Bitwarden MCP. Audit security logs and manage access via chat.
Gemini Works with every AI agent you already use
…and any MCP-compatible client
Just plug in your AI agents and start using Vinkius.
Bitwarden. Manage your entire organization's security posture—collections, event logs, groups, members, and policies—right from your AI agent. Audit access, check compliance, and verify who has what permissions without logging into the web vault.
It connects your AI client directly to your Bitwarden data.
What your AI agents can do
List collections
Lists all the collections set up in the Bitwarden organization.
List events
Fetches detailed records of actions and security events across the organization.
List groups
Lists all the user groups defined in the Bitwarden organization.
Retrieves a list of all defined collections within your Bitwarden organization.
Fetches detailed logs of administrative and security-related actions taken across the organization.
Lists all current members and users associated with your Bitwarden organization.
Retrieves the structure and names of all user groups defined in the organization.
Lists the active security and administrative policies governing the organization.
Ask AI about this MCP
Supported MCP Clients
Gemini Waiting for input…
Bitwarden MCP Server: 5 Tools for Resource Management
These tools let your AI agent pull specific Bitwarden data—collections, events, groups, members, and policies—into your conversation for auditing and management.
019e386dlist collections
Lists all the collections set up in the Bitwarden organization.
019e386dlist events
Fetches detailed records of actions and security events across the organization.
019e386dlist groups
Lists all the user groups defined in the Bitwarden organization.
019e386dlist members
Retrieves the roster of all active users and members in the organization.
019e386dlist policies
Retrieves the current security and administrative policies for the organization.
Choose How to Get Started
Build a custom MCP for your own tools, or connect a ready-made integration from our catalog.
Build Your Own
Turn any API into an MCP. Import a spec, define Agent Skills, or deploy with MCPFusion.
- Import from OpenAPI, Swagger, or YAML specs
- Create Agent Skills with progressive disclosure
- Deploy to edge with MCPFusion framework
- Built in DLP, auth, and compliance on every call
- Real time usage dashboard and cost metering
- Publish to catalog or keep private
Make Your AI Do More
Start with Bitwarden, then connect any of our 4,700+ other servers whenever your AI needs more. One click, no limits.
- Use this MCP plus 4,700+ others, all in one place
- Add new capabilities to your AI anytime you want
- Every connection is secured and compliant automatically
- Track usage and costs across all your servers
- Works with Claude, ChatGPT, Cursor, and more
- New servers added to the catalog every week
What you can do with this MCP connector
Bitwarden MCP Server - Manage Access and Policies
Your AI agent connects straight to your Bitwarden data. You don't gotta log into the web vault; your agent handles the calls and gives you the info you need. You can audit your whole organization's security posture—collections, event logs, groups, members, and policies—right from your agent.
Collections Management
Use list_collections to pull a list of every collection set up in your Bitwarden organization. That lets you see exactly how vault items are organized and shared across your teams.
Audit Event Logs
Run list_events to fetch detailed records of every action and security event across the organization. You can monitor who did what, and when, which is clutch for spotting suspicious admin activity.
Member Oversight
list_members gets you the roster of every active user and member in the organization. You can quickly verify who has an account and if seats are being used.
Group Organization
list_groups pulls a list of all the user groups defined in the organization, letting you manage team-based permissions and control access boundaries.
Policy Review
list_policies pulls the current security and administrative policies for the organization, letting you check if your setup still meets compliance standards.
How Bitwarden MCP Works
- 1 First, subscribe to the Bitwarden server and input your Bitwarden Client ID and Client Secret.
- 2 Next, tell your AI agent exactly what you need—for example, 'Show me all policy changes from last week.'
- 3 Your AI agent runs the necessary tool (like
list_events) and presents the raw, filtered data back to you in conversation.
The bottom line is you get audit and management data directly in your chat interface, without opening the web vault.
Who Is Bitwarden MCP For?
Security Administrators, IT Operations staff, and Compliance Officers. This is for people who spend too much time clicking through dashboards and web vaults just to answer simple questions like, 'Did Bob change that policy?' or 'Who can see the finance keys?'
