Terraform Cloud (HCP) MCP. Orchestrate complex infrastructure changes via chat.

Q: How do I check if a workspace is locked using the Terraform Cloud (HCP) MCP?

You can use listworkspaces to see the current status. If you need to proceed despite the lock, your agent can execute forceunlockworkspace.

Q: Can I retrieve outputs from old state versions with Terraform Cloud (HCP) MCP?

Yes. The tool getstateversionoutputs lets you pull specific output values from any historical state version, which is critical for auditing.

Q: How does the Terraform Cloud (HCP) MCP handle user access?

You manage access using tools like addteamuser, removeteamuser, and addteamworkspaceaccess to maintain strict role-based governance.

Q: What if I need to update a team name? Can the Terraform Cloud (HCP) MCP do that?

Yes, you can modify existing team details using the updateteam tool. This keeps your organization's structure current without manual intervention.

Terraform Cloud (HCP) allows your AI agent to manage your entire infrastructure lifecycle using natural language. You can list organizations, create projects, trigger runs, and extract specific state outputs directly from the cloud without opening a dashboard. It puts high-level governance controls and detailed run monitoring right into your chat window.

Claude

ChatGPT

Cursor

Gemini

Windsurf

VS Code

JetBrains

Vercel

See Vinkius in Action

Give Claude and any AI agent real-world access

Manage Organization Structure

You can list, create, and delete entire organizations or projects to maintain high-level governance.

Control Workspace Deployments

The agent can manage workspace locks, apply variable sets, and associate run tasks to specific workspaces for deployment control.

Orchestrate Infrastructure Runs

Trigger new runs, plan changes, or discard incomplete plans directly through natural language commands.

Extract State Data and Policies

Retrieve current state versions and pull specific output values to use in downstream analysis or automation scripts.

Enforce Governance Rules

Create policies, set up variable sets, and manage user access controls across teams and organizations.

Ask an AI about this

Waiting for input…

AI Agent

What AI agents can do with Terraform Cloud (HCP) with 36 Tools

These tools give your agent full control over provisioning, managing workspaces, enforcing policies, and auditing the entire infrastructure lifecycle within Terraform Cloud (HCP).

Make your AI actually useful.

Add this MCP to Claude, Cursor, or Windsurf and your AI stops guessing. It gets real tools to look things up, take action, and handle the stuff you keep doing by hand.

Start using Terraform Cloud (HCP) MCP

Add Team User

Adds a user to an existing team within your organization.

Add Team Workspace Access

Grants specific teams access permissions for a particular workspace.

Apply Run

Applies the planned changes from a run, committing them to your infrastructure.

Apply Variable Set To Workspace

Configures a workspace by applying an entire set of defined variables.

Associate Run Task To Workspace

Links a specific run task to a target workspace, ensuring proper execution flow.

Cancel Run

Stops an active or pending infrastructure run immediately.

Create Notification Configuration

Sets up alerts and notifications for changes happening within a workspace.

Create Organization

Establishes an entirely new, top-level organizational boundary in your cloud account.

Create Policy Set

Creates a group of governance policies that enforce specific architectural rules.

Create Policy

Defines a single, reusable policy to check for compliance or mandate specific...

Create Project

Sets up a new container project under an existing organization structure.

Create Registry Module

Creates a private, self-contained module that doesn't rely on version control system (VCS) integration.

Create Registry Provider

Sets up and manages a private registry provider for resource management.

Create Run Task

Creates a specific, repeatable task that must be executed during an infrastructure...

Create Run

Starts a new instance of an infrastructure run, which can generate plans or apply...

Create State Version

Saves the current state output as a distinct, historical version for record-keeping.

Create Team

Creates a new team unit within your organization for role grouping and access...

Create Variable Set

Defines a collection of variables that can be consistently applied to multiple workspaces.

Create Workspace

Initializes a new, dedicated workspace for deploying specific infrastructure components.

Create Workspace Variable

Adds a single variable to an existing workspace, allowing custom input parameters.

Destroy Organization

Permanently deletes an entire organizational structure and all associated resources.

