How to Use the KnowBe4 (KMSAT Reporting) MCP in Windsurf

Q: Can I use Windsurf to find which users failed a specific KnowBe4 (KMSAT Reporting) test?

Yes, you can. Windsurf uses listphishingtests to find the campaign, then calls getphishingtestdetails to pull the exact failure metrics. Cascade chains these steps together to give you the raw data in seconds.

Q: How do I configure this MCP Server in my Windsurf settings?

Open your mcpconfig.json file in Windsurf and add the server under the mcpServers block with your API key. Alternatively, use the Settings UI under Cascade to paste the connection details. Cascade auto-discovers the tools immediately after you click refresh.

Q: Can Cascade run automated training audits with KnowBe4 (KMSAT Reporting) in Windsurf?

Cascade executes multi-tool workflows by chaining listtrainingcampaigns with gettrainingcampaigndetails. It compares active campaigns against your user groups to find compliance gaps. You set the goal, and Windsurf runs the queries.

Run multi-step security audits in Windsurf by letting Cascade pull real-time KnowBe4 employee risk metrics and training data.

See Vinkius in Action

Works with every AI agent you already use

…and any MCP-compatible client

MCP Servers - Free for Subscribers

Connect KnowBe4 (KMSAT Reporting) MCP to Windsurf

Create your Vinkius account to connect KnowBe4 (KMSAT Reporting) to Windsurf and route execution through our secure gateway. The platform manages server hosting, runtime updates, and security layers. Configuration requires no manual server provisioning.

GDPR Free for Subscribers

Setup KnowBe4 (KMSAT Reporting) with Windsurf

Ask AI about this MCP

ChatGPT

Claude

Perplexity

Map high-risk users to active training campaigns

The `get_account_risk_score` tool pulls your organization's current risk posture directly into your Windsurf workspace using this MCP Server. Cascade uses this metric as a starting point to trace which specific departments or individuals are driving your risk profile up. It chains this with `list_users` to isolate accounts with active risk flags. Once Cascade identifies those users, it automatically runs `list_user_groups` to see if they belong to the correct security cohorts. You don't have to prompt it for each step. The agent builds the entire list of high-risk users who lack assigned training and presents it as a single markdown table.

Audit phishing test failure rates with Windsurf Cascade

The `list_phishing_tests` tool returns a list of your recent mock phishing campaigns directly to your active coding session. Cascade analyzes these test IDs and autonomously triggers `get_phishing_test_details` for any campaign showing high failure rates. It extracts the raw click metrics without requiring you to write API scripts or export CSVs. Then, it correlates those failures against active training enrollments using `list_training_campaigns`. Windsurf handles the entire sequence in the background, showing you exactly which mock templates are catching your team off guard and which training modules are falling short.

Verify organizational compliance using this MCP Server

The `list_groups` tool retrieves your current user segments from KnowBe4 so your agent can verify training coverage. Windsurf checks these groups against active assignments by calling `get_training_campaign_details` for each security course. It spots gaps where entire departments are missing mandatory security awareness modules. Cascade handles the heavy lifting by running these checks on a loop or a schedule you define in your workspace. You get a clear, unvarnished view of your security baseline without clicking through the KMSAT web portal.

Setup guide

Set up KnowBe4 (KMSAT Reporting) MCP in Windsurf

Prerequisites

Windsurf IDE installed (macOS, Windows, or Linux)
Active Vinkius subscription with a valid endpoint token

1

Open MCP configuration

Click the Cascade assistant icon in the sidebar, then click the hammer icon (🔨) at the top of the panel. Select "Configure" to open ~/.codeium/windsurf/mcp_config.json.
2

Add the KnowBe4 (KMSAT Reporting) MCP

Paste the JSON snippet shown on the right into the mcpServers object. Replace [YOUR_TOKEN_HERE] with your endpoint token from cloud.vinkius.com.
3

Refresh MCPs

Go back to the hammer icon (🔨) in Cascade and click "Refresh". Windsurf will detect the new server. No full restart is needed — the connection is hot-reloaded.
4

Verify in Cascade

Start a new Cascade conversation and ask something like "Show my KnowBe4 (KMSAT Reporting) payment history." If connected, Cascade will call the KnowBe4 (KMSAT Reporting) tools directly. You will see a green dot next to the server name in the MCP panel.

mcp_config.json

{
  "mcpServers": {
    "knowbe4-kmsat-reporting-mcp": {
      "url": "https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp"
    }
  }
}

Get your connection token →

Independent Platform Disclaimer: Vinkius is an independent platform and is not affiliated with, endorsed by, sponsored by, verified by, or otherwise authorized by KnowBe4. All third-party trademarks, logos, and brand names are the property of their respective owners. Their use on this website is strictly for informational purposes to identify service compatibility and interoperability.

Why Choose Vinkius

Vinkius connects your tools to AI with real-time monitoring and automatic cost savings — all from one dashboard.

Connect KnowBe4 (KMSAT Reporting) now

Real-time monitoring

Live

visibility into every interaction

Connect your favorite tools to your AI and see exactly what's happening — every request, every response, in real time.

Built-in savings

60%

lower AI costs

Vinkius compresses data between your apps and your AI automatically. Lower bills every month — no configuration required.

Single dashboard

One

place for every integration

Every tool your AI connects to, managed from a single screen. One account, complete control.

Common questions about KnowBe4 (KMSAT Reporting) MCP in Windsurf

Windsurf connects to this MCP Server via your local configuration file. Once configured, Cascade calls tools like `list_users` and `get_account_risk_score` directly during your conversations. You just ask Cascade to audit your security posture, and it runs the tool sequence autonomously.

Yes, you can. Windsurf uses `list_phishing_tests` to find the campaign, then calls `get_phishing_test_details` to pull the exact failure metrics. Cascade chains these steps together to give you the raw data in seconds.

Open your `mcp_config.json` file in Windsurf and add the server under the `mcpServers` block with your API key. Alternatively, use the Settings UI under Cascade to paste the connection details. Cascade auto-discovers the tools immediately after you click refresh.

Cascade executes multi-tool workflows by chaining `list_training_campaigns` with `get_training_campaign_details`. It compares active campaigns against your user groups to find compliance gaps. You set the goal, and Windsurf runs the queries.

This server only reads data, accessing employee email addresses, risk scores, training statuses, and phishing test results. It operates inside an isolated V8 sandbox on Vinkius, meaning your KMSAT API keys never touch the local client directly and no write operations can occur.

Use it with your favorite AI tools

Connect this server to Cursor, Claude, VS Code, and more.

OpenAI Agents SDK sdk-python

Google ADK sdk-python

Pydantic AI sdk-python

Vercel AI SDK sdk-typescript