Keycloak MCP Server
MCP server with 40+ tools for managing Keycloak users, realms, clients, roles, groups, and IDPs.
🛡️ AgentReady threat assessment
MAESTRO 7-layer threat model + OWASP AIVSS risk score for Keycloak MCP Server, derived from its capabilities.
AIVSS 9.9 · Critical
View MAESTRO 7-layer threat model →Overview
Provides broad management over a Keycloak identity provider - users, realms, clients, roles, groups, identity providers, and authentication flows - through roughly 40 MCP tools. Because it can create and modify identity and access configuration, the admin credentials it holds are a critical security surface.
Key features
- Manage users, realms, and clients
- Roles, groups, and IDPs
- Authentication flow management
Use cases
- Administering Keycloak via an agent
- Bulk IAM configuration changes