How to Use the Hanko (Passkey Auth) MCP in CrewAI

Q: How does CrewAI coordinate multi-step onboarding with Hanko (Passkey Auth)?

One CrewAI agent uses admincreateuser to provision the account, while a second agent calls passkeyregistrationinit to prepare the WebAuthn challenge. They share state through CrewAI's memory to guide the user to a successful sign-up.

Q: How do agents verify session tokens using Hanko (Passkey Auth) and CrewAI?

The CrewAI security agent calls publicvalidatesession to check the signature of an incoming token. By fetching the valid keys via publicgetjwks, the crew can confirm session integrity before allowing other agents to perform tasks on behalf of the user.

Q: Can I filter which Hanko tools my CrewAI agents can access?

Yes, you can use CrewAI's toolfilter through the MCP Server to restrict sensitive tools like passkeydeletecredential to your moderator agent. This prevents research or analysis agents from accidentally modifying user security credentials.

Deploy a team of autonomous security agents to monitor and manage Hanko (Passkey Auth) credentials using CrewAI and our MCP Server.

See Vinkius in Action

Works with every AI agent you already use

…and any MCP-compatible client

MCP Servers - Free for Subscribers

Connect Hanko (Passkey Auth) MCP to CrewAI

Create your Vinkius account to connect Hanko (Passkey Auth) to CrewAI and route execution through our secure gateway. The platform manages server hosting, runtime updates, and security layers. Configuration requires no manual server provisioning.

GDPR Free for Subscribers

Setup Hanko (Passkey Auth) with CrewAI

Ask AI about this MCP

ChatGPT

Claude

Perplexity

Autonomous security monitoring teams

The `public_validate_session` tool allows your CrewAI security agent to verify the validity of active Hanko user sessions in real-time. A dedicated CrewAI monitor agent can run this check continuously on active connections, flagging any suspicious or expired session tokens immediately. When the monitor agent detects an invalid Hanko token, it passes the user ID to a moderator agent. This second CrewAI agent uses `admin_get_user` to inspect the account profile and determine if security protocols require locking the user out.

Automated credential cleanup crews

The `passkey_list_credentials` tool lists all WebAuthn devices registered to a specific Hanko account. A cleanup agent in your CrewAI team can analyze this list to identify old, unused, or duplicate security keys. If the CrewAI agent finds keys that have not been used in over 90 days, it escalates the issue to a user-notification agent. Once the user gives consent, the moderator CrewAI agent invokes `passkey_delete_credential` to remove the stale hardware key securely.

Coordinating user migrations via CrewAI MCP Server

The `flow_execute` tool initiates structured Hanko authentication flows for users transitioning from legacy passwords. Your CrewAI migration team coordinates this process by assigning different steps to specialized agents. One CrewAI agent runs `admin_list_users` to find legacy accounts. Another agent uses `passkey_registration_init` to prep the passkey setup options, while a third CrewAI agent monitors the onboarding funnel to help users who get stuck.

Setup guide

Set up Hanko (Passkey Auth) MCP in CrewAI

Prerequisites

Python 3.10+ installed
crewai package (pip install crewai)
Active Vinkius subscription with a valid endpoint token

1

Install CrewAI
Run pip install crewai to install the framework. MCP support is built-in via the mcps parameter.
2

Add the MCP URL to your agent
Pass your Vinkius endpoint directly to the mcps list. Replace [YOUR_TOKEN_HERE] with your token from cloud.vinkius.com. CrewAI handles tool discovery and caching automatically.
3

Kick off your crew
Create a Crew with your agent and tasks. Call crew.kickoff() — the agent will automatically invoke Hanko (Passkey Auth) tools as needed.

