NIM Key Manager MCP Server
Provides tools for managing NVIDIA API keys, including listing, inspecting, dispensing, registering, rotating, and revoking keys, as well as managing projects, all with RBAC and audit trail.
Click on "Install Server".
Wait a few minutes for the server to deploy. Once ready, it will show a "Started" state.
In the chat, type
@followed by the MCP server name and your instructions, e.g., "@NIM Key Manager MCP ServerList all API keys that are expiring soon."
That's it! The server will respond to your query, and you can continue using it as needed.
Here is a step-by-step guide with screenshots.
NIM Key Manager
Self-hosted, production-ready manager for the API keys of your own NVIDIA Build/NIM account — encrypted storage, assisted rotation, expiry detection, usage stats, projects, RBAC, audit, a web dashboard, and a Claude MCP connector. Deploy your own instance in a few minutes; everything is configured through environment variables.
NVIDIA Terms of Service. NVIDIA Build offers no public API to create or rotate keys programmatically (you generate them at build.nvidia.com), and API keys must not be shared or redistributed to third parties. This project is therefore designed for you to manage your own keys on your own instance: the only outbound call is the official read-only validation endpoint
GET https://integrate.api.nvidia.com/v1/models. It does not automate or scrape the NVIDIA portal, and it is not a service for handing your keys to other people.
Deploy your own (no local setup)
Click the button (or Use this template → Create repository, then in Render pick New → Blueprint and select your fork). Render reads
render.yamland provisions everything automatically:a managed PostgreSQL database,
the Dockerized web service with a health check,
the secrets
JWT_SECRET,ENCRYPTION_MASTER_KEYandMCP_OAUTH_JWT_SIGNING_KEY(generated and stored by Render's secret manager),DATABASE_URLinjected from the database.
When prompted, set
FIRST_ADMIN_EMAILandFIRST_ADMIN_PASSWORD(your initial admin, created on first boot).Open the service URL: log in at
/, explore the API at/docs.Every push to
mainruns CI (lint + types + tests + build) and redeploys automatically. Migrations (alembic upgrade head) run on container start.
Prefer another host? Any platform that runs a Docker container + PostgreSQL works — see docs/deployment.md.
Related MCP server: Databricks MCP Server Template
Use it from Claude (MCP connector)
The same deployment exposes a Model Context Protocol server at ‹BASE›/mcp so you can add it to Claude as a custom connector. Claude authenticates with OAuth 2.1 (GitHub by default, Google optional) and can list/inspect keys, dispense a ready-to-use key, register/rotate/revoke and manage projects — with the same RBAC and audit trail as the REST API. Only identities in MCP_ALLOWED_IDENTITIES may connect (fail-closed).
Create a GitHub OAuth App with callback
‹BASE›/auth/callback; copy the Client ID/Secret.In Render set
MCP_GITHUB_CLIENT_ID,MCP_GITHUB_CLIENT_SECRETandMCP_ALLOWED_IDENTITIES(your GitHub login/e-mail). The rest is already inrender.yaml.In Claude: Settings → Connectors → Add custom connector → URL
‹BASE›/mcp→ Connect.
Full guide (Google, tool reference, security, troubleshooting): docs/connector.md.
Features
Secure key registration — encrypted at rest with AES-256-GCM (key derived via HKDF-SHA256 from the platform secret manager). Never stored or logged in plaintext.
Assisted, audited rotation — you create the new key in your NVIDIA account, paste it, and the system performs an atomic swap (new key active, old one revoked with a
rotated_from_idlineage link).Expiry detection — hourly background job + maintenance endpoint; configurable
expiring_soonflag.Periodic validation — automatic sweep against NVIDIA every 6 h (configurable) that flags invalid/revoked keys.
Key dispensing —
GET /api/v1/keys/dispensereturns the least-recently-used active key (LRU), globally or per project, recording usage.Projects — group keys by consumer/workload.
Statistics — inventory by status, dispenses, usage time series.
