CyberArk Privilege Cloud MCP Connector for Claude
A+Manage privileged access via CyberArk — audit secure safes, checkout vaulted account passwords, monitor users, and terminate sessions directly from any AI agent.
Connect your CyberArk Privilege Cloud account to any AI agent and take full control of your identity security and privileged access management through natural conversation.
What you can do
- Safe Orchestration — List secure Safes and retrieve intricate settings including retention periods and assigned Central Policy Managers (CPM)
- Privileged Account Management — Enumerate vaulted credentials (Root, Administrator, Service Accounts) and audit rotational statuses and address mappings
- Password Retrieval (Check-out) — Pull actual secrets from the Vault with mandatory audited justifications, allowing the agent to securely retrieve credentials for incident response
- Identity Oversight — List internal and LDAP-mapped directory users and groups to verify PAM logical access architectures and RBAC rules
- Session Control — Forcibly terminate active PSM/PSMP privileged sessions instantly as an active incident response mechanism
- Vault Onboarding — Provision new privileged accounts into secure Safes by mapping them to specific platform IDs for automated rotation lifecycle management
How it works
- Subscribe to this server
- Enter your CyberArk Subdomain and your Bearer access_token (generated via a Service User client_credentials flow)
- Start managing your privileged access from Claude, Cursor, or any MCP-compatible client
Who is this for?
- Security Analysts & SOC — monitor privileged account status and terminate suspicious sessions in real-time
- IT Administrators — onboard new service accounts and manage safe configurations without navigating the PVWA interface
- Auditors & Compliance — list users, groups, and account properties to verify organizational security policies
- DevOps Engineers — retrieve temporary credentials for automated maintenance tasks with full audit logging
Related Connectors
idloom MCP
Manage events, attendees, and invoices via idloom.events API.
Logstash (Server-side Log Pipeline API) MCP
Monitor and manage Logstash instances — check node health, inspect pipeline statistics, and troubleshoot hot threads directly from any AI agent.
DeepL MCP
Translate text between 30+ languages with neural machine translation that captures nuance and tone better than generic engines.
Fuzzy Match Search MCP
Perform lightning-fast fuzzy string matching across large datasets. Find the closest matches instantly using Levenshtein distance.