementApps.ReadWrite.All. Once configured, execute the following command in your terminal:
clawhub install openclaw/skills/skills/mattiacirillo/openclaw-intune-skill
Ensure that the environment variables INTUNE_TENANT_ID, INTUNE_CLIENT_ID, and INTUNE_CLIENT_SECRET are correctly exported in your agent's configuration profile to enable seamless OAuth 2.0 authentication.
Use Cases
This skill is perfect for IT Support and SysAdmin workflows. Use it to quickly identify non-compliant devices, push updated configuration profiles, or automate the onboarding process for new employees. It is also an essential tool for security teams during incident response—enabling rapid remote wipe actions for stolen or compromised hardware. Furthermore, it simplifies reporting by aggregating disparate data points into organized Markdown tables.
Example Prompts
- "Zeige mir alle Geräte, die aktuell nicht compliant sind, in einer Tabelle an."
- "Führe einen Sync für das Gerät 'LAPTOP-HR-04' durch und berichte mir, ob es erfolgreich war."
- "Kannst du das Gerät 'DEV-TEST-01' remote wipen? Es ist verloren gegangen."
Tips & Limitations
Always remember that destructive operations like wipes require explicit user confirmation to prevent accidental data loss. While the agent handles the heavy lifting of API communication, ensure your Entra ID permissions are scoped appropriately to follow the principle of least privilege. When troubleshooting, rely on the agent's natural language error analysis rather than raw JSON outputs to save time and reduce cognitive load.
Metadata
Not sure this is the right skill?
Describe what you want to build — we'll match you to the best skill from 16,000+ options.
Find the right skillPaste this into your clawhub.json to enable this plugin.
{
"plugins": {
"official-mattiacirillo-openclaw-intune-skill": {
"enabled": true,
"auto_update": true
}
}
}Tags(AI)
Flags: external-api