Manage Physical and Digital Access from Chat. 
Claude 
ChatGPT 
Cursor 
Gemini 
Windsurf 
VS Code 
JetBrains 
Vercel
Gemini Works with every AI agent you already use
…and any MCP-compatible client
Connect to your AI in seconds.
HID Origo MCP lets your AI agent manage physical and digital access for an entire campus or organization. You can list every issued mobile identity, monitor door readers across sites, check user group memberships, and instantly review system audit logs—all through natural conversation.
What your AI can do
Create enrollment invitation
Sends a mobile identity invitation to a user, starting the process of them activating their digital card.
Get audit log events
Pulls the complete history of administrative actions and access events for forensic review.
Get mobile identity
Retrieves specific details about a single issued digital card or mobile identity.
Retrieve detailed records of administrative actions or system access events for security reviews.
List and check the operational status of all connected physical readers and door controllers.
See a full list of issued digital cards, track their activation status, or find details for one specific credential.
Pull up user files to check group memberships and send out enrollment invitations for new mobile identities.
Get metadata about your entire HID Origo setup, like configuration details and overall organization info.
Ask an AI about this
Compatible AI Apps
OAuth 2.0 Compatible Gemini Waiting for input…
HID Origo: Identity & Access Management (11 Tools)
These 11 tools allow your agent to list users, check credentials, pull audit reports, and manage the entire lifecycle of physical and digital access.
Make your AI actually useful.
Add this MCP to Claude, Cursor, or Windsurf and your AI stops guessing. It gets real tools to look things up, take action, and handle the stuff you keep doing by hand.
Start using HID Origo on VinkiusCreate Enrollment Invitation
Sends a mobile identity invitation to a user, starting the process of them activating their digital card.
Get Audit Log Events
Pulls the complete history of administrative actions and access events for forensic...
Get Mobile Identity
Retrieves specific details about a single issued digital card or mobile identity.
Get Organization Info
Shows the core metadata and configuration settings for your entire HID Origo setup.
Get User Details
Pulls up a specific user's file to see their full account details, including group...
List Physical Credentials
Lists every physical access credential, like fobs or keycards, currently managed in the system.
List Identity Groups
Displays the names of identity groups used to define your access control policies.
List Identity Invitations
Shows a list of all outstanding and completed mobile identity enrollment invitations.
List Mobile Identities
Provides an overview and status report for all digital cards that have been issued...
List Access Readers
Lists all physical IoT readers and door controllers connected within the HID Origo...
List Identity Users
Retrieves a directory listing of every user account managed within your HID Origo...
Connect to your AI in seconds. Security and governance baked right in.
Pick your AI client below to get set up. Just create a Vinkius account, subscribe, and you're instantly up and running. We handle the entire backend infrastructure, delivering out-of-the-box support for HTTPS Streamable, SSE, and OAuth2—zero messy routing required.
Claude AI
Open Claude Settings
Go to claude.ai, click your profile icon, then navigate to Customize → Connectors.
Add Custom Connector
Click the "+" button and select Add custom connector. Paste your Vinkius endpoint URL:
https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp
Replace [YOUR_TOKEN_HERE] with your token
from cloud.vinkius.com. For OAuth-protected servers, expand
Advanced settings to add credentials.
Start a conversation
Open a new chat. The HID Origo integration is available immediately — no restart needed.
Choose How to Get Started
Build a custom MCP for your own tools, or connect a ready-made integration from our catalog.
Build Your Own
Turn any API into an MCP. Import a spec, define Agent Skills, or deploy with MCPFusion.
- Import from OpenAPI, Swagger, or YAML specs
- Create Agent Skills with progressive disclosure
- Deploy to edge with MCPFusion framework
- Built in DLP, auth, and compliance on every call
- Real time usage dashboard and cost metering
- Publish to catalog or keep private
Make Your AI Do More
Start with HID Origo, then connect any of our 5,000+ other servers whenever your AI needs more. One click, no limits.
