How does an AI agent update a ticket in HaloITSM?

In HaloITSM, agents do not directly edit the ticket object to add notes. Instead, the AI agent must use the create_a_halo_itsm_action tool to append a new action, passing the specific ticket_id as a parameter.

Does Truto handle HaloITSM API rate limits automatically?

No. Truto passes HTTP 429 Too Many Requests errors directly back to the caller. Truto normalizes the rate limit headers into standard IETF formats (ratelimit-reset), but your agent's execution loop is responsible for implementing the backoff and retry logic.

Can I use these tools with frameworks other than LangChain?

Yes. Truto's /tools endpoint returns standard JSON schemas that describe the API. You can bind these tools natively to LangChain, Vercel AI SDK, CrewAI, or write your own custom execution loops.

Connect HaloITSM to AI Agents: Sync support, clients, and inventory

You want to connect HaloITSM to an AI agent so your system can autonomously read support tickets, triage incidents, provision hardware assets, and update client records. Here is exactly how to do it using Truto's /tools endpoint and SDK, bypassing the need to build and host a custom API connector from scratch.

If your team uses ChatGPT directly, check out our guide on connecting HaloITSM to ChatGPT. For developers building internal operations on Anthropic's models, read our guide on connecting HaloITSM to Claude. But if you are an engineer building custom, autonomous AI workflows in code, you need a programmatic way to fetch these tools and bind them to an agent framework.

Giving a Large Language Model (LLM) read and write access to your IT Service Management (ITSM) platform is an engineering headache. You either spend weeks building a custom integration that breaks every time the vendor updates an endpoint, or you use a managed infrastructure layer that handles the boilerplate for you.

This guide breaks down exactly how to fetch AI-ready tools for HaloITSM, bind them natively to an LLM using frameworks like LangChain, Vercel AI SDK, or LangGraph, and execute complex ITSM workflows autonomously. For a deeper look at the theoretical foundation of this approach, refer to our guide on architecting AI agents and the SaaS integration bottleneck.

The Engineering Reality of HaloITSM's API

Building AI agents is easy in a prototype. You write a single Node.js function that makes a fetch request, wrap it in an @tool decorator, and pass it to an LLM. In production environments where agents run continuously against enterprise APIs, this approach collapses entirely.

If you build a custom integration for HaloITSM, you own the entire API lifecycle. You must handle OAuth token refreshes. You must write, test, and maintain massive JSON schemas for every endpoint you want the LLM to understand. And you must deal with the specific eccentricities of the vendor's data model.

HaloITSM is a highly flexible, deeply relational platform. Its API introduces several specific integration challenges that break standard CRUD assumptions for AI agents:

The Action vs. Ticket Dichotomy

When a human agent works in a helpdesk interface, they click into a ticket, type a note, and hit save. When an AI agent attempts to update a ticket via the API, standard models assume there is a PATCH /tickets/:id endpoint where they can update the body or status.

In HaloITSM, the data model requires you to append "Actions". An Action is a distinct object that represents an email sent, a note added, or an outcome achieved. To update a ticket, the LLM must specifically call the create_a_halo_itsm_action endpoint and pass the ticket_id as a foreign key. If you do not explicitly define this relationship in the tool's description, the LLM will hallucinate update methods that do not exist.

Asset and Site Binding

Hardware inventory in HaloITSM is heavily relational. An asset cannot just float in the database. It belongs to a specific client_id, is located at a specific site_id, and requires an assettype_id. When an AI agent needs to provision a new laptop for a user, it cannot simply "create an asset". It must execute a multi-step sequence: look up the user, find the user's site, lookup the correct asset type, and then create the record. This requires highly precise tool descriptions to guide the LLM's reasoning loop.

Base64 Attachment Encoding

HaloITSM requires file attachments to be submitted as Base64 encoded strings. LLMs deal in tokens, not binary data encoding. If an agent needs to attach a generated PDF report or a parsed log file to a ticket, you cannot just pass raw text. The tool schema must be designed to accept standard string input and handle the conversion under the hood, or instruct the LLM to utilize an external encoding tool before making the payload request.

Strict Rate Limits and Standardized Headers

HaloITSM enforces API rate limits to protect server infrastructure. If your AI agent gets stuck in a loop, attempting to read 500 tickets in under a minute, the upstream API will reject the requests.

Factual note on rate limits: Truto does not retry, throttle, or apply backoff on rate limit errors. When the upstream HaloITSM API returns an HTTP 429 Too Many Requests, Truto passes that exact error directly back to the caller.

