Schema | cisco-secure-access-mcp

cisco-secure-access-mcp

Overview Schema Related Servers Score Discussions

Server Configuration

Describes the environment variables required to run the server.

Name	Required	Description
`SECURE_ACCESS_ORG_ID`	No	Optional organization ID for multi-org / MSSP support
`SECURE_ACCESS_API_KEY`	Yes	Your Cisco Secure Access API key
`SECURE_ACCESS_API_SECRET`	Yes	Your Cisco Secure Access API secret

Capabilities

Features and capabilities supported by this server

Capability	Details
`tools`	{ "listChanged": false }
`prompts`	{ "listChanged": false }
`resources`	{ "subscribe": false, "listChanged": false }
`experimental`	{}

Tools

Functions exposed to the LLM to take actions

Name	Description
admin_list_api_keysA	List Secure Access API keys in the organization. Requires Key Admin credentials (SECURE_ACCESS_KEY_ADMIN_KEY/SECRET).
admin_get_api_keyB	Get a single Secure Access API key by id (Key Admin credentials).
admin_create_api_keyA	Create a Secure Access API key. The secret value is returned ONCE; store it immediately. Requires Key Admin credentials.
admin_refresh_api_keyA	Refresh a Secure Access API key (rotates its secret). The new secret is returned ONCE; store it immediately. Requires Key Admin credentials.
admin_delete_api_keyB	Delete a Secure Access API key. Requires Key Admin credentials.
admin_list_alert_rulesB	List the alert rules configured for the organization.
admin_get_alert_ruleB	Get a single alert rule by id.
admin_create_alert_ruleA	Create an alert rule. `definition` is a free-form JSON object whose exact schema depends on the alert type — see the Cisco Alerting API reference for the supported triggers and notification channels.
admin_delete_alert_ruleB	Delete an alert rule by id.
admin_list_tenantsA	List the tenants visible to the authenticated parent / provider organization. Use the returned `id` as `SECURE_ACCESS_ORG_ID` to scope subsequent calls to a child tenant via X-Umbrella-OrgId.
deploy_list_network_tunnel_groupsB	List the Network Tunnel Groups in the organization.
deploy_get_network_tunnel_groupB	Get a single Network Tunnel Group by id.
deploy_create_network_tunnel_groupB	Create a Network Tunnel Group. Specify the Cisco Secure Access region name (use `deploy_list_regions` to enumerate).
deploy_delete_network_tunnel_groupB	Delete a Network Tunnel Group by id.
deploy_list_regionsB	List Cisco Secure Access regions available for Network Tunnel Group placement.
deploy_list_sitesB	List the Sites in the organization.
deploy_get_siteC	Get a single Site by id.
deploy_create_siteC	Create a Site.
deploy_delete_siteC	Delete a Site by id.
deploy_list_networksC	List Networks in the organization.
deploy_get_networkA	Get a single Network by id.
deploy_create_networkB	Create a Network identified by a CIDR. Both `ip_address` and `prefix_length` (or alternatively a `cidr` string) are validated as syntactically correct before being sent to Cisco.
deploy_delete_networkA	Delete a Network by id.
deploy_list_roaming_computersA	List Roaming Computers in the organization, optionally filtered by device name or DNS-layer / SWG status.
deploy_get_roaming_computerB	Get a single Roaming Computer by id.
deploy_delete_roaming_computerA	Delete a Roaming Computer (removes the device from Secure Access; the user will need to re-enroll if they reconnect).
policy_list_destination_listsB	List Destination Lists in the organization.
policy_get_destination_listA	Get a single Destination List by id.
policy_create_destination_listA	Create a Destination List. The list `access` (allow/block) and `destination_type` are recorded at creation; entries are added separately via `policy_add_destinations` or in the same call by passing `initial_destinations`.
policy_delete_destination_listA	Delete a Destination List by id.
policy_list_destinationsC	List the destinations (entries) in a Destination List.
policy_add_destinationsB	Add one or more destinations to a Destination List. Each entry is a dict with at least `destination` and optional `comment`.
policy_remove_destinationsA	Remove one or more destinations (by their ids) from a Destination List.
policy_list_access_rulesA	List Access Rules in the organization (paginated).
policy_get_access_ruleA	Get a single Access Rule by id.
policy_create_access_ruleC	Create an Access Rule. The `definition` dict is sent as-is to the Cisco API — see the Access Rules reference for the supported keys (identities, destinations, applications, profiles, schedule, etc.).
policy_update_access_ruleA	Update an Access Rule by id with a partial set of fields. Only the keys supplied in `patch` are sent to Cisco.
policy_delete_access_ruleB	Delete an Access Rule by id.
policy_list_application_listsC	List Application Lists in the organization.
policy_get_application_listA	Get a single Application List by id.
policy_create_application_listA	Create an Application List. `application_ids` are Cisco-published internet application identifiers — discover them with `policy_list_application_categories` (v1.1) or via the Cisco UI.
policy_delete_application_listB	Delete an Application List by id.

Prompts

Interactive templates invoked by user choice

Name	Description
No prompts

Resources

Contextual data attached and managed by the client

Name	Description
No resources

Server Configuration
Capabilities
Tools
Prompts
Resources

Latest Blog Posts

Lightport: Open-Sourcing Glama's AI Gateway
By punkpeye on April 27, 2026.
open source
OpenAI
Tool Definition Quality Score (TDQS)
By punkpeye on April 3, 2026.
mcp
The Hackers Who Tracked My Sleep Cycle
By punkpeye on March 26, 2026.
security

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/sdntechforum/Secure_Access'

If you have feedback or need assistance with the MCP directory API, please join our Discord server