Discard Run

Aborts a run that is currently in progress or has not yet been finalized.

Explorer Query

Runs a comprehensive query across multiple workspaces to find specific data points...

Force Unlock Workspace

Overrides the normal locking mechanism to make a workspace available for changes when needed.

Get Current State Version

Retrieves the metadata identifying the most recent state version of a given workspace.

Get Plan Json

Fetches the detailed JSON output that represents exactly what changes will happen...

Get State Version Outputs

Retrieves all defined output values from a specific, historical state version of a...

List Audit Events

Pulls a list of critical governance events that occurred within the organization.

List Organizations

Lists all top-level organizations you have access to in your account.

List Projects

Retrieves a list of all projects defined within a specific organization.

List Teams

Lists all established teams and their membership within an organization.

List Workspaces

Shows every workspace that exists inside a designated organization or project.

Lock Workspace

Prevents any further changes to a workspace until the lock is explicitly released.

Remove Team User

Removes a specific user from membership in an existing team.

Safe Delete Workspace

Initiates the process to safely and permanently delete a workspace, handling...

Show Apply

Displays detailed information about a past or planned apply action.

Show Organization

Retrieves the full metadata and details for a specific organization.

Show Plan

Shows detailed information about a generated plan, detailing resource changes before...

Unlock Workspace

Releases the lock on a workspace, allowing it to be modified again after an incident...

Update Organization

Modifies existing details of an organization without recreating it.

Update Team

Updates the name, description, or membership of a team unit.

Upload Policy Code

Uploads custom code that will be evaluated by your governance policies.

Security and governance baked right in.

Pick your AI client below to get set up. Just create a Vinkius account, subscribe, and you're instantly up and running. We handle the entire backend infrastructure, delivering out-of-the-box support for HTTPS Streamable, SSE, and OAuth2—zero messy routing required.

Terraform Cloud (HCP) MCP is compatible with Claude

Claude AI

Open Claude Settings

Go to claude.ai, click your profile icon, then navigate to Customize → Connectors.

Add Custom Connector

Click the "+" button and select Add custom connector. Paste your Vinkius endpoint URL:

https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp

Replace [YOUR_TOKEN_HERE] with your token from cloud.vinkius.com. For OAuth-protected servers, expand Advanced settings to add credentials.

Start a conversation

Open a new chat. The Terraform Cloud (HCP) integration is available immediately — no restart needed.

Antigravity

Configure Agent Environment

Open your Antigravity agent's workspace configuration or mcp-servers.json file.

Bind the Endpoint

Add the Vinkius endpoint URL to your agent's MCP connections list:

"mcp_servers": {
  "terraform-cloud-hcp": {
    "serverUrl": "https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp"
  }
}

Provide your secure token in place of [YOUR_TOKEN_HERE] to ensure your agent requests are authenticated.

Execute

Start your Antigravity session. The agent will autonomously discover and utilize the Terraform Cloud (HCP) tools with full Vinkius guardrails applied.

Terraform Cloud (HCP) MCP is compatible with VS Code

VS Code Copilot

⚡

One-Click Install (Recommended)

In your Vinkius Dashboard, simply click the Add to VS Code button for this server. We'll automatically configure your local workspace.

Or configure manually

Open MCP Settings

Open VS Code, press Ctrl/Cmd + Shift + P, and search for GitHub Copilot: MCP Servers.

Add Server Config

Add the Vinkius endpoint configuration to your mcp-servers.json file:

"terraform-cloud-hcp": {
  "url": "https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp"
}

Ensure you replace [YOUR_TOKEN_HERE] with your token from cloud.vinkius.com.

LangChain

Install Dependencies

Install the LangChain MCP adapters for your environment:

pip install langchain-mcp-adapters

Connect the Server

Use the SSEClient in LangChain to connect to the Vinkius managed endpoint:

from langchain_mcp_adapters.client import SSEClient

# Connect to Vinkius
client = SSEClient(url="https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp")
tools = client.get_tools()

CrewAI

Define the Tool

Load the Vinkius MCP tools into your CrewAI agents:

from crewai import Agent
from mcp_crewai import MCPTool

# Connect securely to Vinkius
vinkius_tools = MCPTool(url="https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp")

# Assign to Agent
researcher = Agent(
    role='Data Researcher',
    tools=vinkius_tools.get_all()
)

Execute Task

Run your CrewAI process. The agent will autonomously route tasks to the Vinkius managed server.