However, Truto normalizes the upstream rate limit information into standardized headers per the IETF specification (ratelimit-limit, ratelimit-remaining, ratelimit-reset). This means your agent execution loop does not need to parse vendor-specific error bodies. You can read the ratelimit-reset header directly and implement your own explicit retry or exponential backoff logic, allowing the agent to pause execution autonomously.

Generating Tools via Truto

Every integration on Truto maps underlying product APIs into a standardized REST-based Proxy API. These proxy APIs abstract away pagination and authentication.

Truto provides a set of tools for your LLM frameworks by offering a description and precise JSON schema for all the methods defined on these integrations. This automated approach to tool generation ensures your agents always have access to the latest API capabilities without manual schema updates. By calling the GET /integrated-account/<id>/tools endpoint, you retrieve an array of AI-ready tools.

You can explicitly filter what you provide to the LLM. If you only want your agent to read data, you can append ?methods [0]=read to the request, returning only non-destructive tools.

Hero Tools for HaloITSM

To build effective ITSM agents, you need to expose high-leverage operations. Do not dump 100 tools into the context window. Provide the LLM with the exact primitives it needs to navigate the relational graph of tickets, users, actions, and assets.

Here are six critical tools for orchestrating HaloITSM workflows:

1. Get Single Ticket by ID

Tool Name: get_single_halo_itsm_ticket_by_id

This is the starting point for any triage workflow. It allows the agent to fetch the complete context of an incident, including the SLA ID, Status ID, Client ID, and the date of the last incoming email.

"Fetch ticket #14092. I need to know the current SLA status, the assigned client ID, and exactly when the user last replied."

2. Create a HaloITSM Action

Tool Name: create_a_halo_itsm_action

As discussed, this is how you interact with a ticket. The LLM uses this tool to log updates, post internal notes, or reply to the user. It requires the ticket_id to be passed alongside the outcome and action status.

"Add an internal note to ticket #14092 stating that the database migration is complete, and update the action status to 'Pending Review'."

3. List All Assets

Tool Name: list_all_halo_itsm_assets

This tool is critical for inventory management and troubleshooting. It returns an array of hardware and software assets, complete with inventory numbers, associated client IDs, and asset types. The agent uses this to check what hardware a user currently possesses.

"List all active assets assigned to the marketing department's client ID. I need to verify if any users are still assigned the deprecated Macbook Pro models."

4. Get Single User by ID

Tool Name: get_single_halo_itsm_user_by_id

Before modifying permissions or shipping hardware, the agent needs full user context. This tool retrieves the user's name, email, department, and crucial relational data like their specific site_name.

"Look up the user profile for user ID 884. Verify their current department and the physical site name they are assigned to."

5. Get Single Knowledge Base Article

Tool Name: get_single_halo_itsm_knowledge_base_by_id

For autonomous Level 1 support, the agent must reference ground truth. This tool pulls the raw content and metadata of a specific KB article, allowing the LLM to formulate a resolution based on approved company documentation.

"Retrieve knowledge base article ID 12 regarding VPN configuration on Windows 11. I need the exact troubleshooting steps to send to the user."

6. Create a HaloITSM Ticket

Tool Name: create_a_halo_itsm_ticket

This tool allows the agent to proactively open incidents or service requests. If an agent detects an anomaly in a monitoring system or processes an onboarding request from HR, it can structure and format a new ticket perfectly.

"Create a new priority 2 ticket for user ID 884. Set the summary to 'Immediate Access Required for Production Database' and assign it to the core infrastructure team."

For the complete inventory of available tools, query parameters, and schema definitions, refer to the HaloITSM integration page.

Workflows in Action

Giving an LLM tools is useless if the model does not understand how to chain them together. Here are two concrete, multi-step workflows—implementing common AI agent patterns—showing exactly how an agent leverages the HaloITSM tools to solve complex ITSM requests autonomously.

Scenario 1: Automated Asset Provisioning

Persona: IT Operations Administrator

"User ID 405 submitted a request for a replacement monitor. Check their current assigned assets. If they already have two monitors, deny the request and note the policy on their ticket. If they have one or fewer, approve it, find their physical site location, and create a hardware request ticket assigned to procurement."

Agent Execution Steps:

The agent calls list_all_halo_itsm_assets filtering by the client ID associated with user 405 to determine current inventory.
Finding only one active monitor, the agent proceeds to approval.
The agent calls get_single_halo_itsm_user_by_id (ID: 405) to extract the site_name and physical location data.
The agent calls create_a_halo_itsm_ticket to generate a procurement request, injecting the extracted site location and user details into the ticket body.
The agent calls create_a_halo_itsm_action on the original user's request ticket, logging an update that the hardware has been approved and ordered.

