Sumo Logic MCP. Run deep log searches and manage infra from chat.
Gemini Works with every AI agent you already use
…and any MCP-compatible client
Just plug in your AI agents and start using Vinkius.
Sumo Logic connects your AI agent directly to your log and metric data. This server lets you manage logs, check metrics, and handle infrastructure tasks—all through natural chat commands.
You can run deep searches (`create_search_job`), monitor system health with time-series queries (`execute_metrics_query`), or even update collector configurations without logging into the console.
What your AI agents can do
Create hosted collector
Sets up a new collector in the cloud environment.
Create search job
Starts an asynchronous job to search logs across your platform.
Create source
Adds a new data stream or source within an existing collector.
The agent initiates background jobs to search logs across your infrastructure and fetches the results once complete.
You execute queries that retrieve time-series data about system performance and health.
The agent lists, creates, or deletes collectors to control where your logs are ingested from.
You manage the specific data sources within a collector, ensuring proper visibility and flow for your logs.
The agent lists or creates users to maintain secure access across your Sumo Logic organization.
Ask AI about this MCP
Supported MCP Clients
Gemini Waiting for input…
Sumo Logic MCP Server: 19 Tools for Observability
Use these tools to manage collectors, run complex queries, track metrics, and handle user administration directly through your AI client.
019ea609create hosted collector
Sets up a new collector in the cloud environment.
019ea609create search job
Starts an asynchronous job to search logs across your platform.
019ea609create source
Adds a new data stream or source within an existing collector.
019ea609create user
Adds a new user account to the organization's directory.
019ea609delete collector
Permanently removes an entire data collection endpoint.
019ea609delete search job
Stops a running search job to free up resources and prevent billing issues.
019ea609delete source
Removes a specific data source from a collector.
019ea609delete user
Deactivates or removes an existing user account.
019ea609execute metrics query
Runs a query to retrieve time-series data about system performance.
019ea609get collector
Retrieves detailed information for one specific collector ID.
019ea609get search job messages
Fetches the raw, individual log messages from a completed search job.
019ea609get search job records
Gets an aggregated summary of data records from a finished search job.
019ea609get search job status
Checks if a running log search job is complete or still processing.
019ea609get source
Retrieves details for one specific data source within a collector.
019ea609list collectors
Displays all installed and hosted collectors connected to your account.
019ea609list sources
Shows every active data source tied to a specific collector.
019ea609list users
Lists all user accounts currently in the organization.
019ea609update collector
Changes settings for an existing data collection endpoint.
019ea609update source
Modifies the parameters of a specific, existing log source.
Choose How to Get Started
Build a custom MCP for your own tools, or connect a ready-made integration from our catalog.
Build Your Own
Turn any API into an MCP. Import a spec, define Agent Skills, or deploy with MCPFusion.
- Import from OpenAPI, Swagger, or YAML specs
- Create Agent Skills with progressive disclosure
- Deploy to edge with MCPFusion framework
- Built in DLP, auth, and compliance on every call
- Real time usage dashboard and cost metering
- Publish to catalog or keep private
Make Your AI Do More
Start with Sumo Logic, then connect any of our 4,700+ other servers whenever your AI needs more. One click, no limits.
- Use this MCP plus 4,700+ others, all in one place
- Add new capabilities to your AI anytime you want
- Every connection is secured and compliant automatically
- Track usage and costs across all your servers
- Works with Claude, ChatGPT, Cursor, and more
- New servers added to the catalog every week
What you can do with this MCP connector
Your AI client connects your agent directly to your log and metric data stream through Sumo Logic. This server lets you manage everything from deep log searches to core infrastructure tasks—all using plain chat commands. You don't gotta jump between dashboards just to find an error code or check a system status.
The agent handles it all.
Deep Log Searches
When you need to dig into huge datasets, the agent runs background jobs for deep log searches by calling create_search_job. It doesn’t give you results right away; that's how these things work. To see what's going on with that job, you check its status using get_search_job_status until it says it's done.
Once the search is complete, you can pull the raw logs individually with get_search_job_messages, or you can get a summary record count by running get_search_job_records. If that job runs too long and costs you dough, you gotta hit delete_search_job to stop it.
System Monitoring & Metrics
If you're checking system health, the agent executes metrics queries using execute_metrics_query. You feed it a query, and it spits out time-series data about how your system is performing. That’s where you monitor performance without writing complex dashboard filters.
Infrastructure Control: Collectors and Sources
Managing your log ingestion points—your collectors and sources—is straightforward. To see what's connected, the agent lists all installed or hosted collectors by running list_collectors. You can grab detailed info on a specific collector using get_collector for its ID, or you can set up a whole new data endpoint in the cloud environment with create_hosted_collector.
