Automox MCP Server 2.2
Complete agentic tooling for governed endpoint operations
Connect your AI agent to Automox and run endpoint operations in plain language — patch, investigate, and audit. The assistant surfaces insight and prepares action. You decide what runs.
Talk like a human. Get AI-powered answers.
Response ready
What is the Automox MCP Server?
Automox MCP Server is an open-source connector that links your AI agent to Automox, so your team works in plain language instead of memorizing console paths, API calls, and report locations.
MCP, or Model Context Protocol, is the standard that makes this work: a structured way for AI agents to reach external systems through governed tools. Those tools cover the published Automox Console and Webhooks APIs, with the operations that would expose secrets withheld by design.
For the multi-step jobs IT teams run often, Automox MCP ships open-source guided workflows: Patch Tuesday prep, endpoint investigations, policy audits, group onboarding, action triage, and posture reviews. Each lays out its steps so the assistant runs the task the same way every time.
What's new in MCP 2.2
For more details, view full changelog on Github.
Interactive review surfaces
Compliance triage, patch approvals, blast-radius previews, remediation reviews, and RBAC certification render visually in supported hosts.
Patch by Severity policy creation
Create Patch by Severity policies from your AI agent — any mix of severity levels, from plain-language intent to governed policy.
Live capability discovery
The agent sees which tools are available, withheld, and safety-gated — plus the exact setting to enable each. No guessing.
Fallback for unsupported hosts
If your MCP client doesn't yet support interactive surfaces, you still get the same information as clean structured data. No functionality lost.
Governed from the Get-go
Complete coverage doesn't mean unchecked access
Automox MCP is built for human-controlled automation. Read-only mode, per-tool safety hints, confirmation prompts, opt-in gates for high-impact actions, and secret-handling protections keep customers in control at every step. The AI agent can surface insight and prepare action. You decide what runs.
For enterprise deployments, the MCP endpoint authenticates with static API keys or OAuth 2.1 with JWT validation, so access fits the identity provider and single sign-on you already run.
What you can do with Automox MCP
You don't need to know the tool names — just describe what you want.
“Are we ready for Patch Tuesday?”
One call returns pending patches by severity, the approval queue, and every policy's schedule — walk into Patch Tuesday knowing what's left.
“What is our compliance posture?”
Ask once: your fleet's compliance rate, every non-compliant endpoint, and why each is failing. Spend the afternoon fixing, not reporting.
“Create a critical-severity rating patch policy”
Describe the policy in plain English and Automox MCP builds it — severity filter, schedule, and notifications in the exact API format, corrections flagged first.
“What devices need attention?”
Surface the endpoints that need you today, each with its failing policy and reason. Fix first, skip the hunt.
“Show me vulnerability remediation status”
Rapid7, Qualys, or CrowdStrike exports become a live tracker: every open CVE, the endpoints hit, and the fix. Re-ask tomorrow to watch it move.
For the full list of tools, parameters, and MCP resources, see the Tool Reference.
Resources
Watch the Automox MCP Server in action
Watch the MCP server handle real IT work, end to end.
Adam Whitman
Head of Solutions Engineering

How To Set Automox MCP Server To Read-Only Mode

Build a Patch Policy with Automox MCP

Build A Custom Compliance Dashboard

AI-Driven Vulnerability Remediation Explained
Bring governed AI to your endpoint operations
Your endpoint operations. Your terms. Start in read-only mode, install in minutes, or talk to us about deployment.