4,000+ servers built on vurb.ts
Vinkius
Unlock for AI Agents

HashiCorp Vault MCP Server for CursorGive Cursor instant access to 50 tools to Approle Login, Configure Aws Root, Configure Database, and more

MCP Inspector GDPR Free for Subscribers

Cursor is an AI-first code editor built on VS Code that integrates LLM-powered coding assistance directly into the development workflow. Its Agent mode enables autonomous multi-step coding tasks, and MCP support lets agents access external data sources and APIs during code generation.

Ask AI about this MCP Server for Cursor

Open in ChatGPT Open in Claude Open in Perplexity

The HashiCorp Vault MCP Server for Cursor is a standout in the Fort Knox category — giving your AI agent 50 tools to work with, ready to go from day one.

Built for AI Agents by Vinkius

Vinkius delivers Streamable HTTP and SSE to any MCP client

ClaudeClaude
ChatGPTChatGPT
CursorCursor
GeminiGemini
WindsurfWindsurf
VS CodeVS Code
JetBrainsJetBrains
VercelVercel
+ other MCP clients
Classic Setup·json
{
  "mcpServers": {
    "hashicorp-vault": {
      "url": "https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp"
    }
  }
}
RecommendedModern Approach — Zero Configuration

Vinkius Desktop App

The modern way to manage MCP Servers — no config files, no terminal commands. Install HashiCorp Vault and 4,000+ MCP Servers from a single visual interface.

Vinkius Desktop InterfaceVinkius Desktop InterfaceVinkius Desktop InterfaceVinkius Desktop Interface
Download Free Open SourceNo signup required
HashiCorp Vault
Fully ManagedVinkius Servers
60%Token savings
High SecurityEnterprise-grade
IAMAccess control
EU AI ActCompliant
DLPData protection
V8 IsolateSandboxed
Ed25519Audit chain
<40msKill switch
Stream every event to Splunk, Datadog, or your own webhook in real-time

* Every MCP server runs on Vinkius-managed infrastructure inside AWS - a purpose-built runtime with per-request V8 isolates, Ed25519 signed audit chains, and sub-40ms cold starts optimized for native MCP execution. See our infrastructure

About HashiCorp Vault MCP Server

Connect your HashiCorp Vault instance to any AI agent to automate secrets management and security operations through natural language.

Cursor's Agent mode turns HashiCorp Vault into an in-editor superpower. Ask Cursor to generate code using live data from HashiCorp Vault and it fetches, processes, and writes. all in a single agentic loop. 50 tools appear alongside file editing and terminal access, creating a unified development environment grounded in real-time information.

What you can do

  • Secrets Management — Read, write, and list KV secrets directly from your secure mounts using the KV engine.
  • Dynamic Credentials — Generate on-demand credentials for Databases, AWS, and PKI certificates without manual intervention.
  • Token Operations — Create, lookup, and renew tokens to manage session lifecycles and access control.
  • Transit Encryption — Encrypt and decrypt data using Vault's transit engine to protect sensitive information without exposing keys.
  • System Administration — Check cluster health, manage mounts, and configure auth methods or ACL policies directly.

The HashiCorp Vault MCP Server exposes 50 tools through the Vinkius. Connect it to Cursor in under two minutes — credentials fully managed, no infrastructure to provision, no vendor lock-in. Your configuration, your data, your control.

All 50 HashiCorp Vault tools available for Cursor

When Cursor connects to HashiCorp Vault through Vinkius, your AI agent gets direct access to every tool listed below — spanning secrets-management, encryption, key-management, and more. Every call runs in a secure, isolated environment with full audit visibility. Beyond a simple connection, you get real-time monitoring of agent activity, enterprise governance, and optimized token usage.

