How do I install CipherTrust Manager MCP Server?

Install CipherTrust Manager MCP Server with a single command: npx mdskills install sanyambassi/ciphertrust-manager-mcp-server. This downloads the skill files into your project and your AI agent picks them up automatically.

What platforms support CipherTrust Manager MCP Server?

CipherTrust Manager MCP Server works with Claude Code, Claude Desktop, Cursor, Vscode Copilot, Windsurf, Continue Dev, Gemini Cli, Amp, Roo Code, Goose. Skills use the open SKILL.md format which is compatible with any AI coding agent that reads markdown instructions.

← Back to MCP servers

CipherTrust Manager MCP Server

Name: CipherTrust Manager MCP Server: AI Agent Skill
Rating: 8 (1 reviews)
Author: sanyambassi

Verified

MCP ServerCode GenerationIntermediate

This project implements an independently-developed CipherTrust MCP (Model Context Protocol) server that allows AI Assistants like Claude or Cursor to interact with CipherTrust Manager resources using the ksctl CLI. - Important Notice - Prerequisites - Installation - Configuration - Integration with AI Assistants - Environment Variables - Troubleshooting - Project Structure - Contributing This is a

by @sanyambassi0Updated 1 weeks ago

Add this skill

npx mdskills install sanyambassi/ciphertrust-manager-mcp-server

Fork & Edit

Skill Advisor8.0

Comprehensive MCP server with excellent setup docs and extensive CipherTrust Manager tool coverage

+Provides detailed installation guides for multiple platforms with clear examples
+Includes comprehensive testing documentation with multiple testing methods
+Covers extensive CipherTrust operations including key, user, CTE, and connection management
-Lacks specific tool descriptions and parameter schemas for API clarity
-Missing security guidance for credential management beyond environment variables