Audits event logs and verifies policy compliance without navigating the web vault. They use list_events and list_policies constantly.
Manages organizational members and groups directly from automation workflows, using list_members and list_groups to track resource usage.
Retrieves collections and access structures for security reporting, primarily using list_collections.
What Changes When You Connect
- See all collections instantly. Use
list_collectionsto map out how vault items are organized and shared, giving you a clear view of resource boundaries. - Track every action taken.
list_eventspulls detailed audit logs, letting you monitor admin activity and spot unauthorized changes immediately. - Manage users in bulk. With
list_members, you get a current roster of all members, verifying seat usage and identifying stale accounts. - Control access boundaries.
list_groupslets you query user groups, which is key for understanding team-based permissions and access control. - Verify compliance. Use
list_policiesto inspect active security policies. This lets you confirm the organization meets its required standards quickly. - Stop clicking tabs. All five tools (
list_collections,list_events,list_groups,list_members,list_policies) bring critical Bitwarden data into your AI agent, eliminating manual UI navigation.
Real-World Use Cases
Investigating a Policy Breach
A security admin notices an unauthorized policy change. Instead of hunting through web logs, they ask their agent to run list_events and cross-reference the results with list_policies. The agent pulls the specific audit trail, identifying the user and the exact time of the violation.
Onboarding a New Team
An ops engineer needs to grant a new team access. They use the agent to run list_groups to see existing structures, then use list_members to verify who needs to be added, making the process a single conversational workflow.
Compliance Audit Prep
A compliance officer needs to prove data segmentation. They ask the agent to run list_collections and list_groups. The agent lists all collections and the groups that own them, generating a report structure needed for external review.
Capacity Planning
An IT manager needs to know how many licenses are sitting unused. They run list_members to get the full count and compare it against the active user list, providing concrete data for license purchasing decisions.
The Tradeoffs
Searching the Web Vault Manually
The user has to open the Bitwarden web vault, click the 'Audit' tab, then manually filter by date, user, and event type, which takes several minutes of clicks and copy-pasting.
→
Tell your AI agent to run list_events. It handles the filtering and retrieval automatically, giving you the data in seconds without leaving your chat window.
Relying on Memory/Spreadsheets
The team attempts to track member access or policy changes using shared Google Sheets or local documents, leading to outdated data and missing audit trails.
→
Use list_members and list_policies via the agent. This pulls real-time data directly from Bitwarden, guaranteeing the information is current and authoritative.
Calling Tools Individually (The 'Clickbait' Approach)
A user runs list_members, then runs list_groups, and then has to manually correlate the two separate data outputs in their head or in a separate spreadsheet.
→
Ask your agent a composite question, like: 'List all members that belong to the Finance group.' The agent runs the necessary tools (list_members and list_groups) and synthesizes the answer for you.
When It Fits, When It Doesn't
Use this if your primary need is deep, auditable visibility into your organization's access controls and security policies. Specifically, if you need to know who has what access, or what actions were taken and when, this server is essential. You'll use list_events for history, list_policies for rules, and list_members for people.
Don't use this if you just need to generate a list of passwords or manage individual vault items. For those tasks, you need to interact directly with the vault UI or a dedicated credential management API. This server is for the meta-data and the oversight layer.
Independent Platform Disclaimer: Vinkius is an independent platform and is not affiliated with, endorsed by, sponsored by, verified by, or otherwise authorized by Bitwarden. All third-party trademarks, logos, and brand names are the property of their respective owners. Their use on this website is strictly for informational purposes to identify service compatibility and interoperability.
VINKIUS INFRASTRUCTURE
Cloud Hosted
Managed infra
V8 Isolated
Sandboxed per request
Zero-Trust Proxy
No stored credentials
DLP Enforced
Policy on every call
GDPR Compliant
EU data residency
Token Compression
~60% cost reduction
Works with Claude, ChatGPT, Cursor, and more
The Model Context Protocol standardizes how applications expose capabilities to LLMs. Instead of operating in isolation, your AI gains direct access to external platforms, live data, and real-world actions through secure, standardized connections.