approle

Approle login on HashiCorp Vault

Login using AppRole authentication

configure

Configure aws root on HashiCorp Vault

Configure AWS root credentials

configure

Configure database on HashiCorp Vault

Configure a database connection

configure

Configure kubernetes auth on HashiCorp Vault

Configure Kubernetes authentication

create

Create acl policy on HashiCorp Vault

Create or update an ACL policy

create

Create approle role on HashiCorp Vault

Create or update an AppRole role

create

Create aws role on HashiCorp Vault

Create an AWS role

create

Create database role on HashiCorp Vault

Create a database role

create

Create pki role on HashiCorp Vault

Create a PKI role

create

Create token on HashiCorp Vault

Create a new Vault token

create

Create transit key on HashiCorp Vault

Create a new Transit key

create

Create userpass user on HashiCorp Vault

Create a new Userpass user

decrypt

Decrypt transit on HashiCorp Vault

Decrypt data using Transit engine

delete

Delete kv secret on HashiCorp Vault

Delete the latest version of a KV v2 secret

enable

Enable audit device on HashiCorp Vault

Enable an audit device

enable

Enable auth method on HashiCorp Vault

Enable a new auth method

enable

Enable engine on HashiCorp Vault

Enable a new secrets engine

encrypt

Encrypt transit on HashiCorp Vault

Encrypt data using Transit engine

generate

Generate approle secret id on HashiCorp Vault

Generate a new Secret ID for an AppRole

generate

Generate aws creds on HashiCorp Vault

Generate dynamic AWS credentials

generate

Generate database creds on HashiCorp Vault

Generate dynamic database credentials

generate

Generate pki root on HashiCorp Vault

Generate a new PKI root certificate

get

Get init status on HashiCorp Vault

Check Vault initialization status

get

Get openapi spec on HashiCorp Vault

Generate OpenAPI V3 document of mounted backends

get

Get system health on HashiCorp Vault

Check Vault system health

github

Github login on HashiCorp Vault

Login using GitHub personal access token

initialize

Initialize vault on HashiCorp Vault

Initialize a new Vault cluster

issue

Issue pki cert on HashiCorp Vault

Issue a new PKI certificate

kubernetes

Kubernetes login on HashiCorp Vault

Login using Kubernetes authentication

list

List acl policies on HashiCorp Vault

List ACL policies

list

List audit devices on HashiCorp Vault

List enabled audit devices

list

List auth methods on HashiCorp Vault

List enabled auth methods

list

List kv secrets on HashiCorp Vault

List secrets in a KV v2 engine path

list

List mounts on HashiCorp Vault

List mounted secrets engines

list

List token accessors on HashiCorp Vault

List token accessors (requires sudo)

lookup

Lookup lease on HashiCorp Vault

Lookup a lease by ID

lookup

Lookup self token on HashiCorp Vault

Lookup details about the current Vault token

map

Map github team on HashiCorp Vault

Map a GitHub team to Vault policies

read

Read kv metadata on HashiCorp Vault

Read metadata for a KV v2 secret

read

Read kv secret on HashiCorp Vault

Read a secret from KV v2 engine

renew

Renew lease on HashiCorp Vault

Renew a lease

renew

Renew self token on HashiCorp Vault

Renew the current Vault token

revoke

Revoke lease on HashiCorp Vault

Revoke a lease

revoke

Revoke pki cert on HashiCorp Vault

Revoke a PKI certificate

revoke

Revoke self token on HashiCorp Vault

Revoke the current Vault token

rotate

Rotate transit key on HashiCorp Vault

Rotate a Transit key

seal

Seal vault on HashiCorp Vault

Seal the Vault

unseal

Unseal vault on HashiCorp Vault

Unseal the Vault with a key share

userpass

Userpass login on HashiCorp Vault

Login using Username and Password

write

Write kv secret on HashiCorp Vault

Create or update a secret in KV v2 engine

Connect HashiCorp Vault to Cursor via MCP

Follow these steps to wire HashiCorp Vault into Cursor. The entire setup takes under two minutes — your credentials stay safe behind Vinkius.