SKILL.md

Edit in Browser

1# CipherTrust Manager MCP Server
2 
3This project implements an independently-developed CipherTrust MCP (Model Context Protocol) server that allows AI Assistants like Claude or Cursor to interact with CipherTrust Manager resources using the ksctl CLI.
4 
5## Table of Contents
6 
7- [Important Notice](#important-notice)
8- [Features](#features)
9- [Prerequisites](#prerequisites)
10- [Installation](#installation)
11- [Configuration](#configuration)
12- [Usage](#usage)
13- [Testing](#testing)
14- [Integration with AI Assistants](#integration-with-ai-assistants)
15- [Environment Variables](#environment-variables)
16- [Troubleshooting](#troubleshooting)
17- [Project Structure](#project-structure)
18- [Contributing](#contributing)
19- [Legal](#legal)
20- [License](#license)
21 
22## Important Notice
23 
24This is an **independent, open-source project**. Please note:
25 
26- ⚠️ **Not officially supported** by Thales
27- ✅ **Uses public APIs** and documented interfaces
28- 🔧 **Independently maintained** 
29- 📝 **Use at your own risk** - test thoroughly in your environment
30- 💼 **No warranty** - see license for full terms
31 
32For official CipherTrust Manager support, please contact Thales directly.
33 
34## Features
35 
36The MCP server exposes a set of tools and endpoints for clients (such as Claude Desktop and Cursor) to interact with CipherTrust resources. Supported operations include:
37 
38- Key management
39- CTE client management
40- User management
41- Connection management
42- And more
43 
44**Benefits:**
45- Unified interface for AI assistants to interact with CipherTrust Manager
46- Support for key management, connection management, CTE client management, and more
47- JSON-RPC communication over stdin/stdout
48- Configurable via environment variables
49 
50## Prerequisites
51 
52- **Git**
53- **Python 3.11 or higher**
54- **uv** for dependency management
55- **Access to a CipherTrust Manager instance**
56 
57### Installing Git (Windows)
58 
59If you don't have Git installed on Windows, follow these steps:
60 
61- **Download and install Git for Windows**: [https://git-scm.com/download/win](https://git-scm.com/download/win)
62- **Or install via winget**:
63  ```bash
64  winget install --id Git.Git -e --source winget
65  ```
66- **Verify installation** - Open PowerShell and execute:
67  ```bash
68  git --version
69  ```
70  You should see the installed Git version.
71 
72## Installing Python and uv
73 
74### Method 1: Manual Installation
75 
76#### 1. Download Python
77```powershell
78# Open PowerShell as Administrator (optional)
79cd $env:USERPROFILE\Downloads
80Invoke-WebRequest -Uri "https://www.python.org/ftp/python/3.12.4/python-3.12.4-amd64.exe" -OutFile "python-installer.exe"
81```
82 
83#### 2. Run the Installer
84```powershell
85.\python-installer.exe /quiet InstallAllUsers=1 PrependPath=1 Include_test=0
86```
87 
88#### 3. Verify Installation
89Open a new terminal and run:
90```bash
91python --version
92pip --version
93```
94 
95#### 4. Install uv
96```bash
97pip install uv
98uv --version
99```
100 
101#### 5. Clone the Repository
102```bash
103git clone https://github.com/sanyambassi/ciphertrust-manager-mcp-server.git
104cd ciphertrust-manager-mcp-server
105```
106 
107#### 6. Create a Virtual Environment and Install Dependencies
108```bash
109uv venv
110.venv\Scripts\activate
111uv pip install -e .
112```
113 
114### Method 2: Using winget (Windows)
115 
116#### 1. Install Python with winget
117```bash
118winget install --id Python.Python.3.12 --source winget --accept-package-agreements --accept-source-agreements
119```
120 
121#### 2. Close and Reopen PowerShell
122This ensures Python is available in your PATH.
123 
124#### 3. Verify Installation
125```bash
126python --version
127pip --version
128```
129 
130#### 4. Install uv
131```bash
132pip install uv
133uv --version
134```
135 
136#### 5. Clone the Repository
137```bash
138git clone https://github.com/sanyambassi/ciphertrust-manager-mcp-server.git
139cd ciphertrust-manager-mcp-server
140```
141 
142#### 6. Create a Virtual Environment and Install Dependencies
143```bash
144uv venv
145.venv\Scripts\activate
146uv pip install -e .
147```
148 
149## Configuration
150 
151### (Optional) Copy and Edit the Example Environment File
152 
153**Example `.env`:**
154```bash
155cp .env.example .env
156# Edit .env with your CipherTrust Manager details
157```
158 
159You can also set these as environment variables directly instead of using a `.env` file.
160 
161**Example `.env` content:**
162```
163CIPHERTRUST_URL=https://your-ciphertrust-manager.example.com
164CIPHERTRUST_USER=admin
165CIPHERTRUST_PASSWORD=your-password-here
166CIPHERTRUST_NOSSLVERIFY=true
167```
168 
169## Usage
170 
