Is Mcp Active Directory Server safe to use?

Mcp Active Directory Server has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments. Licensed under MIT.

How do I install Mcp Active Directory Server?

Mcp Active Directory Server can be installed by cloning its GitHub repository and following the setup instructions in the README.

What can Mcp Active Directory Server do?

Mcp Active Directory Server provides 14 tools: Create-User, Modify-User, Add-UserToGroup, Remove-UserFromGroup, Get-UserInfo and 9 more. See the full tools list on the server page for descriptions and parameters.

What AI clients work with Mcp Active Directory Server?

Mcp Active Directory Server is compatible with claude-desktop, cursor, claude-code. It uses stdio transport.

Is Mcp Active Directory Server actively maintained?

Mcp Active Directory Server is less actively maintained — last commit was 332 days ago. It has 14 GitHub stars.

Mcp Active Directory Server

Name: Mcp Active Directory Server
Author: rosingul

by rosingul

MCP server for Active Directory user management with PowerShell backend

14 14 tools GitHub

No known CVEs

MIT license

Stale

Last commit 332d ago

Works with most clients

Transport: stdio

14 tools · ~660 tok

Grade B · 0.3% of 200K ctx

Edit this pageView history

DevOps Security

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "mcp-active-directory-server": {
      "command": "<see-readme>",
      "args": []
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/mcp-active-directory-server)](https://mcppedia.org/s/mcp-active-directory-server)

Read me

What Mcp Active Directory Server does

MCP server for Active Directory management with Python server and PowerShell backend

Test This Server

No automated test available for this server. Check the GitHub README for setup instructions.

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

58/100across 5 weighted dimensions

How we score →

0255075100

−42

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

No package registry to scan.

Inventory

Tools (14)

Click any tool to inspect its schema.

~660 tokens total

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is Mcp Active Directory Server safe to use?: Mcp Active Directory Server has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments. Licensed under MIT.
How do I install Mcp Active Directory Server?: Mcp Active Directory Server can be installed by cloning its GitHub repository and following the setup instructions in the README.
What can Mcp Active Directory Server do?: Mcp Active Directory Server provides 14 tools: Create-User, Modify-User, Add-UserToGroup, Remove-UserFromGroup, Get-UserInfo and 9 more. See the full tools list on the server page for descriptions and parameters.
What AI clients work with Mcp Active Directory Server?: Mcp Active Directory Server is compatible with claude-desktop, cursor, claude-code. It uses stdio transport.
Is Mcp Active Directory Server actively maintained?: Mcp Active Directory Server is less actively maintained — last commit was 332 days ago. It has 14 GitHub stars.

Similar servers

Others in devops / security

View all →

Mcp Gitlab96

MCP server for using the GitLab API

1.6k 12

Evil Mcp Server93

An evil MCP server used for redteam testing

30 1

Alibabacloud Devops Mcp Server92

Yunxiao MCP Server provides AI assistants with the ability to interact with the Yunxiao platform. It provides a set of tools that interact with Yunxiao's API, allowing AI assistants to manage Codeup repository, Project, Pipeline, Packages etc.

116 7

Mcp Gitlab Server92

Enhanced MCP server for GitLab: group projects listing and activity tracking

51 2

MCP Security Weekly

Get CVE alerts and security updates for Mcp Active Directory Server and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

Edit this pageView history

DevOps Security

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "mcp-active-directory-server": {
      "command": "<see-readme>",
      "args": []
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/mcp-active-directory-server)](https://mcppedia.org/s/mcp-active-directory-server)

Read me

What Mcp Active Directory Server does

MCP server for Active Directory management with Python server and PowerShell backend

Test This Server

No automated test available for this server. Check the GitHub README for setup instructions.

