Logto (Auth Platform) MCP. Manage who has access, roles, and organizations.
Logto (Auth Platform) MCP lets you manage user identities, roles, and organizational structures directly from your AI agent. Need to audit who has access or update a profile? You can list users, create new API resources, assign granular permissions using roles, and even handle complex multi-tenant organization setups. It's full identity control in one place.
Claude 
ChatGPT 
Cursor 
Gemini 
Windsurf 
VS Code 
JetBrains 
Vercel Give Claude and any AI agent real-world access
You can get details for a specific user, list all users in the tenant, or update basic profile information like names and avatars.
Build out multi-tenant environments by listing existing organizations, creating new ones, and viewing which members belong to them.
Create global roles, list available API resources, and assign specific permissions to users or groups.
Send verification codes via email or SMS, verify a user's password strength, or bind/remove Multi-Factor Authentication factors for account security.
Retrieve your own account details and update primary emails, passwords, or extended profile information using end-user tokens.
Ask an AI about this
Waiting for input…
What AI agents can do with Logto (Auth Platform) MCP - 23 Tools
These tools give you direct access to Logto's backend functions, letting your agent perform any identity management action needed.
Make your AI actually useful.
Add this MCP to Claude, Cursor, or Windsurf and your AI stops guessing. It gets real tools to look things up, take action, and handle the stuff you keep doing by hand.
Start using Logto (Auth Platform) MCPCreate Organization
Sets up an entirely new, isolated organizational structure within your Logto tenant.
Create Resource
Defines a brand new API resource that services will use to authorize specific...
Create Role
Builds and names a global role, which dictates what permissions users can inherit.
Delete User
Permanently removes a user account from the system.
Get User
Retrieves all specific details for any given Logto user ID.
List Mfa Verifications
Lists every MFA factor currently registered and associated with the current user's account.
Get My Account
Pulls your own profile data, including names and details, using end-user tokens.
List Organization Users
Fetches a roster of all users who are currently members of a specified organization.
List Organizations
Provides a list of every organizational container set up in the Logto tenant.
Remove Mfa Verification
Deletes an existing Multi-Factor Authentication factor from the user's profile for...
List Resources
Shows all existing API resources that are currently defined in your system.
List Roles
Retrieves a list of every global role available for assignment across the entire platform.
Send Verification Code
Triggers an email or SMS code delivery to verify user ownership of an account.
Update My Account
Updates basic personal information, such as changing your username or avatar image.
Update User
Modifies details for any existing user account in the tenant.
List User Roles
Shows exactly which roles have been assigned to a specific user ID.
List Users
Pulls a comprehensive list of every single user account in the Logto tenant.
Verify Password
Checks a password's validity to generate a temporary ID used for verification purposes.
Verify User Password
Verifies the strength and correctness of a user-supplied password using management credentials.
Bind Mfa Verification
Links a new Multi-Factor Authentication factor like TOTP or WebAuthn to the current...
Update My Account Primary Email
Changes or links the main primary email address associated with your own profile.
Update My Account Profile
Modifies extended personal details for your account, like physical addresses or...
Update My Account Password
Changes the password for your own user account.
Security and governance baked right in.
Pick your AI client below to get set up. Just create a Vinkius account, subscribe, and you're instantly up and running. We handle the entire backend infrastructure, delivering out-of-the-box support for HTTPS Streamable, SSE, and OAuth2—zero messy routing required.
Claude AI
Open Claude Settings
Go to claude.ai, click your profile icon, then navigate to Customize → Connectors.
Add Custom Connector
Click the "+" button and select Add custom connector. Paste your Vinkius endpoint URL:
https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp
Replace [YOUR_TOKEN_HERE] with your token
from cloud.vinkius.com. For OAuth-protected servers, expand
Advanced settings to add credentials.
Start a conversation
Open a new chat. The Logto (Auth Platform) integration is available immediately — no restart needed.
Choose How to Get Started
Build a custom MCP for your own tools, or connect a ready-made integration from our catalog.
Build Your Own
Turn any API into an MCP. Import a spec, define Agent Skills, or deploy with MCPFusion.
- Import from OpenAPI, Swagger, or YAML specs
- Create Agent Skills with progressive disclosure
- Deploy to edge with MCPFusion framework
- Built in DLP, auth, and compliance on each call
- Real time usage dashboard and cost metering
- Publish to catalog or keep private
Make Your AI Do More
Start with Logto (Auth Platform), then connect any of our 5,200+ other servers whenever your AI needs more. One click, no limits.
- Use this MCP plus 5,200+ others, all in one place
- Add new capabilities to your AI anytime you want
- Connections are secured and governed automatically
- Track usage and costs across all your servers
- Works with Claude, ChatGPT, Cursor, and more
- New servers added to the catalog weekly
Independent Platform Disclaimer: Vinkius is an independent platform and is not affiliated with, endorsed by, sponsored by, verified by, or otherwise authorized by Logto. All third-party trademarks, logos, and brand names are the property of their respective owners. Their use on this website is strictly for informational purposes to identify service compatibility and interoperability.
VINKIUS CLOUD
Cloud Hosted
Managed infra
V8 Isolated
Sandboxed per request
Zero-Trust Proxy
No stored credentials
DLP Enforced
Policy on each call
GDPR Compliant
EU data residency
Token Compression
~60% cost reduction
User access management used to feel like juggling fifty different dashboards.
Right now, updating user accounts means opening the admin panel, finding the user by email, clicking 'Edit Profile,' changing a field, and then saving. If you need to audit roles or check MFA status for ten people, that's ten separate logins and dozens of clicks.