171**⚠️ Important:** Before starting, either the environment variable or .env should contain a valid CipherTrust Manager URL.
172 
173You have two main ways to run the CipherTrust MCP Server:
174 
175### Method 1: Direct Execution
176```bash
177uv run ciphertrust-mcp-server
178```
179This runs the `main()` function in `ciphertrust_mcp_server/__main__.py`.
180 
181### Method 2: Module Execution
182```bash
183uv run python -m ciphertrust_mcp_server.__main__
184```
185 
186## Testing
187 
188This project includes comprehensive testing capabilities using the Model Context Protocol Inspector and Python unit tests.
189 
190### Quick Testing
191 
192```bash
193# Manual JSON-RPC testing (direct stdin/stdout)
194uv run ciphertrust-mcp-server
195# Then send JSON-RPC commands (see TESTING.md for details)
196 
197# Interactive UI testing (opens browser interface)
198npx @modelcontextprotocol/inspector uv run ciphertrust-mcp-server
199 
200# Quick CLI testing
201# Get tools
202npx @modelcontextprotocol/inspector --cli --config tests/mcp_inspector_config.json --server ciphertrust-local --method tools/list
203# Get system information
204npx @modelcontextprotocol/inspector --cli --config tests/mcp_inspector_config.json --server ciphertrust-local --method tools/call --tool-name system_information --tool-arg action=get
205# Get 2 keys
206npx @modelcontextprotocol/inspector --cli --config tests/mcp_inspector_config.json --server ciphertrust-local --method tools/call --tool-name key_management --tool-arg action=list --tool-arg limit=2
207```
208 
209### Available Testing Methods
210 
211- **🔧 Manual JSON-RPC Testing**: Direct stdin/stdout communication for debugging and development
212- **🖥️ Interactive UI Testing**: Visual web interface for manual testing and debugging
213- **⚡ CLI Automated Testing**: Command-line automation for CI/CD integration
214- **🧪 Python Unit Tests**: Comprehensive unit testing for server components
215- **🔗 Integration Tests**: End-to-end testing with real CipherTrust Manager instances
216 
217### NPM Scripts
218 
219After creating a `package.json` file:
220 
221```bash
222npm run test:inspector:ui     # Open interactive testing interface
223npm run test:inspector:cli    # Run automated CLI tests
224npm run test:python          # Run Python unit tests
225npm run test:full           # Run complete test suite
226```
227 
228### Comprehensive Testing Guide
229 
230📖 **For detailed testing instructions, see [TESTING.md](docs/TESTING.md)**
231 
232🔧 **For example AI assistant prompts, see [EXAMPLE_PROMPTS.md](docs/EXAMPLE_PROMPTS.md)**
233 
234The testing guide covers:
235- Complete setup and configuration
236- Advanced testing scenarios
237 
238 
239The example prompts include:
240- Key management operations
241- User and group management
242- System and service management
243- Cluster management
244- License management
245- CTE operations
246- Crypto operations
247- And more practical scenarios
248 
249## Integration with AI Assistants
250 
251### Using with Cursor
252 
253#### 1. Configure Cursor
254- Go to **Settings > MCP Tools > Add Custom MCP**
255- Add the following contents in the config file (e.g., `mcp.json`):
256 
257```json
258{
259  "mcpServers": {
260    "ciphertrust": {
261      "command": "Path to your project folder/ciphertrust-manager-mcp-server/.venv/bin/ciphertrust-mcp-server",
262      "args": [],
263      "env": {
264        "CIPHERTRUST_URL": "https://your-ciphertrust.example.com",
265        "CIPHERTRUST_USER": "admin",
266        "CIPHERTRUST_PASSWORD": "your-password-here"
267      }
268    }
269  }
270}
271```
272 
273On Windows, use the `.venv\Scripts\ciphertrust-mcp-server.exe` path and double backslashes:
274 
275```json
276{
277  "mcpServers": {
278    "ciphertrust": {
279      "command": "C:\\path\\to\\ciphertrust-manager-mcp-server\\.venv\\Scripts\\ciphertrust-mcp-server",
280      "args": [],
281      "env": {
282        "CIPHERTRUST_URL": "https://your-ciphertrust.example.com",
283        "CIPHERTRUST_USER": "admin",
284        "CIPHERTRUST_PASSWORD": "your-password-here"
285      }
286    }
287  }
288}
289```
290 
291#### 2. Apply Configuration
292Disable and Re-enable the CipherTrust MCP server in Cursor to apply the changes.
293 
294### Using with Claude Desktop
295 
296#### 1. Locate or create the Claude Desktop config file:
297- **macOS**: `~/Library/Application Support/Claude/claude_desktop_config.json`
298- **Windows**: `%APPDATA%\Roaming\Claude\claude_desktop_config.json`
299 
300#### 2. Add or update the MCP server configuration:
301 
302**macOS/Linux Example:**
303```json
304{
305  "mcpServers": {
306    "ciphertrust": {
307      "command": "/absolute/path/to/ciphertrust-manager-mcp-server/.venv/bin/ciphertrust-mcp-server",
308      "env": {