Choose How to Get Started

Build a custom MCP for your own tools, or connect a ready-made integration from our catalog.

Build Your Own

Turn any API into an MCP. Import a spec, define Agent Skills, or deploy with MCPFusion.

Import from OpenAPI, Swagger, or YAML specs
Create Agent Skills with progressive disclosure
Deploy to edge with MCPFusion framework
Built in DLP, auth, and compliance on each call
Real time usage dashboard and cost metering
Publish to catalog or keep private

Start building

Make Your AI Do More

Start with Terraform Cloud (HCP), then connect any of our 5,200+ other servers whenever your AI needs more. One click, no limits.

Use this MCP plus 5,200+ others, all in one place
Add new capabilities to your AI anytime you want
Connections are secured and governed automatically
Track usage and costs across all your servers
Works with Claude, ChatGPT, Cursor, and more
New servers added to the catalog weekly

Independent Platform Disclaimer: Vinkius is an independent platform and is not affiliated with, endorsed by, sponsored by, verified by, or otherwise authorized by Terraform Cloud (HCP). All third-party trademarks, logos, and brand names are the property of their respective owners. Their use on this website is strictly for informational purposes to identify service compatibility and interoperability.

VINKIUS CLOUD

Cloud Hosted

Managed infra

V8 Isolated

Sandboxed per request

Zero-Trust Proxy

No stored credentials

DLP Enforced

Policy on each call

GDPR Compliant

EU data residency

Token Compression

~60% cost reduction

Your data is protected. See how we built it.

The Cloud Dashboard Maze

Today, managing cloud resources means clicking through dozens of tabs. You open the organization view, then click into a project, find the specific workspace, and finally drill down to check run history or policy compliance. It’s slow, it requires context switching, and you're always worried about missing one crucial button.

With this MCP, your agent handles the clicks. Instead of navigating menus, you just talk to your environment. You can ask for all workspaces that need attention, or tell it exactly which run needs to be canceled. The result is a clean answer in your chat, not ten browser tabs open.

Control Infrastructure State with Terraform Cloud (HCP)

Previously, updating governance meant manually checking user permissions and recreating variable sets across different projects. If a policy changed, you had to remember which workspaces needed manual updates.

Now, you tell the agent to `create_policy` or run `apply_variable_set_to_workspace`. The system handles the rollout and validation automatically. You are defining rules at the top level, not patching things individually.

Support 24/7 support@vinkius.com ↗

Security Vinkius Trust Center ↗

SLA Service Level Agreement ↗

Report Listing Send Report ↗

infrastructure-as-code

provisioning

workspace-management

automation

cloud-ops

state-management

What Terraform Cloud (HCP) MCP does for your AI

Connecting your Terraform Cloud (HCP) account gives your agent direct control over your Infrastructure as Code (IaC) workflows. Instead of clicking through multiple dashboards, you can now talk to your environment. Your agent handles the complexity of the HCP API, letting you manage everything from high-level governance to minute resource changes.

Need to see what changed? You can trigger a run and monitor its progress in real time. Want to enforce compliance? Use policies and variable sets to govern workspaces across organizations. When you connect this MCP via Vinkius, all your cloud environments become accessible through a single point of interaction with any MCP-compatible client.

Built · Hosted · Managed by Vinkius Terraform Cloud (HCP) MCP - Manage Infra State

Server ID 019e38f9-47e8-717c-9b80-d56cf37b5fe6

Vinkius Inspector

Compliance Grade A+

Score 98.33/100

Report View Report ↗

Benefits of connecting Terraform Cloud (HCP) MCP

Manage the entire lifecycle without context switching. You can list organizations, create projects, and manage workspaces—all from your AI client's natural language prompt.

Gain full visibility into state management. Use get_state_version_outputs to pull specific output values, allowing you to use those results immediately in a subsequent step or script.