Security — JWT (access + refresh), roles
admin/manager/viewer, rate limiting, immutable audit of every sensitive operation.Claude connector (MCP) — OAuth-secured MCP server at
/mcp(see above).Operations — structured JSON logging, Prometheus metrics at
/metrics, health check at/health, OpenAPI at/docs.
Architecture
app/
├── domain/ # Enums and domain exceptions (no dependencies)
├── application/ # Use cases (services) and ports (interfaces)
│ └── services/ # auth, users, keys, projects, stats, audit
├── infrastructure/ # Adapters: SQLAlchemy (repositories) and NVIDIA gateway
├── api/ # FastAPI: routers, schemas, deps, rate limiting
├── mcp/ # Claude connector: MCP server, OAuth and identity mapping
├── dashboard/ # Lightweight SPA served at /
├── tasks/ # Scheduled jobs (APScheduler)
└── core/ # Config, crypto, security, loggingPragmatic Clean Architecture: dependencies point inward; the application layer knows nothing about FastAPI and reaches NVIDIA through the KeyValidator port. Details and decisions in docs/architecture.md.
Stack: Python 3.12 · FastAPI · FastMCP (Claude connector) · SQLAlchemy 2 (async) · managed PostgreSQL · Alembic · Docker · GitHub Actions · Render (Blueprint) · structlog · Prometheus · slowapi · APScheduler.
API quickstart
BASE=https://your-service.onrender.com
# Log in (the admin was created on first boot)
TOKEN=$(curl -s $BASE/api/v1/auth/login -H 'Content-Type: application/json' \
-d '{"email":"you@example.com","password":"your-password"}' | jq -r .access_token)
# Register a key created at build.nvidia.com (validating it against NVIDIA)
curl -s $BASE/api/v1/keys -H "Authorization: Bearer $TOKEN" -H 'Content-Type: application/json' \
-d '{"name":"prod-1","api_key":"nvapi-...","validate_remote":true}'
# Get an available key (LRU) to use in your application
curl -s "$BASE/api/v1/keys/dispense" -H "Authorization: Bearer $TOKEN"More examples (rotation, projects, stats, audit) in docs/api-examples.md. Interactive OpenAPI at /docs.
Roles
Operation | viewer | manager | admin |
View keys, projects and stats | ✅ | ✅ | ✅ |
Register / validate / rotate / revoke / dispense keys | ❌ | ✅ | ✅ |
Manage projects | ❌ | ✅ | ✅ |
Delete keys, manage users, read the audit log | ❌ | ❌ | ✅ |
Development & tests
Not required to deploy, but fully supported:
pip install -e ".[dev]"
pytest --cov=app # required coverage gate: 85% (currently ~94%)
ruff check . && mypy app
docker compose up # local stack with PostgreSQLSecurity
Threat model, cryptographic details and design decisions in docs/security.md. Key points: AES-256-GCM encryption with a key derived (HKDF) from the secret manager, SHA-256 fingerprints to deduplicate without exposing the secret, short-lived signed JWTs, argon2 password hashing, per-IP rate limiting, audit of every sensitive operation, and no plaintext keys in logs or responses except the explicit dispense endpoint. To report a vulnerability, see SECURITY.md.
Contributing
Contributions are welcome — see CONTRIBUTING.md and the Code of Conduct. A short Spanish overview is available in README.es.md.
License
MIT — see LICENSE.
This server cannot be installed
Maintenance
Resources
Unclaimed servers have limited discoverability.
Looking for Admin?
If you are the server author, to access and configure the admin panel.
Latest Blog Posts
- Your AI Chatbot Just Exposed Your CEO's Salary to an InternBy Om-Shree-0709 on .Agent IdentityMCP SecurityOAuth Delegation
- Why MCP Servers Need Execution Sandboxing (And Why Your Current Stack Isn't Enough)By Om-Shree-0709 on .Agentic AiPrompt InjectionWebAssembly
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/BySergiMM/nim-key-manager'
If you have feedback or need assistance with the MCP directory API, please join our Discord server