Security Onion MCP (Community Edition)
by rudraverma
Server Configuration
Describes the environment variables required to run the server.
| Name | Required | Description | Default |
|---|---|---|---|
| SO_CA_CERT | No | Path to CA certificate file if SO_API_VERIFY_SSL is true | |
| SO_OS_USER | Yes | OpenSearch username, typically so_elastic | |
| SO_SSH_HOST | Yes | SSH host of SO manager | |
| SO_SSH_USER | Yes | SSH username with sudo access | |
| SO_OS_PASSWORD | Yes | OpenSearch password (get from /opt/so/conf/elasticsearch/curl.config on manager) | |
| SO_SSH_HOSTKEY | Yes | Pinned ed25519 fingerprint of SSH host | |
| SO_API_ENDPOINT | Yes | URL of your SO manager, e.g. https://YOUR-SO-MANAGER:9200 | |
| SO_SSH_PASSWORD | Yes | SSH password | |
| SO_API_VERIFY_SSL | No | Set to 'true' if using a valid CA cert, otherwise 'false' for self-signed | false |
Capabilities
Server capabilities have not been inspected yet.
Tools
Functions exposed to the LLM to take actions
| Name | Description |
|---|---|
No tools | |
Prompts
Interactive templates invoked by user choice
| Name | Description |
|---|---|
No prompts | |
Resources
Contextual data attached and managed by the client
| Name | Description |
|---|---|
No resources | |
Latest Blog Posts
- Your AI Chatbot Just Exposed Your CEO's Salary to an InternBy Om-Shree-0709 on .Agent IdentityMCP SecurityOAuth Delegation
- Why MCP Servers Need Execution Sandboxing (And Why Your Current Stack Isn't Enough)By Om-Shree-0709 on .Agentic AiPrompt InjectionWebAssembly
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/rudraverma/securityonion-CE-mcp'
If you have feedback or need assistance with the MCP directory API, please join our Discord server