crew.py

from crewai import Agent, Task, Crew

agent = Agent(
    role="Hanko (Passkey Auth) Analyst",
    goal="Access and analyze Hanko (Passkey Auth) data via MCP.",
    backstory="Expert analyst with direct Hanko (Passkey Auth) access.",
    mcps=[
        "https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp"
    ],
)

task = Task(
    description="List recent Hanko (Passkey Auth) transactions",
    agent=agent,
    expected_output="A summary of recent activity",
)

crew = Crew(agents=[agent], tasks=[task])
result = crew.kickoff()
print(result)

Get your connection token →

Prerequisites

Python 3.10+ installed
crewai + crewai-tools packages
Active Vinkius subscription with a valid endpoint token

1

Install dependencies
Run pip install crewai crewai-tools. The MCPServerAdapter handles lifecycle management and tool conversion.
2

Connect with MCPServerAdapter
Use MCPServerAdapter as a context manager with SseServerParameters pointing to your Vinkius endpoint. The adapter automatically manages connection lifecycle.
3

Assign tools and run
Pass the returned mcp_tools to your agent's tools parameter. The adapter converts MCP tools to native BaseTool objects compatible with all CrewAI agents.

crew.py

from crewai import Agent, Task, Crew
from crewai_tools import MCPServerAdapter
from mcp import SseServerParameters

server_params = SseServerParameters(
    url="https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp"
)

with MCPServerAdapter(server_params) as mcp_tools:
    agent = Agent(
        role="Hanko (Passkey Auth) Analyst",
        goal="Access and analyze Hanko (Passkey Auth) data via MCP.",
        backstory="Expert analyst with direct Hanko (Passkey Auth) access.",
        tools=mcp_tools,
    )

    task = Task(
        description="List recent Hanko (Passkey Auth) transactions",
        agent=agent,
        expected_output="A summary of recent activity",
    )

    crew = Crew(agents=[agent], tasks=[task])
    result = crew.kickoff()
    print(result)

Get your connection token →

Independent Platform Disclaimer: Vinkius is an independent platform and is not affiliated with, endorsed by, sponsored by, verified by, or otherwise authorized by Hanko. All third-party trademarks, logos, and brand names are the property of their respective owners. Their use on this website is strictly for informational purposes to identify service compatibility and interoperability.

Why Choose Vinkius

Vinkius connects your tools to AI with real-time monitoring and automatic cost savings — all from one dashboard.

Connect Hanko (Passkey Auth) now

Real-time monitoring

Live

visibility into every interaction

Connect your favorite tools to your AI and see exactly what's happening — every request, every response, in real time.

Built-in savings

60%

lower AI costs

Vinkius compresses data between your apps and your AI automatically. Lower bills every month — no configuration required.

Single dashboard

One

place for every integration

Every tool your AI connects to, managed from a single screen. One account, complete control.

Common questions about Hanko (Passkey Auth) MCP in CrewAI

Yes, your CrewAI monitoring agent can detect anomalous login patterns and coordinate with a mitigation agent. The crew uses the MCP Server to run `passkey_delete_credential` and immediately terminate access for the compromised hardware key.

One CrewAI agent uses `admin_create_user` to provision the account, while a second agent calls `passkey_registration_init` to prepare the WebAuthn challenge. They share state through CrewAI's memory to guide the user to a successful sign-up.

The CrewAI security agent calls `public_validate_session` to check the signature of an incoming token. By fetching the valid keys via `public_get_jwks`, the crew can confirm session integrity before allowing other agents to perform tasks on behalf of the user.

Yes, you can use CrewAI's `tool_filter` through the MCP Server to restrict sensitive tools like `passkey_delete_credential` to your moderator agent. This prevents research or analysis agents from accidentally modifying user security credentials.

All WebAuthn credentials and public keys remain stored inside your Hanko database, not in CrewAI. The MCP Server only passes cryptographic challenges and metadata to the agents, keeping your underlying authentication data isolated.

Use it with your favorite AI tools

Connect this server to Cursor, Claude, VS Code, and more.

OpenAI Agents SDK sdk-python

Google ADK sdk-python

Pydantic AI sdk-python

Vercel AI SDK sdk-typescript