This server provides 5 capabilities that interface natively with Claude, ChatGPT, Cursor, and any MCP client. No middleware. No custom integration required.
Available Capabilities
Auditing Bitwarden's Security Logs Shouldn't Require a Deep Dive into the Web Vault.
Right now, checking the security logs means navigating to the web vault, finding the audit section, and then building complex filters. You're clicking through dates, selecting user IDs, and manually reading event codes. It's slow, and it's easy to miss something critical.
With the Bitwarden MCP Server, you just ask your agent: 'Show me all policy changes by admins last week.' The agent runs the necessary tools and delivers the filtered, readable data straight into your chat. It's instant, and it's searchable.
Bitwarden MCP Server: Resource Management via Conversation
Before, checking the group structure meant opening one tab, then opening a second tab to see which users belonged to that group, and finally checking a third location for policies that governed that group. It was a three-step, multi-tool manual process.
Now, your agent handles it all. You ask it to 'List all members in the Finance group.' The agent runs the necessary tools and provides the definitive answer in one response. It's a single, conversational workflow.
Common Questions About Bitwarden MCP
How do I use the `list_collections` tool in Bitwarden? +
You ask your agent to 'list all collections.' The agent runs list_collections and provides a list of all named collections in your organization, showing where different types of data are stored.
Can I use `list_events` to check for policy changes in Bitwarden? +
Yes. Ask the agent to list events, specifying a time frame. list_events pulls the audit trail, allowing you to see who changed what policy, and exactly when.
Is `list_groups` the same as `list_members` for Bitwarden? +
No. list_groups shows the group structure (e.g., 'Engineering', 'Marketing'). list_members shows the people who belong to those groups.
What information does `list_policies` provide for Bitwarden? +
list_policies retrieves the active security rules. This shows you the formal constraints and standards currently enforced across the organization.
How do I use `list_members` to check who has access to a vault? +
Yes, list_members shows every account associated with the organization. You can check user status, owner roles, and whether they're active or pending invitation.
What does `list_groups` show about my Bitwarden team structure? +
list_groups details the defined user groups in your organization. This lets you see how permissions are assigned to teams before checking individual member assignments.
What should I do if `list_events` returns an empty list? +
An empty list means no events were logged for the current time frame or scope. Check your time parameters or ensure the administrative actions you expect actually occurred.
Can I use `list_collections` to find out how many items are shared? +
No, list_collections only lists the organizational collection names. You need to query the collection contents directly via a separate command for item counts.
Can I use this to audit recent administrative changes in my Bitwarden organization? +
Yes! Use the list_events tool to retrieve the audit trail. It provides a detailed log of events, including who performed what action and when, helping you maintain security oversight.
How do I check which security policies are currently active? +
Simply ask the agent to run the list_policies action. This will return all administrative and security policies configured for your organization, such as Master Password requirements or Two-step Login rules.
Is it possible to see all the shared collections we have set up? +
Yes, the list_collections tool allows you to retrieve all collections available to the organization, helping you understand how shared secrets are categorized.
Use it with your favorite AI tools
Connect this server to Cursor, Claude, VS Code, and more.
More in this category
Azure Log Analytics Workspace
This MCP does exactly one thing: it queries logs from a single Azure Log Analytics table. That's its only function, and nothing else. Incredible for giving your AI secure observability.
Tenable
Manage Tenable Vulnerability Management scans, inspect cloud assets, and triage CVEs natively via your AI agent.
Datadog Cloud SIEM
Manage cloud security via Datadog — search security signals, triage alerts, and audit detection rules directly from any AI agent.
You might also like
Numbers API
Facts about numbers and dates — access trivia, math, and historical data via AI.
Epic Games EOS
Connect to Epic Online Services — lookup accounts, friends, and explore the Epic Games ecosystem.
GraphHopper
Empower routing and geocoding via GraphHopper — calculate optimal routes, perform reverse geocoding, solve vehicle routing problems, and analyze reachability directly from any AI agent.