How do I install Keycloak?

Keycloak is a local plugin. Install it using PyPI package: keycloak-mcp and add the generated configuration snippet to your AI app's MCP config file. Then restart your AI app.

Is Keycloak safe to use?

Keycloak was flagged by MCP Marketplace's security scan, scoring 4.2/10 (high risk). It has 4 high or critical findings to review. Review the security report on this page carefully before installing it.

What AI apps work with Keycloak?

Keycloak uses the Model Context Protocol (MCP) and works with any MCP-compatible AI app, including Claude, ChatGPT / Codex, Gemini, Copilot, Cursor, and more.

Back to Browse

Keycloak MCP Server

by shigechika

Developer ToolsUse Caution4.2Local

Free

MCP server for KeyCloak Admin REST API via Service Account

About

MCP server for KeyCloak Admin REST API via Service Account

Security Report

4.2

Use Caution4.2High Risk

This MCP server implements KeyCloak Admin API operations with appropriate authentication (Service Account / Client Credentials Grant) and reasonable permission scoping. The codebase demonstrates good security practices with credential handling via environment variables, input validation, and careful error sanitization to prevent information leakage. However, several moderate-severity issues exist: the batch password reset tool accepts user-supplied passwords which creates audit and security concerns, there is inconsistent error sanitization across different code paths, and some operations (like TOTP enumeration) have high computational cost without sufficient safeguards. Supply chain analysis found 4 known vulnerabilities in dependencies (1 critical, 3 high severity). Package verification found 1 issue.

4 files analyzed · 11 issues found

Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.

Permissions Required

This plugin requests these system permissions. Most are normal for its category.

env_vars

Check that this permission is expected for this type of plugin.

HTTP Network Access

Connects to external APIs or services over the internet.

File System Read

Reads files on your machine. Normal for tools that analyze or process local data.

How to Install

Add this to your MCP configuration file:

{
  "mcpServers": {
    "io-github-shigechika-keycloak-mcp": {
      "args": [
        "keycloak-mcp"
      ],
      "command": "uvx"
    }
  }
}

Reviews

No reviews yet

Be the first to review this server!

More Developer Tools MCP Servers

Fetch

Free

by Modelcontextprotocol · Developer Tools

Web content fetching and conversion for efficient LLM usage

Git

Free

by Modelcontextprotocol · Developer Tools

Read, search, and manipulate Git repositories programmatically

Toleno

Free

by Toleno · Developer Tools

Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.

Keycloak MCP Server

About

Security Report

Findings (11)Action required

Permissions Required

How to Install

Reviews

No reviews yet

More Developer Tools MCP Servers

Fetch

Git

Toleno

mcp-creator-python

MarkItDown

FinAgent