With this MCP, your agent handles it all in one prompt. You tell your AI client what needs fixing—maybe listing users who lack the 'Admin' role—and it runs the necessary checks (`list_users` then `list_user_roles`) and spits out a clean report.
Achieving Full Identity Control with Logto (Auth Platform)
The ability to define new roles, such as 'Billing Viewer' or 'Support Agent,' used to require coordination between engineering and security teams just to create a permission template. Now, you can use `create_role` directly through the MCP.
This means your team moves from manual audits and slow ticket resolution to instant, self-service identity management right inside your coding environment.
What Logto (Auth Platform) MCP does for your AI
This MCP gives you complete control over user identities and access rules within your Logto authentication system. Instead of jumping through multiple dashboards to manage who can do what, your agent handles the heavy lifting. You can look up specific users by ID or list everyone currently registered. If a team needs tighter security, you can create new global roles and API resources to enforce precise permissions across the board.
For large companies using multi-tenant setups, this MCP lets you build and manage entire organizations, tracking memberships along the way. All of this is accessible through your AI client once you connect it via Vinkius, letting you automate complex identity workflows without writing boilerplate code.
019e38ba-5d7f-73a9-9a9a-4ced52526cb4 
How to set up Logto (Auth Platform) MCP
The bottom line is you manage complex auth infrastructure using natural conversation instead of logging into an internal dashboard.
Subscribe to this MCP on Vinkius and provide your Logto Management API credentials (Endpoint, App ID, and App Secret).
Your agent authenticates with the necessary keys, giving it full read/write access to your identity management system.
You prompt your AI client, telling it exactly what needs changing—like 'Create a role called X' or 'List all users in organization Y.''
Who uses Logto (Auth Platform) MCP
This MCP is built for security engineers and developers who deal with user identity daily. If you're tired of manually auditing role assignments or updating test accounts across multiple dashboards, this saves hours.
Auditing user lists, checking resource permissions, and ensuring compliance by verifying passwords or deleting old user accounts.
Programmatically setting up new multi-tenant organizations and defining initial roles for deployment environments.
Managing test users, creating dummy API resources for testing endpoints, or updating user profiles during local feature development.
Benefits of connecting Logto (Auth Platform) MCP
Instead of manually calling APIs to check credentials, you can ask your agent to run a password verification using verify_user_password and get an immediate status update.
Need to audit permissions? You can list all users and then use list_user_roles to instantly see every role assigned to any account.
When setting up multi-tenant environments, you don't have to manually create structures; just call create_organization, and your agent handles the initial setup.
For security cleanup, if an employee leaves, your agent can run a simple prompt that executes delete_user right away, ensuring immediate deprovisioning.
You get granular control over system access by defining new permissions. Use create_role to build specific job titles and assign them using the MCP.
Logto (Auth Platform) MCP use cases
Auditing User Access After a Breach
A security engineer notices unusual activity. They prompt their agent: 'List all users who have access to API resources for finance.' The agent automatically runs list_resources and then checks the permissions, giving the engineer an immediate report on potential risks.
Onboarding a New Department
A manager needs to set up a new department. They tell their agent: 'Create a new organization called Marketing.' The MCP runs create_organization, and the agent confirms the new tenant is ready for users.
Logto (Auth Platform) MCP tradeoffs
What to watch out for, and the recommended way to handle each one.
Treating it like a general database tool
Asking the agent to 'update user X' without specifying what kind of update. The system doesn't know if you mean name, password, or role.
Be specific: If you want to change an avatar, prompt for update_user and specify the field. To change a password, use update_my_account_password.
Assuming access rights
Trying to list all users without first checking if the account has permission to read user data. The request will fail or return incomplete info.
Always start by running list_roles and understanding what permissions your current service credentials possess before attempting large-scale operations.
When to use Logto (Auth Platform) MCP
Use this MCP if your core problem involves identity, access control (RBAC), or user lifecycle management. You need to know who can do what, and you must be able to programmatically enforce those boundaries.
Don't use this if you simply need to read static data that isn't tied to a user profile—for example, listing general product catalog items would require a different MCP. Also, if your goal is just basic messaging or simple document retrieval (like fetching articles), an identity platform like this won't help; look for a message routing or knowledge base MCP instead. This tool is strictly about managing the users and their permissions.
Frequently asked questions about Logto (Auth Platform) MCP
How do I list all users in my Logto tenant using the Logto (Auth Platform) MCP? +
You run the list_users tool. This immediately provides a comprehensive roster of every account, letting you see who needs attention or auditing.
Can I reset a user's password with the Logto (Auth Platform) MCP? +
Yes. You can use send_verification_code to trigger an email or SMS code delivery, allowing the user to securely reset their credentials.
What is the difference between `get_user` and `list_users` in the Logto (Auth Platform) MCP? +
list_users gives you a high-level list of all accounts. get_user requires a specific ID to pull deep, detailed information for just one person.
Do I need elevated permissions to use the Logto (Auth Platform) MCP? +
You must provide API credentials that grant management access. The agent uses these credentials to perform actions like create_role or delete_user.
Can I see which roles are assigned to a specific user? +
Yes! Use the list_user_roles tool with the target User ID to retrieve all global roles associated with that account.
Is it possible to manage multi-tenant organizations through this server? +
Absolutely. You can use list_organizations to see existing ones, create_organization to add new ones, and list_organization_users to audit membership.
Can I update user profiles or suspend accounts? +
Yes, the update_user tool allows you to modify the username, name, avatar, and the isSuspended status of any user.