01

Open MCP Settings

Press Cmd+Shift+P (macOS) or Ctrl+Shift+P (Windows/Linux) → search "MCP Settings"
02

Add the server config

Paste the JSON configuration above into the mcp.json file that opens
03

Save the file

Cursor will automatically detect the new MCP server
04

Start using HashiCorp Vault

Open Agent mode in chat and ask: "Using HashiCorp Vault, help me...". 50 tools available

Why Use Cursor with the HashiCorp Vault MCP Server

Cursor AI Code Editor provides unique advantages when paired with HashiCorp Vault through the Model Context Protocol.

01

Agent mode turns Cursor into an autonomous coding assistant that can read files, run commands, and call MCP tools without switching context

02

Cursor's Composer feature can generate entire files using real-time data fetched through MCP. no copy-pasting from external dashboards

03

MCP tools appear alongside built-in tools like file reading and terminal access, creating a unified agentic environment

04

VS Code extension compatibility means your existing workflow, keybindings, and extensions all work alongside MCP tools

HashiCorp Vault + Cursor Use Cases

Practical scenarios where Cursor combined with the HashiCorp Vault MCP Server delivers measurable value.

01

Code generation with live data: ask Cursor to generate a security report module using live DNS and subdomain data fetched through MCP

02

Automated documentation: have Cursor query your API's tool schemas and generate TypeScript interfaces or OpenAPI specs automatically

03

Infrastructure-as-code: Cursor can fetch domain configurations and generate corresponding Terraform or CloudFormation templates

04

Test scaffolding: ask Cursor to pull real API responses via MCP and generate unit test fixtures from actual data

Example Prompts for HashiCorp Vault in Cursor

Ready-to-use prompts you can give your Cursor agent to start working with HashiCorp Vault immediately.

01

"Check the health and initialization status of my Vault server."

02

"Read the secret stored at 'secret/data/production/api-keys'."

03

"Renew my current Vault token for another hour."

Troubleshooting HashiCorp Vault MCP Server with Cursor

Common issues when connecting HashiCorp Vault to Cursor through Vinkius, and how to resolve them.

01

Tools not appearing in Cursor

Ensure you are in Agent mode (not Ask mode). MCP tools only work in Agent mode.
02

Server shows as disconnected

Check Settings → Features → MCP and verify the server status. Try clicking the refresh button.

HashiCorp Vault + Cursor FAQ

Common questions about integrating HashiCorp Vault MCP Server with Cursor.

01

What is Agent mode and why does it matter for MCP?

Agent mode is Cursor's autonomous execution mode where the AI can perform multi-step tasks: reading files, editing code, running terminal commands, and calling MCP tools. Without Agent mode, Cursor operates in a simpler ask-and-answer mode that doesn't support tool calling. Always ensure you're in Agent mode when working with MCP servers.
02

Where does Cursor store MCP configuration?

Cursor looks for MCP server configurations in a mcp.json file. You can configure servers at the project level (.cursor/mcp.json in your project root) or globally (~/.cursor/mcp.json). Project-level configs take precedence.
03

Can Cursor use MCP tools in inline edits?

No. MCP tools are only available in Agent mode through the chat panel. Inline completions and Tab suggestions do not trigger MCP tool calls. This is by design. tool calls require user visibility and approval.
04

How do I verify MCP tools are loaded?

Open Settings → Features → MCP and look for your server name. A green indicator means the server is connected. You can also check Agent mode's available tools by clicking the tools dropdown in the chat panel.

Explore More MCP Servers

View all →
Zenedu

Zenedu

6 tools

Manage messenger bots, funnels, and subscribers via Zenedu.

Xray (Test Management)

Xray (Test Management)

9 tools

Manage test cases, executions, and plans on Xray — the leading quality assurance platform for Jira.

Authing

Authing

10 tools

Cloud-native identity and access management platform — manage users, roles, and security logs via AI.

Levo.ai (API Security & Observability)

Levo.ai (API Security & Observability)

10 tools

Secure your APIs via Levo.ai — audit endpoints, monitor sensitive data (PII/PHI), and manage OWASP vulnerabilities.