CyberArk Privilege Cloud MCP Server
by aaearon
Server Configuration
Describes the environment variables required to run the server.
| Name | Required | Description | Default |
|---|---|---|---|
| MCP_HOST | No | Server bind host. Default: 127.0.0.1. | 127.0.0.1 |
| MCP_PORT | No | Server bind port. Default: 8000. | 8000 |
| MCP_TRANSPORT | No | Transport protocol. Set to 'streamable-http' for OAuth mode. Default: stdio. | stdio |
| MCP_SERVER_URL | No | Public URL for OAuth metadata. Default: http://{host}:{port}. | |
| CYBERARK_CLIENT_ID | No | Service account login name (username) for PCloud platform token, required in both modes. | |
| CYBERARK_CLIENT_SECRET | No | Service account password, required in both modes. | |
| CYBERARK_OAUTH_CLIENT_ID | No | OIDC app client ID from Trust tab (for DCR and JWT audience), required for OAuth per-user mode. | |
| CYBERARK_IDENTITY_TENANT_URL | No | CyberArk Identity tenant URL (e.g., https://abc1234.id.cyberark.cloud), required for OAuth per-user mode. | |
| CYBERARK_OAUTH_CLIENT_SECRET | No | OIDC app client secret from Trust tab (injected server-side in /token proxy), required for OAuth per-user mode. |
Capabilities
Server capabilities have not been inspected yet.
Tools
Functions exposed to the LLM to take actions
| Name | Description |
|---|---|
No tools | |
Prompts
Interactive templates invoked by user choice
| Name | Description |
|---|---|
No prompts | |
Resources
Contextual data attached and managed by the client
| Name | Description |
|---|---|
No resources | |
Latest Blog Posts
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/aaearon/mcp-privilege-cloud'
If you have feedback or need assistance with the MCP directory API, please join our Discord server