A comprehensive Model Context Protocol (MCP) server for NinjaRMM API v2, providing seamless integration with NinjaRMM's remote monitoring and management platform.
26 comprehensive tools for complete NinjaRMM management across 8 categories:
The server supports integration with external credential management systems for enterprise environments:
- Environment variable injection: Automatically detect tokens from environment variables
- Programmatic injection: Inject tokens via API calls from your credential management system
- Centralized authentication: No browser-based OAuth2 flows in production
- Token refresh support: Automatic token refresh using provided refresh tokens
- Backward compatibility: Falls back to standard OAuth2 flows if no tokens are injected
See Credential Management Integration Guide for detailed implementation.
- get_organizations: List all organizations with IDs and names
- get_devices: Get basic device information with advanced filtering capabilities
- get_devices_detailed: Get comprehensive device information with advanced filtering capabilities
- get_device_details: Get detailed information about a specific device
Both device tools now support comprehensive filtering based on NinjaRMM API v2.0.5 Device Filter Syntax:
- Status filtering: Online/offline, approval status
- Device classification: Windows/Linux servers, workstations, Mac, network devices
- Organizational filtering: Include/exclude organizations, locations, roles
- Date filtering: Creation date ranges
- Group membership: Filter by device groups
- Specific selection: Filter by device IDs
Example: Get all online Windows servers excluding specific organizations:
get_devices(
online_status="online",
device_classes=["WINDOWS_SERVER"],
exclude_organizations=[123, 456]
)📖 See Device Filtering Guide for comprehensive examples and usage.
- get_device_count - Get total device count efficiently without transferring all device data
- get_device_count_by_organization - Get device counts grouped by organization
These tools are designed for efficiency as your device count grows:
- Smart counting: Uses full scan for unfiltered counts, sampling for filtered counts
- No data transfer: Only counts devices without downloading full device information
- Organization breakdown: Understand device distribution across your organization structure
Example: Get total device count efficiently:
get_device_count() # Returns: {"total_devices": 569, "method": "full_scan"}Example: Count online devices only:
get_device_count(online_status="online") # Efficient filtered counting- get_activities: Retrieve activities/events with optional filtering
- monitor_device_activities: Monitor activities for specific devices with real-time capabilities
- track_script_execution: Track script execution outcomes with detailed monitoring
- wait_for_activity_outcome: Wait for and monitor action outcomes with polling
- get_alerts: Retrieve alerts with optional filtering by device or organization
- get_device_alerts: Retrieve active alerts (triggered conditions) for a specific device
- reset_alert: Reset/acknowledge specific alerts
- get_backup_jobs: Retrieve backup job information
- get_automation_scripts: Get available automation scripts
- get_device_scripting_options: Get available built-in actions and custom scripts for a specific device
- run_script: Execute automation scripts on devices
- get_tickets_open: Get all open tickets with advanced filtering
- get_tickets_unassigned: Get unassigned tickets for quick triage
- get_ticket_details: Get detailed ticket information including notes and history
- update_ticket_status: Update ticket status with proper validation
- add_ticket_note: Add public or private notes to tickets with time tracking
- get_auth_status: Check current authentication status and capabilities
- reauthorize_user: Re-authenticate user for ticket operations
- clear_tokens: Clear stored authentication tokens
The server supports sophisticated OAuth2 authentication with multiple flows:
- Client Credentials Flow: For machine-to-machine operations
- User Authorization Flow: For user-context operations (required for ticketing)
- Hybrid Mode: Intelligently chooses the best authentication method
- Token Management: Automatic token refresh and storage
pip install ninjamcp-pythonThe server supports two configuration modes:
Create a .env file with your NinjaRMM credentials:
NINJARMM_CLIENT_ID=your_client_id
NINJARMM_CLIENT_SECRET=your_client_secret
NINJARMM_BASE_URL=https://app.ninjarmm.com
NINJARMM_AUTH_MODE=hybrid
NINJARMM_CLIENT_SCOPES=monitoring management control
NINJARMM_USER_SCOPES=monitoring management control
NINJARMM_USER_REDIRECT_PORT=8090
NINJARMM_TOKEN_STORAGE_PATH=./tokens.jsonNEW: The server can now start without any environment variables and work entirely with injected credentials:
from ninjarmm_mcp.server import NinjaRMMServer
# Start server without environment variables
server = NinjaRMMServer()
await server.initialize()
# Inject credentials at runtime
await server.inject_tokens({
"user": {
"access_token": "your_user_access_token",
"refresh_token": "your_refresh_token",
"expires_in": 3600,
"scope": "monitoring management control"
}
})This mode is perfect for:
- Enterprise credential management systems
- Dynamic token provisioning
- Containerized deployments
- Multi-tenant environments
# Using console script
ninjamcp-python
# Using module execution
python -m ninjarmm_mcpfrom ninjarmm_mcp import NinjaRMMServer
server = NinjaRMMServer()
await server.run()For Claude Desktop integration, see the Claude Desktop Setup Guide for detailed configuration instructions.
- Python 3.8+
- NinjaRMM API v2 access
- Valid OAuth2 client credentials
MIT License - see LICENSE file for details.