- Use this MCP plus 5,000+ others, all in one place
- Add new capabilities to your AI anytime you want
- Every connection is secured and compliant automatically
- Track usage and costs across all your servers
- Works with Claude, ChatGPT, Cursor, and more
- New servers added to the catalog every week
Independent Platform Disclaimer: Vinkius is an independent platform and is not affiliated with, endorsed by, sponsored by, verified by, or otherwise authorized by HID Origo. All third-party trademarks, logos, and brand names are the property of their respective owners. Their use on this website is strictly for informational purposes to identify service compatibility and interoperability.
VINKIUS INFRASTRUCTURE
Cloud Hosted
Managed infra
V8 Isolated
Sandboxed per request
Zero-Trust Proxy
No stored credentials
DLP Enforced
Policy on every call
GDPR Compliant
EU data residency
Token Compression
~60% cost reduction
Works with Claude, ChatGPT, Cursor, and more
The Model Context Protocol standardizes how applications expose capabilities to LLMs. Instead of operating in isolation, your AI gains direct access to external platforms, live data, and real-world actions through secure, standardized connections.
This connection provides 11 powerful capabilities that interface natively with Claude, ChatGPT, Cursor, and other compatible AI platforms. No middleware. No custom integration required.
Checking Access Status is Usually a Messy Clickfest
Today, checking who can access what involves jumping between at least three separate portals: the user directory to find IDs, the physical asset management system to check readers, and then the identity platform just to see if their digital card is active. You're copying credentials from one tab into another, making it slow and prone to human error.
With this MCP, you tell your agent what you need—for example, 'Show me all inactive mobile identities for Site Delta.' Your agent handles the multi-system query instantly and gives you a clean, summarized list. It's done in one conversation.
Manage Identity Status with HID Origo MCP
You no longer need to manually navigate the complex menus just to see if an employee was invited to enroll for their digital card, or to list all users who are currently active. You can ask your agent to run `list_identity_users` and then check outstanding invitations using `list_identity_invitations`—all in sequence.
The difference is that you go from spending time gathering data across multiple dashboards to getting a direct, conversational answer right when you need it.
What your AI can actually do with this
This MCP connects your cloud-based identity platform to any compatible AI client, giving you full command over physical access and digital credentials without logging into a complex web portal. Instead of hunting through dashboards for status updates, you talk to your agent. It handles everything from checking the current operational state of all IoT readers on site to listing every user group defined in your tenant.
You can even initiate mobile identity enrollment by simply requesting it. If you're using Vinkius, this MCP adds deep access control intelligence directly into your existing AI workflow. It’s about treating access management like a conversation; asking the right questions and getting immediate, actionable answers.
019d75b1-0eed-71fa-a589-9b5acad78f59 
Here's how it actually works
The bottom line is that your AI client acts like a dedicated, conversational administrator for all things identity and access control.
Subscribe to this MCP in Vinkius and provide your required client credentials (Client ID, Client Secret, Organization ID).
Tell your AI agent what you need—for example, 'List all active mobile identities' or 'What is the status of readers at Site B?'
The agent executes the necessary tool call against HID Origo and delivers the structured data back to you in plain language.
Who is this actually for?
This is for the Facility Manager tired of calling security just to check reader status. It’s for the Security Engineer who needs immediate audit trails across multiple sites. And it's for the IT Admin that doesn't have time clicking through provisioning portals.
Uses this to instantly check the status of readers and mobile credentials across multiple physical locations.
Automates auditing access events, tracking policy changes, and identifying potential gaps in user permissions.
Streamlines new employee onboarding by listing users and sending out enrollment invitations for digital credentials.
What Changes When You Connect
Audit trails are instant. Instead of digging through system logs manually, you can call get_audit_log_events to retrieve a history of administrative or access actions immediately for compliance reviews.
Monitor physical assets at scale. You can use list_access_readers to get the live operational status of every reader and door controller across all sites, saving hours of site visits.
Simplify onboarding. When a new employee starts, you don't have to manually invite them; your agent handles it by calling create_enrollment_invitation right from the chat interface.
Unified view of credentials. You can use list_mobile_identities and list_physical_credentials together to get one place that shows both a user's physical keycard status and their digital card status.
Quick user lookups. Need to know if 'Jane Doe' is in the correct group? Use get_user_details to pull up her file and verify her exact identity group membership instantly.
