README.md
Comprehensive management of CloudStack infrastructure through natural language
CloudStack MCP Server
A comprehensive Model Context Protocol (MCP) server that provides complete CloudStack infrastructure management through natural language interactions with Claude Desktop. This implementation offers extensive coverage of CloudStack 4.20 APIs with 477+ MCP tools covering 735+ API methods across 32 categories.
Overview
The CloudStack MCP Server enables seamless cloud infrastructure management by bridging CloudStack APIs with Claude's natural language interface. Users can perform complex infrastructure operations using conversational commands, eliminating the need to learn CloudStack's API syntax or command-line tools.
Key Statistics:
- Extensive API Coverage: 477+ MCP tools covering 735+ CloudStack API methods (93% coverage)
- Comprehensive Categories: 32 CloudStack API categories implemented including new infrastructure features
- Enterprise Security: 96 dangerous operations protected with confirmation system
- Natural Language Interface: Zero learning curve for infrastructure management
- Production Ready: Enterprise-grade reliability with comprehensive safety controls
Features
🏗️ Infrastructure Management
- Virtual Machine Operations: Complete lifecycle management including deployment, scaling, migration, and monitoring
- Storage Management: Volume operations, snapshot management, backup and restore capabilities
- Image Store Management: Complete backend storage management with NFS, S3, and Swift support
- Pod Management: Infrastructure pod operations including creation, dedication, and IP range management
- Network Administration: VPC management, load balancing, firewall rules, and network ACLs
- Security Groups: Ingress/egress rule management and security policy enforcement
👥 Identity & Access Management
- Account Administration: User lifecycle management with role-based access control
- Domain Management: Hierarchical domain structures and resource organization
- Project Management: Multi-tenant collaboration spaces with user assignments
- LDAP Integration: Enterprise directory service synchronization
🌐 Advanced Networking
- VPC & Networking: Virtual Private Cloud configuration and management
- VPN Services: Site-to-site and remote access VPN connectivity
- Load Balancing: Application load balancer configuration with health checks
- SSL Certificate Management: Complete certificate lifecycle including issuance, upload, revocation, and CA provider management
📊 Monitoring & Analytics
- Resource Metrics: Infrastructure performance monitoring and capacity planning
- Event Management: System event tracking and alert configuration
- Quota Management: Resource limit enforcement and billing integration
- AutoScale Management: Automatic scaling policies and performance thresholds
🔧 Advanced Features
- Template & ISO Management: Image lifecycle with cross-zone replication
- Kubernetes Integration: Container orchestration platform management
- Object Storage: S3-compatible storage with lifecycle policies
- Hardware Integration: NetScaler, UCS, and bare metal server management
- Tungsten Fabric SDN: Software-defined networking with micro-segmentation
🛡️ Enterprise Security & Safety
- Dangerous Action Confirmation: Foolproof confirmation system protecting 96 destructive operations
- Smart Operation Detection: Automatic identification of delete, destroy, purge, scale, and restart operations
- Rich Context Warnings: Detailed operation descriptions with severity levels and impact assessment
- Confirmation Requirements: Mandatory typed confirmation for critical operations (e.g., "destroy permanently")
- Infrastructure Protection: Critical protections for image store deletion and pod management operations
- Environment Controls: Smart bypasses for development while enforcing production safety
- Comprehensive Auditing: Full security audit trails with correlation tracking and compliance reporting
- Operation Categories: Protection across VM, Storage, Network, VPC, Kubernetes, Infrastructure, and Certificate operations
- Memory Management: Efficient tracking with automatic cleanup and configurable timeout policies
Test Coverage & Quality Assurance
Enterprise-Grade Testing Framework (v2.3.0+)
- Complete Test Suite: 12 integration test files covering all enterprise operations
- 350+ Test Cases: Systematic testing across VM, Storage, Network, Account, Kubernetes, Load Balancer, VPN, Template/ISO, System Administration, Security/Compliance, Monitoring/Analytics, and Enterprise Integ
Tools (4)
virtual_machine_operationsComplete lifecycle management including deployment, scaling, migration, and monitoring of VMs.network_administrationVPC management, load balancing, firewall rules, and network ACLs.storage_managementVolume operations, snapshot management, backup and restore capabilities.identity_access_managementUser lifecycle management with role-based access control and account administration.Environment Variables
CLOUDSTACK_API_URLrequiredThe endpoint URL for the CloudStack APICLOUDSTACK_API_KEYrequiredAPI key for authenticationCLOUDSTACK_SECRET_KEYrequiredSecret key for authenticationConfiguration
claude_desktop_config.json
{
"mcpServers": {
"cloudstack": {
"command": "npx",
"args": [
"-y",
"@mozg31337/cloudstack-mcp-server"
],
"env": {
"CLOUDSTACK_API_URL": "your-api-url",
"CLOUDSTACK_API_KEY": "your-api-key",
"CLOUDSTACK_SECRET_KEY": "your-secret-key"
}
}
}
}Try it
→List all running virtual machines in my CloudStack environment.
→Deploy a new virtual machine using the Ubuntu 22.04 template in the production zone.
→Create a new VPC with a load balancer and configure a firewall rule for port 443.
→Take a snapshot of the primary volume for VM 'web-server-01'.
→Check the resource metrics and capacity planning for the current pod.