Automox MCP Server 2.2

Complete agentic tooling for governed endpoint operations

Connect your AI agent to Automox and run endpoint operations in plain language — patch, investigate, and audit. The assistant surfaces insight and prepares action. You decide what runs.

Read the docs

Talk like a human. Get AI-powered answers.

automox-mcpREAD-ONLY

>

Yes. Four of 62 endpoints still carry pending patches, one of them critical.

4 / 62
Endpoints pending
1
Critical patch
0
Approvals pending
13
Active patch policies
EndpointGroupPendingHighest severity
DEN2022-11Windows - Workstations1critical
lax2024-04.localmacOS - Workstations2no known CVEs
LAX2024-11.localmacOS - Workstations2no known CVEs
LAX2025-10macOS - Workstations3no known CVEs

Patch Tuesday lands Tuesday, July 14. This environment's Patch Tuesday policies run on a one-day offset, so they fire Wednesday, July 15.

Response ready

AI agents connect through the Automox MCP Server to governed Automox commands

What is the Automox MCP Server?

Automox MCP Server is an open-source connector that links your AI agent to Automox, so your team works in plain language instead of memorizing console paths, API calls, and report locations.

MCP, or Model Context Protocol, is the standard that makes this work: a structured way for AI agents to reach external systems through governed tools. Those tools cover the published Automox Console and Webhooks APIs, with the operations that would expose secrets withheld by design.

For the multi-step jobs IT teams run often, Automox MCP ships open-source guided workflows: Patch Tuesday prep, endpoint investigations, policy audits, group onboarding, action triage, and posture reviews. Each lays out its steps so the assistant runs the task the same way every time.

What's new in MCP 2.2

For more details, view full changelog on Github.

Interactive review surfaces

Compliance triage, patch approvals, blast-radius previews, remediation reviews, and RBAC certification render visually in supported hosts.

Patch by Severity policy creation

Create Patch by Severity policies from your AI agent — any mix of severity levels, from plain-language intent to governed policy.

Live capability discovery

The agent sees which tools are available, withheld, and safety-gated — plus the exact setting to enable each. No guessing.

Fallback for unsupported hosts

If your MCP client doesn't yet support interactive surfaces, you still get the same information as clean structured data. No functionality lost.

Governed from the Get-go

Complete coverage doesn't mean unchecked access

Automox MCP is built for human-controlled automation. Read-only mode, per-tool safety hints, confirmation prompts, opt-in gates for high-impact actions, and secret-handling protections keep customers in control at every step. The AI agent can surface insight and prepare action. You decide what runs.

For enterprise deployments, the MCP endpoint authenticates with static API keys or OAuth 2.1 with JWT validation, so access fits the identity provider and single sign-on you already run.

What you can do with Automox MCP

You don't need to know the tool names — just describe what you want.

Ask this

“Are we ready for Patch Tuesday?”

What happens

One call returns pending patches by severity, the approval queue, and every policy's schedule — walk into Patch Tuesday knowing what's left.

Ask this

“What is our compliance posture?”

What happens

Ask once: your fleet's compliance rate, every non-compliant endpoint, and why each is failing. Spend the afternoon fixing, not reporting.

Ask this

“Create a critical-severity rating patch policy”

What happens

Describe the policy in plain English and Automox MCP builds it — severity filter, schedule, and notifications in the exact API format, corrections flagged first.

Ask this

“What devices need attention?”

What happens

Surface the endpoints that need you today, each with its failing policy and reason. Fix first, skip the hunt.

Ask this

“Show me vulnerability remediation status”

What happens

Rapid7, Qualys, or CrowdStrike exports become a live tracker: every open CVE, the endpoints hit, and the fix. Re-ask tomorrow to watch it move.

For the full list of tools, parameters, and MCP resources, see the Tool Reference.

Resources

Watch the Automox MCP Server in action

Watch the MCP server handle real IT work, end to end.

Adam Whitman

Adam Whitman

Head of Solutions Engineering

How To Set Automox MCP Server To Read-Only Mode

How To Set Automox MCP Server To Read-Only Mode

Build a Patch Policy with Automox MCP

Build a Patch Policy with Automox MCP

Build A Custom Compliance Dashboard

Build A Custom Compliance Dashboard

AI-Driven Vulnerability Remediation Explained

AI-Driven Vulnerability Remediation Explained

Bring governed AI to your endpoint operations

Your endpoint operations. Your terms. Start in read-only mode, install in minutes, or talk to us about deployment.

Read the docs