See it in action
Investigating Unauthorized Access
A security engineer notices unusual access patterns. They ask their agent to run get_audit_log_events for the last 48 hours, immediately locating a specific door controller's activity and confirming if the credentials used belonged to an active user.
Mass Onboarding Event
An IT administrator is onboarding ten new users. Instead of logging into a batch portal ten times, they ask their agent to list all current users with list_identity_users, and then loop through the IDs to call create_enrollment_invitation for everyone.
Facility Hardware Check
A facility manager gets a report that a door reader is offline. They ask their agent, which runs list_access_readers, instantly confirming the device's status and pinpointing exactly which site it belongs to.
Compliance Review Prep
During an audit, a security officer needs proof of who has access. They ask their agent to list all identity groups (list_identity_groups) and cross-reference that with the physical credentials using list_physical_credentials.
The honest tradeoffs
Guessing User IDs
Trying to check a user's status by guessing an ID number or searching through old emails for the correct identifier.
First, use list_identity_users to pull up all available user accounts. Once you have the correct ID, then run get_user_details to get accurate information.
Mixing Credentials
Assuming that if a user has physical access (a badge), they automatically have digital credentials (mobile identity).
Use the MCP's specific tools. Check list_physical_credentials for hardware status, and use list_mobile_identities to verify the digital card status separately.
Ignoring Audit Logs
Solving a security issue without checking who was logged in or what actions were taken right before the problem started.
Always check get_audit_log_events after any major change, like adding a new user group or changing access policies.
When It Fits, When It Doesn't
Use this MCP if your primary need is to gather data on identity lifecycle and physical asset status. You should use it when you need to know who has what access right now—whether that's a user, an active digital card, or a working door reader. Don't use this if your goal is to enforce complex, real-time policy decisions (e.g., 'If User X is in Group A AND the Reader Y reports failure, then block Z'). For that level of logic enforcement, you need an external Identity Orchestration Layer that consumes data from tools like get_user_details and list_access_readers. This MCP gives you the perfect read-only view and basic write capabilities (like invitations), but it isn't a policy engine itself.
Questions you might have
How do I find my HID Origo Client ID and Secret? +
Log in to the HID Origo Management Portal, navigate to the System Accounts section, and create a new system account. You will be provided with a Client ID and Client Secret for that account.
What is the Organization ID? +
The Organization ID is a unique UUID that identifies your company in the HID Origo cloud. You can find it in the Management Portal under the Organization settings or profile section.
Can I send mobile identity invitations via the AI agent? +
Yes! Use the create_enrollment_invitation tool. You must provide a JSON string containing the userId and the partNumber for the mobile identity you wish to issue.
Is the integration secure for access control data? +
Absolutely. The integration uses industry-standard OAuth 2.0 Client Credentials over HTTPS. Your credentials are encrypted and stored securely within the Vinkius Cloud infrastructure.
If I use the `get_audit_log_events` tool, what kinds of administrative actions can I track? +
The tool retrieves a complete history of administrative actions and access events. You can pinpoint everything from policy changes or user account modifications to specific credential assignments across your entire system.
When I call `get_user_details`, what comprehensive profile information do I receive for that specific User ID? +
It returns a detailed profile including the user's assigned groups, current status, and all linked physical and mobile credentials. It gives you one place to check their full access scope.
Does listing readers using `list_access_readers` provide real-time operational status for every connected device? +
Yes, the list provides immediate status data for all IoT readers and door controllers. This lets you quickly identify which hardware is online, reporting normally, or if it's disconnected.
Are there rate limits when running `list_mobile_identities` to check issuance status? +
The MCP supports high-volume querying for standard use cases. You only run into limits if you attempt to pull massive, continuous data streams, which is rare.
We've already built the connector for HID Origo. Just plug in your AI agents and start using Vinkius.
No hosting. No infrastructure. No complex setup.
All 11 tools are live and waiting.
You're up and running in seconds.
Gemini Vinkius gives your AI agents access to the full catalog of app connectors, all fully managed, secure, and enterprise-ready. One subscription, every tool you need.
Built, hosted, and secured by Vinkius. You just connect and go.