If something changes with an existing setup, you'll use update_collector; and if that entire endpoint is trash, you delete it permanently with delete_collector.
For the specific streams inside those collectors, the agent manages sources. You can view every active data stream tied to a collector using list_sources. To get details on one source, use get_source. If you gotta change the parameters of an existing log feed, run update_source. Need to add a whole new data feed? Use create_source.
And if that specific source is done, delete it with delete_source.
User and Access Management
The agent keeps your organization secure by handling user accounts. You can see everyone currently set up using list_users. If you need to bring someone on board, use create_user. When an employee leaves or loses access, you can deactivate their account with delete_user.
It's simple: instead of running commands in a console and getting lost in the documentation, you just tell your AI client what job needs doing. It runs the command—whether it’s listing all collectors, checking a metric query, or pulling raw log messages—and hands you the answer. You get full observability without leaving plain chat.
How Sumo Logic MCP Works
- 1 Subscribe to the server and provide your Sumo Logic Access ID, Key, and API URL.
- 2 Tell your AI client what you need (e.g., 'List all my collectors').
- 3 The agent executes the necessary tool call—like
list_collectors—and gives you the raw output.
The bottom line is: Your AI acts as a single command layer over your entire log infrastructure, running tools directly.
Who Is Sumo Logic MCP For?
This tool is for people who live in the terminal or IDE. It's for the ops engineer tired of clicking through five different dashboards to find one error log at 2 a.m. You need direct, programmatic control over observability data and infrastructure management.
Runs create_search_job to instantly search for production errors and checks collector health using list_collectors, all without leaving the chat interface.
Monitors system metrics by executing execute_metrics_query and manages data ingestion sources by calling create_hosted_collector.
Runs quick, targeted log queries to investigate potential threats or uses list_users to audit user permissions.
What Changes When You Connect
- Check collector health instantly. Instead of navigating the console, run
list_collectorsto see every installed or hosted endpoint at a glance. - Analyze massive data sets quickly. Use
create_search_jobfor deep log analysis and then poll its status withget_search_job_status. The agent handles the wait time. - Monitor performance without leaving chat. Running
execute_metrics_querypulls system health metrics directly, bypassing complex dashboard navigation. - Maintain governance easily. You can manage user access using
list_users, or tighten data flow by runningcreate_sourceif a new log stream is needed. - Control infrastructure on demand. Need to delete a collector? Use
delete_collector. The agent handles the API calls, saving you manual CLI work.
Real-World Use Cases
Investigating intermittent production errors
The error log only appears sporadically. You ask your agent to 'Search for connection failure logs from last hour.' The agent runs create_search_job and, when you confirm it's done, uses get_search_job_records to give you the aggregated pattern of the failures.
Onboarding a new application stream
A team deploys a new service. Instead of logging into the UI, you tell your agent 'Add logs from my new API endpoint.' The agent runs list_collectors to confirm the target and then executes create_source, ensuring data flow immediately.
Auditing user access after a security incident
Suspicion of unauthorized access. You prompt your agent with 'Show me all active users.' The agent responds by running list_users and providing the full roster, helping you immediately pinpoint who needs access revoked via delete_user.
Debugging slow query performance
A key dashboard is running slowly. You ask your agent to 'Check the status of search job job_XYZ.' The agent runs get_search_job_status. If it's stuck, you can then use delete_search_job if the job times out.
The Tradeoffs
Manual API parameter juggling
Copying and pasting complex query strings or needing to remember specific collector IDs into a separate terminal window.
→
Tell your agent the goal—'Find all errors in my staging environment.' The agent handles querying list_collectors internally to find the right ID, then runs create_search_job with the correct scope.
Misunderstanding job lifecycle
Running create_search_job and expecting instant results. The log data is too big for a single pull.
→
Always remember that search jobs are asynchronous. Run get_search_job_status first to confirm completion before trying to use get_search_job_records.
Over-relying on the UI for structure
Having to manually update a source because its log format changed, requiring multiple clicks across different configuration tabs.
→
Use update_source. Just tell your agent, 'Update the API logs from service X to include field Y.' The agent runs the precise tool call.
When It Fits, When It Doesn't
Use this server if you need to run specific, deep, programmatic commands against your infrastructure. This is for troubleshooting, auditing, and automation—the stuff that breaks when people rely only on dashboards. Don't use it if all you want is a simple overview; stick to the visual dashboarding tools for that.