Control deployments precisely. You can run create_run and then show_plan, giving your agent the necessary details before committing changes with apply_run.

Enforce compliance automatically. Use tools like create_policy to define rules, making sure that every new deployment adheres to organizational standards before it goes live.

Handle incidents faster than ever. If a workspace is locked up, you don't need to navigate menus; simply ask the agent to execute force_unlock_workspace and get back to work.

Terraform Cloud (HCP) MCP use cases

01 01

Auditing Compliance Post-Deployment

A cloud architect needs proof that all staging environments use approved networking components. They ask their agent to list_workspaces in the 'Staging' organization, then run an explorer_query, and finally review the results against a set of defined policies.

02 02

Responding to a Broken Service

An SRE notices a critical workspace is locked. Instead of logging into the dashboard, they prompt their agent to execute force_unlock_workspace. Once unlocked, they can then run create_run and apply the fix.

03 03

Building Automated Pipelines

A DevOps engineer needs a new service. They ask their agent to first create_organization, next create_project, set up variables using create_variable_set, and finally, trigger the full deployment plan with create_run.

04 04

Extracting Secrets for Downstream Use

A platform engineer needs a specific ID from a newly deployed VPC. They ask their agent to get the current state version (get_current_state_version), retrieve the outputs (get_state_version_outputs), and feed that single value into another service's API call.

Terraform Cloud (HCP) MCP tradeoffs

What to watch out for, and the recommended way to handle each one.

Trying to fix everything manually

Avoid

A user tries to check the status of 20 workspaces, then navigates to each one individually to check its lock status and audit log history.

Instead

Use list_workspaces to see all targets at once. Then, if you need compliance data, run list_audit_events. For a full overview across the board, use explorer_query.

Running plans without approval

Avoid

A user executes a plan and then immediately hits 'apply' in the dashboard without reviewing the output JSON first.

Instead

First, ask your agent to show_plan. Review the resulting change set. Once you confirm it looks right, tell the agent to execute apply_run.

Over-complicating governance setup

Avoid

A user tries to manually assign team access by going through multiple menus and selecting individual users and resources one by one.

Instead

Use the agent's tools. First, create_team if needed. Then, use add_team_workspace_access to grant bulk permissions efficiently.

When to use Terraform Cloud (HCP) MCP

You should use this MCP if your workflow involves managing resource state, governance policies, or complex deployment lifecycles within Terraform Cloud (HCP). If you need to create a new project, monitor run progress, apply variablesets, or enforce rules using create_policy, this is the right tool. Don't use it if your only goal is simple data retrieval that doesn't involve state management—for pure read-only tasks, a dedicated API connector might suffice. However, because of tools like get_state_version_outputs and list_audit_events, this MCP handles both reading the history and making controlled changes to the infrastructure itself.

Frequently asked questions about Terraform Cloud (HCP) MCP

How do I check if a workspace is locked using the Terraform Cloud (HCP) MCP? +

You can use list_workspaces to see the current status. If you need to proceed despite the lock, your agent can execute force_unlock_workspace.

Can I retrieve outputs from old state versions with Terraform Cloud (HCP) MCP? +

Yes. The tool get_state_version_outputs lets you pull specific output values from any historical state version, which is critical for auditing.

Is this MCP safe to use when running destructive commands like destroy on Terraform Cloud (HCP)? +

The agent guides the process. Before destruction, you should always use show_plan to review exactly what resources will be removed before executing a command.

How does the Terraform Cloud (HCP) MCP handle user access? +

You manage access using tools like add_team_user, remove_team_user, and add_team_workspace_access to maintain strict role-based governance.

What if I need to update a team name? Can the Terraform Cloud (HCP) MCP do that? +

Yes, you can modify existing team details using the update_team tool. This keeps your organization's structure current without manual intervention.

View all recipes →

Detect Infrastructure Drift Early Using MCP

Someone clicked 'apply' in the Cloudflare dashboard and your Terraform state no longer matches reality , your agent finds the drift

Terraform Cloud Hcp Cloudflare Google Sheets

View all recipes