indranilokg/okta-mcp-server
If you are the rightful owner of okta-mcp-server and would like to certify it and/or have it hosted online, please leave a comment on the right or send an email to henry@mcphub.com.
A Model Context Protocol (MCP) server for managing Okta applications, users, and groups.
create_application
Create OIDC applications (native, web, SPA, service).
list_all_applications
List all applications in your Okta org.
list_groups
List groups in your Okta org.
assign_application_to_group
Assign an application to a group.
Okta MCP Server
A Model Context Protocol (MCP) server for managing Okta platform.
Quick Start
1. Initialize & Configure
# Setup with your Okta credentials (interactive)
npx @indranilokg/okta-mcp-server init
You'll be prompted for:
- Okta Domain:
your-domain.okta.com(or.oktapreview.com) - API Token: Get from Okta Admin → Security → API → Tokens
2. Add to Cursor
Add to your ~/.cursor/mcp.json:
{
"mcpServers": {
"okta-admin": {
"command": "npx",
"args": ["-y", "@indranilokg/okta-mcp-server", "run"]
}
}
}
3. Start Using
Restart Cursor and use Okta tools in your chats!
Commands
# Initial setup
npx @indranilokg/okta-mcp-server init
# Check authentication status
npx @indranilokg/okta-mcp-server session
# Start server (for MCP)
npx @indranilokg/okta-mcp-server run
# Clear credentials
npx @indranilokg/okta-mcp-server logout
Available Tools
Application Manager
| Tool | Description |
|---|---|
create_application | Create OIDC applications (web, SPA, native, service) with auto-configuration |
list_all_applications | List all applications with filtering, search, and pagination |
Group Manager
| Tool | Description |
|---|---|
list_groups | List groups with search, filtering, and pagination |
assign_application_to_group | Assign applications to groups with priority settings |
User Manager
| Tool | Description |
|---|---|
list_users | List users with advanced filtering, search, and activity insights |
create_user | Create new users with comprehensive profile setup and validation |
get_user | Get detailed user information with activity insights and status |
update_user | Update user profiles with change tracking and validation |
activate_user | Activate user accounts with optional email notifications |
deactivate_user | Deactivate user accounts with status validation |
Usage Examples
Just chat with Cursor using natural language prompts:
Create Applications
"Create a React SPA application running at port 3000 and assign to all Okta users"
"Create a web application called 'My Dashboard' with callback URL https://localhost:8080/auth/callback"
"Create a native mobile app for iOS with custom URL scheme com.mycompany.app://callback"
"Create a service application for API access called 'Backend Service'"
List and Manage
"Show me all applications in my Okta org"
"List all groups in Okta"
"Assign the 'My Dashboard' application to the Marketing team group"
"Create a new SPA for Vue.js development and make it available to everyone"
User Management
"List all active users in my Okta org"
"Create a new user for with first name John and last name Doe"
"Get details for user including their activity status"
"Update user profile for to change her department to Marketing"
"Activate the user account for and send welcome email"
"Deactivate user account for "
Security
Credentials are stored securely using:
- OS Keychain (preferred) - macOS Keychain, Windows Credential Manager, Linux keyring
- Secure file (fallback) -
~/.okta-mcp/config.jsonwith restricted permissions - Environment variables (last resort) -
OKTA_DOMAINandOKTA_API_KEY
Getting Okta API Token
- Log in to Okta Admin console
- Go to Security → API → Tokens
- Click Create Token
- Name it (e.g., "MCP Server") and create
- Copy the token immediately (you won't see it again!)
Troubleshooting
# Check if authenticated
npx @indranilokg/okta-mcp-server session
# Re-authenticate
npx @indranilokg/okta-mcp-server logout
npx @indranilokg/okta-mcp-server init
# Test server manually
npx @indranilokg/okta-mcp-server run
License
MIT