README

mcp-active-directory-server

MCP server for Active Directory management with Python server and PowerShell backend

🏗️ Architecture Overview

Claude Desktop ↔ MCP Protocol ↔ Python Server ↔ PowerShell ↔ Active Directory

The system uses a 3-tier architecture:

Presentation Layer : Claude Desktop (AI interface)
Application Layer : Python MCP Server (protocol handler & orchestrator)
Data Layer : PowerShell Script → Active Directory (actual AD operations)

📁 Component Breakdown

1. simple_mcp_server.py - The MCP Protocol Bridge 🌉

Role: Acts as the main orchestrator and protocol translator

What it does:

Protocol Handler : Implements the Model Context Protocol (MCP) JSON-RPC 2.0 specification
Tool Registry: Defines 14 available tools for Claude to use:
- 6 Basic tools (user management, groups, connections)
- 8 Advanced tools (domain info, forest info, trusts, replication, etc.)
Credential Manager: Securely retrieves AD service account credentials from Windows Credential Manager
PowerShell Orchestrator: Executes the PowerShell script with appropriate parameters
Response Formatter: Converts PowerShell JSON output into MCP-compliant responses

Key Functions:

async def handle_request(request)     # Handles MCP protocol requests

async def run_powershell_script()    # Executes PowerShell operations

async def get_credentials_from_credential_manager()  # Security layer

2. ad_operations.ps1 - The Active Directory Workhorse ⚙️

Role: Contains all actual Active Directory operations and business logic

What it does:

AD Operations: 14 distinct functions for different AD tasks
Input Validation: Handles JSON parameter parsing and validation
Credential Management: Uses provided domain credentials for AD authentication
Error Handling: Comprehensive try-catch blocks with structured error responses
Structured Output: Returns JSON-formatted results for consistent processing

Function Categories:

Basic Operations (6):

Create-User              # New-ADUser operations
Modify-User              # Set-ADUser operations  
Add-UserToGroup          # Add-ADGroupMember
Remove-UserFromGroup     # Remove-ADGroupMember
Get-UserInfo             # Get-ADUser with all properties
Test-ADConnection        # Domain connectivity test

Enhanced Operations (8):

Get-DomainInfo          # Get-ADDomain equivalent
Get-ForestInfo          # Get-ADForest equivalent
Get-TrustInfo           # Get-ADTrust relationships
Get-DomainPasswordPolicy # Get-ADDefaultDomainPasswordPolicy
Get-ReplicationStatus   # AD replication health
Get-AllUserAttributes   # Deep user inspection
Get-AllComputerAttributes # Deep computer inspection
Get-SitesAndServices    # Sites, links, subnets

3. Security & Configuration Layer 🔐

Credential Management:

Uses Windows Credential Manager for secure credential storage
Target: "MCPActiveDirectory"
Service account with minimal required permissions
No hardcoded passwords in scripts

Configuration Variables:

$TargetOU = "OU=ManagedUsers,DC=demo,DC=local"   # Managed OU
$DomainName = "demo.local"                       # Domain name
$DefaultPassword = "TempPassword123!"            # Initial password (this will be used if no password is supplied)

🔄 Data Flow Architecture

1. Request Flow (Claude → AD)

Claude Desktop
    ↓ (User request: "Create user John Smith")
Python MCP Server
    ↓ (Validates request, formats parameters)
    ↓ (Retrieves credentials from Credential Manager)
    ↓ (Calls PowerShell with JSON data)

PowerShell Script
    ↓ (Parses JSON, authenticates to AD)
    ↓ (Executes New-ADUser cmdlet)
Active Directory

2. Response Flow (AD → Claude)

Active Directory
  ↓ (Returns AD object/status)
PowerShell Script  
  ↓ (Formats as JSON with success/error status)
Python MCP Server
  ↓ (Receives JS

... [View full README on GitHub](https://github.com/rosingul/mcp-active-directory-server#readme)

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

58/100across 5 weighted dimensions

How we score →

0255075100

−42

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

No package registry to scan.

Inventory

Tools (14)

Click any tool to inspect its schema.

~660 tokens total

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is Mcp Active Directory Server safe to use?: Mcp Active Directory Server has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments. Licensed under MIT.
How do I install Mcp Active Directory Server?: Mcp Active Directory Server can be installed by cloning its GitHub repository and following the setup instructions in the README.
What can Mcp Active Directory Server do?: Mcp Active Directory Server provides 14 tools: Create-User, Modify-User, Add-UserToGroup, Remove-UserFromGroup, Get-UserInfo and 9 more. See the full tools list on the server page for descriptions and parameters.
What AI clients work with Mcp Active Directory Server?: Mcp Active Directory Server is compatible with claude-desktop, cursor, claude-code. It uses stdio transport.
Is Mcp Active Directory Server actively maintained?: Mcp Active Directory Server is less actively maintained — last commit was 332 days ago. It has 14 GitHub stars.