You must use this server if: 1) You need to execute metrics queries (execute_metrics_query). 2) You need to manage infrastructure (e.g., list_collectors, create_hosted_collector). 3) Your task involves multi-step processes like searching logs (using the sequence of create_search_job -> get_search_job_status -> get_search_job_messages).
You shouldn't rely on it if: You just want to view a static report or check who is online. For those simple reads, a dedicated dashboard client is faster and less complex than managing API credentials via the agent.
Independent Platform Disclaimer: Vinkius is an independent platform and is not affiliated with, endorsed by, sponsored by, verified by, or otherwise authorized by Sumo Logic. All third-party trademarks, logos, and brand names are the property of their respective owners. Their use on this website is strictly for informational purposes to identify service compatibility and interoperability.
VINKIUS INFRASTRUCTURE
Cloud Hosted
Managed infra
V8 Isolated
Sandboxed per request
Zero-Trust Proxy
No stored credentials
DLP Enforced
Policy on every call
GDPR Compliant
EU data residency
Token Compression
~60% cost reduction
Works with Claude, ChatGPT, Cursor, and more
The Model Context Protocol standardizes how applications expose capabilities to LLMs. Instead of operating in isolation, your AI gains direct access to external platforms, live data, and real-world actions through secure, standardized connections.
This server provides 19 capabilities that interface natively with Claude, ChatGPT, Cursor, and any MCP client. No middleware. No custom integration required.
Available Capabilities
Finding an error log shouldn't take five clicks across three different tabs.
Today, finding one specific error requires you to navigate from the main dashboard to the 'Collectors' tab, find the right ID, switch over to the 'Sources' view, then select a time range. You copy the filters, open another window for metrics, and start guessing where the failure happened.
With this MCP server, your agent handles it all in one prompt. Tell it what you need—like running `create_search_job` for 'timeout errors.' It manages the IDs, runs the query, and gives you a clean result set without you touching the console.
Sumo Logic MCP Server: Get raw data with specific tools.
You used to have to run multiple API calls—one for the job ID, another for the status, and a third one just to get the raw log messages. It was tedious, error-prone copy-pasting between terminals.
Now, your AI client runs `get_search_job_messages` directly after confirming completion. You ask for the data; it delivers the full payload. That's the difference: direct action, zero context switching.
Common Questions About Sumo Logic MCP
How do I check if my log search job is running using `get_search_job_status`? +
Call get_search_job_status with the job ID. The response tells you if it's 'running,' 'queued,' or 'complete.' If it says 'running,' just wait, don't re-query immediately.
What is the difference between `get_search_job_messages` and `get_search_job_records`? +
get_search_job_records gives you aggregated data (metrics, counts). get_search_job_messages provides the raw log line content—the actual text of what happened.
Can I list all my collectors using `list_collectors`? +
Yes. Running list_collectors shows every installed and hosted collector ID, letting you know exactly where your data is currently flowing from.
If I change a log format, which tool should I use: `update_source` or `create_source`? +
Use update_source. This modifies the parameters of an existing source. Only use create_source if you are adding a completely new data stream.
How do I use `execute_metrics_query` to check system performance? +
It runs time-series data analysis on your infrastructure metrics. You provide the specific metric name and time range; it returns quantitative measurements, letting you see health trends rather than just raw log lines.
What should I know before running `delete_collector`? +
Running delete_collector permanently removes the entire collector from your environment. This action immediately stops all data ingestion flowing through it, so confirm you no longer need the endpoint first.
How do I check which users are active in my organization using `list_users`? +
It pulls a list of every active user account tied to your Sumo Logic environment. This is key for verifying current permissions before you need to create, update, or remove any access credentials.
What information does `create_hosted_collector` require? +
You must provide core details like the collector name, associated source type, and required resource size. This process establishes a brand-new point of data collection for monitoring your systems.
Use it with your favorite AI tools
Connect this server to Cursor, Claude, VS Code, and more.
More in this category
Google Cloud Logging Stream
This MCP does exactly one thing: it queries logs using Google Cloud Logging. That's its only function, and nothing else. Incredible for giving your AI secure observability.
Traefik Proxy
Monitor and manage your Traefik Proxy infrastructure — inspect routers, services, and middlewares directly from your AI agent.
Radar
Equip your AI with geolocation tools — convert coordinates to addresses, map intellectual territories, calculate routes, and perform IP-based lookups.
You might also like
JVZoo
Manage products, sales, and affiliates via JVZoo API.
XML JSON Converter
Parse legacy systems easily. Deterministically convert massive XML, SOAP, or RSS feeds into clean JSON (and back) without LLM hallucinations.
Roblox Experience Discovery
The definitive server for Roblox experiences — search games, track live players, and discover trends via AI.