309        "CIPHERTRUST_URL": "https://your-ciphertrust.example.com",
310        "CIPHERTRUST_USER": "admin",
311        "CIPHERTRUST_PASSWORD": "your-password-here"
312      }
313    }
314  }
315}
316```
317 
318**Windows Example:**
319```json
320{
321  "mcpServers": {
322    "ciphertrust": {
323      "command": "C:\\absolute\\path\\to\\ciphertrust-manager-mcp-server\\.venv\\Scripts\\ciphertrust-mcp-server",
324      "env": {
325        "CIPHERTRUST_URL": "https://your-ciphertrust.example.com",
326        "CIPHERTRUST_USER": "admin",
327        "CIPHERTRUST_PASSWORD": "your-password-here"
328      }
329    }
330  }
331}
332```
333 
334Adjust the path to match your actual project location and environment.
335 
336#### 3. Restart Claude Desktop
337Restart Claude Desktop to apply the changes.
338 
339## Environment Variables
340 
341Set these in your shell or in a `.env` file in the project root:
342 
343| Variable Name | Description | Required/Default |
344|---|---|---|
345| `CIPHERTRUST_URL` | CipherTrust Manager URL (http/https) | Required |
346| `CIPHERTRUST_USER` | CipherTrust Manager username | Required |
347| `CIPHERTRUST_PASSWORD` | CipherTrust Manager password | Required |
348| `CIPHERTRUST_NOSSLVERIFY` | Disable SSL verification (true/false) | `false` |
349| `CIPHERTRUST_TIMEOUT` | Timeout for CipherTrust requests (seconds) | `30` |
350| `CIPHERTRUST_DOMAIN` | Default CipherTrust domain | `root` |
351| `CIPHERTRUST_AUTH_DOMAIN` | Authentication domain | `root` |
352| `KSCTL_PATH` | Path to ksctl binary | `~/.ciphertrust-mcp/ksctl` |
353| `KSCTL_CONFIG_PATH` | Path to ksctl config file | `~/.ksctl/config.yaml` |
354| `LOG_LEVEL` | Logging level (DEBUG, INFO) | `INFO` |
355 
356**Example `.env` file:**
357```bash
358CIPHERTRUST_URL=https://your-ciphertrust.example.com
359CIPHERTRUST_USER=admin
360CIPHERTRUST_PASSWORD=yourpassword
361CIPHERTRUST_NOSSLVERIFY=false
362CIPHERTRUST_TIMEOUT=30
363CIPHERTRUST_DOMAIN=root
364CIPHERTRUST_AUTH_DOMAIN=root
365KSCTL_PATH=
366KSCTL_CONFIG_PATH=
367LOG_LEVEL=INFO
368```
369 
370## Troubleshooting
371 
372### Successful startup logs:
373 
374- The server is designed to be run as a subprocess by MCP clients (like Claude Desktop or Cursor) and communicates via JSON-RPC over stdin/stdout.
375- You'll see log output like in the AI assistant's MCP log:
376 
377```
3782025-06-16 02:22:30,462 - ciphertrust_mcp_server.server - INFO - Starting ciphertrust-manager v0.1.0
3792025-06-16 02:22:30,838 - ciphertrust_mcp_server.server - INFO - Successfully connected to CipherTrust Manager
3802025-06-16 02:22:30,838 - ciphertrust_mcp_server.server - INFO - MCP server ready and waiting for JSON-RPC messages on stdin...
381```
382 
383### Dependencies
384 
385The `pyproject.toml` file includes these dependencies:
386- `mcp>=1.0.0`
387- `pydantic>=2.0.0`
388- `pydantic-settings>=2.0.0`
389- `httpx>=0.27.0`
390- `python-dotenv>=1.0.0`
391 
392If you encounter issues, ensure all dependencies are installed and up-to-date.
393 
394## Project Structure
395 
396```
397ciphertrust-manager-mcp-server/
398├── src
399│   ├── ciphertrust_mcp_server/     # Main server code
400├── tests/                      	# Testing configuration and unit tests
401│   ├── mcp_inspector_config.json
402│   ├── test_scenarios.json
403│   ├── test_server.py
404│   └── test_integration_simple.py
405├── scripts/                    	# Testing and utility scripts
406│   ├── test_with_inspector.bat
407│   ├── test_with_inspector.sh
408│   └── run_tests.py
409├── docs/                      		# Additional documentation
410│   ├── TESTING.md
411│   ├── EXAMPLE_PROMPTS.md
412│   └── TOOLS.md
413├── README.md                   	# This file
414├── pyproject.toml             		# Python dependencies
415└── package.json               		# Node.js dependencies for testing
416```
417 
418## Contributing
419 
420Contributions are welcome! Please feel free to submit a Pull Request. While this started as a personal project, contributions help make it better for everyone.
421 
422## Legal
423 
424### Trademark Notice
425CipherTrust® and related trademarks are the property of Thales Group and its subsidiaries. This project is not affiliated with, endorsed by, or sponsored by Thales Group.
426 
427### No Warranty
428This software is provided "as is" without warranty of any kind. Use at your own risk.
429 
430### Support
431This is an independent project. For official CipherTrust Manager support, please contact Thales directly. For issues with this unofficial MCP server, please use the GitHub issue tracker.
432 
433## License
434 
435This project is licensed under the MIT License. See the [LICENSE](LICENSE) file for details.
436 
437---

Full transparency — inspect the skill content before installing.