Cert Manager

v1.0.0Cloud Servicesstable

MCP Server for cert-manager

cert-managermcpai-integration
Share:
23
Stars
0
Downloads
0
Weekly
0/5

What is Cert Manager?

Cert Manager is a Model Context Protocol (MCP) server that allows AI assistants like Claude, Cursor, and VS Code to mcp server for cert-manager

MCP Server for cert-manager

This server falls under the Cloud Services and Security categories on MCPgee, the world's largest MCP server directory with 33,000+ servers.

Features

  • MCP Server for cert-manager

Use Cases

Manage and automate certificate operations for Kubernetes deployments.
pibblokto

Maintainer

LicenseApache-2.0
Languagepython
Versionv1.0.0
UpdatedFeb 10, 2026
Statushealthy
Maintenanceactive

Works with

ClaudeOpenAIwindowsmacoslinux

Installation

Manual Installation

npx cert-manager

Configuration

Configuration Details

Config File

claude_desktop_config.json

Performance

Response Metrics

Response Time< 200ms
ThroughputMedium

Resource Usage

Memory UsageLow
CPU UsageLow

How to Set Up and Use Cert Manager

The Cert Manager MCP server connects AI assistants to cert-manager running inside Kubernetes clusters, giving them the ability to list, inspect, and renew TLS certificates without requiring direct kubectl access. It supports both standard Kubernetes clusters and Google Kubernetes Engine via gcloud credentials mounted at runtime. Use it to let Claude help you audit expiring certificates, switch contexts across clusters, and trigger renewals through natural language instead of writing raw kubectl commands.

Prerequisites

  • Docker installed and running (server is distributed as a Docker image)
  • A working Kubernetes cluster with cert-manager installed
  • kubeconfig file at ~/.kube/config with access to the target cluster
  • For GKE: gcloud credentials at ~/.config/gcloud and CLOUDSDK_CORE_PROJECT / CLOUDSDK_COMPUTE_REGION set
  • An MCP-compatible client such as Claude Desktop
1

Pull the Docker image

The server ships as a pre-built Docker image. Pull it so Docker can launch it on demand without a build step.

docker pull piblokto/cert-manager-mcp-server:v0.0.5
2

Verify cluster access

Confirm your kubeconfig can reach the cluster and that cert-manager is installed in the expected namespace before wiring up the MCP server.

kubectl get certificates --all-namespaces
3

Add the server to Claude Desktop config

Open ~/Library/Application Support/Claude/claude_desktop_config.json (macOS) and add the mcpServers entry below. The container mounts your kubeconfig read-only so the AI can query the cluster without write access to the host filesystem.

{
  "mcpServers": {
    "cert-manager": {
      "command": "docker",
      "args": [
        "run", "-i", "--rm",
        "-v", "~/.kube:/home/app/.kube:ro",
        "-v", "~/.config/gcloud:/home/app/.config/gcloud:ro",
        "piblokto/cert-manager-mcp-server:v0.0.5"
      ]
    }
  }
}
4

Set GKE environment variables (GKE only)

If your cluster is on Google Kubernetes Engine, pass the project and region so gcloud picks the correct context automatically.

export CLOUDSDK_CORE_PROJECT=my-gcp-project
export CLOUDSDK_COMPUTE_REGION=us-central1
5

Restart Claude Desktop and verify connection

Quit and reopen Claude Desktop. Open a new conversation and ask Claude to list your certificates — the server will spin up the container and respond with live data from your cluster.

Cert Manager Examples

Client configuration

Complete claude_desktop_config.json entry for the cert-manager MCP server using Docker.

{
  "mcpServers": {
    "cert-manager": {
      "command": "docker",
      "args": [
        "run", "-i", "--rm",
        "-v", "/Users/yourname/.kube:/home/app/.kube:ro",
        "-v", "/Users/yourname/.config/gcloud:/home/app/.config/gcloud:ro",
        "piblokto/cert-manager-mcp-server:v0.0.5"
      ]
    }
  }
}

Prompts to try

Example natural language commands you can use with Claude once the server is connected.

- "List all certificates in the production namespace and flag any expiring within 30 days"
- "Show me the details for the certificate named api-tls in the default namespace"
- "List all issuers and cluster issuers and tell me which ones have errors"
- "Switch to the staging cluster context and list namespaces"
- "Trigger a renewal for the certificate web-tls in the ingress namespace"

Troubleshooting Cert Manager

Docker reports 'permission denied' when reading ~/.kube/config

Use the absolute path to your kubeconfig in the volume mount instead of the tilde shortcut: replace ~/.kube with /Users/yourname/.kube in the args array.

Claude says 'no certificates found' but kubectl shows certificates exist

The container's kubeconfig must reference a context that is active and points to the correct cluster. Run 'kubectl config current-context' on the host and make sure that context is set as the default in your kubeconfig file.

GKE authentication fails inside the container

Ensure ~/.config/gcloud is mounted read-only AND that CLOUDSDK_CORE_PROJECT and CLOUDSDK_COMPUTE_REGION are set in the environment block of the MCP server config entry.

Frequently Asked Questions about Cert Manager

What is Cert Manager?

Cert Manager is a Model Context Protocol (MCP) server that mcp server for cert-manager It connects AI assistants to external tools and data sources through a standardized interface.

How do I install Cert Manager?

Follow the installation instructions on the Cert Manager GitHub repository. Clone the repo, install dependencies, and add the server config to your AI client.

Which AI clients work with Cert Manager?

Cert Manager works with all major MCP-compatible AI clients including Claude Desktop, Claude Code, Cursor, VS Code (GitHub Copilot), Windsurf, and Cline.

Is Cert Manager free to use?

Yes, Cert Manager is open source and available under the Apache-2.0 license. You can use it freely in both personal and commercial projects.

Browse More Cloud Services MCP Servers

Explore all cloud services servers available in the MCPgee directory. Each server includes setup guides for Claude, Cursor, and VS Code.

Quick Config Preview

{ "mcpServers": { "cert-manager": { "command": "npx", "args": ["-y", "cert-manager"] } } }

Add this to your claude_desktop_config.json or .cursor/mcp.json

Read the full setup guide →

Ready to use Cert Manager?

Browse our complete directory of 33,000+ MCP servers, read setup guides for your editor, and start building with the Model Context Protocol.

33,000+ ServersFree & Open SourceStep-by-Step Guides