Result: The user gets an immediate response, procurement receives a perfectly formatted request with no missing data, and the IT admin touches zero buttons.

Scenario 2: Autonomous Incident Triage and Resolution

Persona: Level 1 Helpdesk Engineer

"Read ticket 9021. If it is a password reset request for the internal CRM, fetch the standard operating procedure from the knowledge base, post the instructions to the user, and resolve the ticket. If it is something else, escalate it to Level 2."

Agent Execution Steps:

The agent calls get_single_halo_itsm_ticket_by_id (ID: 9021) and reads the ticket subject and body.
Identifying the issue as a CRM password reset, the agent calls list_all_halo_itsm_knowledge_base (or directly calls get_single_halo_itsm_knowledge_base_by_id if it knows the ID) to fetch the approved reset instructions.
The agent processes the KB content into a readable format.
The agent calls create_a_halo_itsm_action on ticket 9021, posting the instructions as an email response and setting the outcome status to resolved.

Result: The ticket is handled instantly, deflecting common requests away from human engineers while maintaining strict adherence to company documentation.

Building Multi-Step Workflows

To build a resilient agent, you must construct an execution loop capable of handling failure states. Because Truto acts as a transparent proxy, your application must handle API errors gracefully.

If the LLM makes a malformed tool call, or if the upstream HaloITSM API returns an HTTP 429, your code must intercept that response, extract the error message or ratelimit-reset header, and feed it back into the LLM's context. The LLM can then choose to wait, retry with corrected parameters, or alert a human.

Here is a conceptual example of how to bind Truto's tools to an agent using TypeScript and LangChain, complete with rate limit handling.

import { ChatAnthropic } from "@langchain/anthropic";
import { HumanMessage, AIMessage, SystemMessage } from "@langchain/core/messages";
 
// 1. Fetch AI-ready tool schemas from Truto
async function fetchHaloITSMTools(integratedAccountId: string) {
  const response = await fetch(
    `https://api.truto.one/integrated-account/${integratedAccountId}/tools?methods[0]=read&methods[1]=write`,
    {
      headers: { Authorization: `Bearer ${process.env.TRUTO_API_KEY}` }
    }
  );
  return await response.json();
}
 
async function runAgent() {
  // 2. Initialize the model and fetch tools
  const model = new ChatAnthropic({ modelName: "claude-3-5-sonnet-latest" });
  const rawTools = await fetchHaloITSMTools("halo_acc_xyz123");
  
  // Convert Truto schemas into LangChain tool objects (conceptual mapping)
  const agentTools = rawTools.map(formatTrutoToolForLangChain);
  
  // 3. Bind tools to the LLM
  const modelWithTools = model.bindTools(agentTools);
 
  let messages = [
    new SystemMessage("You are an expert IT administrator managing a HaloITSM instance. Use the provided tools to execute requests."),
    new HumanMessage("Look up user 884 and check their assigned assets.")
  ];
 
  // 4. The execution loop
  while (true) {
    const response = await modelWithTools.invoke(messages);
    messages.push(response);
 
    if (!response.tool_calls || response.tool_calls.length === 0) {
      // The agent is finished and returning a final string
      console.log("Final Result:", response.content);
      break;
    }
 
    // 5. Execute requested tools
    for (const toolCall of response.tool_calls) {
      try {
        const result = await executeTrutoTool(toolCall);
        messages.push({
          role: "tool",
          tool_call_id: toolCall.id,
          content: JSON.stringify(result)
        });
      } catch (error: any) {
        // 6. Handle Rate Limits natively via IETF headers
        if (error.status === 429) {
          const resetTime = error.headers['ratelimit-reset'];
          console.warn(`Rate limit hit. Agent should backoff until ${resetTime}`);
          
          messages.push({
            role: "tool",
            tool_call_id: toolCall.id,
            content: `ERROR: HTTP 429 Rate Limit. Please wait until timestamp ${resetTime} before retrying.`
          });
        } else {
          // Feed standard errors back to the context window so the LLM can self-correct
          messages.push({
            role: "tool",
            tool_call_id: toolCall.id,
            content: `Error executing tool: ${error.message}`
          });
        }
      }
    }
  }
}

In this architecture, the agent framework handles the planning and reasoning, Truto handles the authentication, schema normalization, and routing, and your execution loop manages the explicit error handling.

Building AI integrations requires isolating the unpredictable nature of LLMs from the rigid constraints of SaaS APIs. By leveraging proxy APIs and dynamic tool generation, you strip away the integration boilerplate and focus entirely on engineering your agent's reasoning capabilities.