# Bitwarden MCP for AI Agents MCP

> Bitwarden connects your organization’s security posture directly to your AI agent. Instead of clicking through multiple web portals for compliance checks, you can ask natural questions about who has access to what, review security policies, and audit every change that happened in the vault. It gives security teams immediate visibility into collections, user groups, member status, and detailed event logs.

## Overview
- **Category:** fort-knox
- **Price:** Free
- **Tags:** password-manager, vault-management, audit-logs, identity-management, security-audit

## Description

Need to keep up with organizational security? This MCP lets your AI agent talk directly to your Bitwarden organization data. You bypass the complex web interface entirely. Instead of manually navigating pages to audit who can access what or checking policy compliance against a checklist, you just ask your agent a question. For example, you can instantly get a list of all groups and see which users belong to them. Your AI client handles everything else, pulling detailed event logs to show exactly when an admin changed a setting or when a collection was created. Because Vinkius hosts this MCP, you connect once to your preferred AI agent—whether it's Claude, Cursor, or another compatible client—and gain full visibility across all those critical security resources.

## Tools

### list_collections
Lists every shared collection in your organization's vault.

### list_events
Retrieves detailed logs of administrative actions and security-related activity.

### list_groups
Lists all defined user groups within the organization.

### list_members
Retrieves a roster of every current member in your organization.

### list_policies
Shows all active security and administrative policies set up for the vault.

## Prompt Examples

**Prompt:** 
```
What policies are currently restricting access in the finance collections?
```

**Response:** 
```
**Policies Report: Finance Collections**

We found 3 active policies affecting your financial data:

*   **Policy ID F-001:** Requires MFA for all members. (Active)
*   **Policy ID F-002:** Restricts export to Admin roles only. (Active)
*   **Policy ID F-003:** Mandates annual password rotation. (Scheduled: Q4 2025)

You should check the full details on Policy F-002, as it’s critical for compliance.
```

**Prompt:** 
```
Show me all users in the 'Engineering' group and their current permissions.
```

**Response:** 
```
**Group: Engineering**

*   **Members:** Alice (Owner), Bob (Admin), Charlie (User)
*   **Permissions Summary:** Members have read/write access to collections, but cannot modify policies.

***Note:*** *Based on the current system configuration, only users in 'Admins' can modify group permissions. Do you want me to check the full list of admin roles?*
```

**Prompt:** 
```
What happened with our audit logs yesterday?
```

**Response:** 
```
**Audit Trail Summary (2026-06-11)**

*   **Event Count:** 14 actions recorded.
*   **Key Activities:** 3 user invitations, 1 policy update by 'admin@corp.com', and 7 collection read attempts.
*   **Highlight:** The policy update for MFA was logged at 9:05 AM EST. Would you like to see the specific details of that change?
```

## Capabilities

### Audit organization collections
The agent reads and lists every collection in the vault to show how shared items are organized.

### Review administrative event logs
You pull detailed records of security activity, letting you monitor who did what and when within the organization.

### Verify user membership status
The agent compiles a list of all organizational members to check seat utilization and current access rights.

### Manage team-based group permissions
You query the system for user groups, allowing you to understand team-level access controls quickly.

### Check active security policies
The agent inspects current organizational policies to ensure they meet established compliance standards.

## Use Cases

### Investigating a Data Leak Incident
A team member reports suspicious activity. Instead of spending hours digging through logs, you ask your agent to run 'list_events' and immediately see all recent administrative actions related to the compromised collection.

### Annual Compliance Audit Prep
The compliance officer needs proof that all required security policies are in place. You use the MCP to check every active policy via 'list_policies' and generate a report showing adherence across groups and members.

### Onboarding New Department Staff
When a new department starts, you need to ensure their access is minimal. You use the MCP to list all current groups ('list_groups') and check user membership ('list_members') before granting any elevated permissions.

### Restructuring Shared Data Sets
The company merges two divisions, requiring a review of shared data. You use 'list_collections' to map out all current collections and then audit them against the policies ('list_policies') before moving items.

## Benefits

- Stop manually sifting through dashboards. Instead of checking multiple tabs to verify member status or group assignments, you ask your agent to list members and groups in one query.
- Never miss a compliance flag again. By running the 'list_policies' tool via your AI client, you ensure every security standard is documented and visible for audit reporting.
- Drastically cut down investigation time. Using 'list_events' lets you instantly pull detailed activity logs to trace back exactly who made a policy change or accessed sensitive data.
- Gain full visibility into data sharing. Running 'list_collections' shows precisely how your vault items are grouped and shared across teams, preventing accidental exposure.
- Automate access control checks. You can use the tools to verify both group permissions ('list_groups') and individual user seats ('list_members'), making IT cleanup faster.

## How It Works

The bottom line is you skip the dashboard navigation and talk directly to your security infrastructure.

1. Subscribe to this MCP and provide your Bitwarden Client ID and Secret credentials.
2. Connect the service to your AI client, giving it permission to access your organization's data.
3. Ask your agent a natural language question, like 'Show me all policy changes last week,' and get an instant report.

## Frequently Asked Questions

**How does the Bitwarden MCP help with compliance reporting?**
The Bitwarden MCP allows your AI agent to gather all necessary evidence for an audit in one go. It checks active policies, reviews event logs, and verifies member access, giving you a comprehensive report without manual data gathering.

**Can I use the Bitwarden MCP to check who belongs to which group?**
Yes. The agent can query user groups and then list all members associated with those groups. This helps IT Ops quickly map out team access rights without navigating multiple screens.

**What if I need to audit data sharing across different teams?**
You use the MCP's collection listing capability to see every shared resource group in your vault. You can then check which policies govern those collections, providing a full picture of data segmentation.

**Is this Bitwarden MCP better than manually checking logs?**
Absolutely. Instead of viewing raw log entries, the agent processes them for you. It highlights key actions and summarizes event logs, saving hours of manual investigation time.

**Does the Bitwarden MCP support multiple organizations or only one?**
It connects to a single specified organization using your client credentials. This ensures that all audit trails and resource reports are accurate for the defined scope.