Identity
AGNTCY Identity allows to onboard, create and verify identities for Agents, Model Context Protocol (MCP) Servers and Multi-Agent Systems (MASs).
What is Identity?
Identity is a Model Context Protocol (MCP) server that allows AI assistants like Claude, Cursor, and VS Code to agntcy identity allows to onboard, create and verify identities for agents, model context protocol (mcp) servers and multi-agent systems (mass).
AGNTCY Identity allows to onboard, create and verify identities for Agents, Model Context Protocol (MCP) Servers and Multi-Agent Systems (MASs).
This server falls under the Security category on MCPgee, the world's largest MCP server directory with 33,000+ servers.
Features
- AGNTCY Identity allows to onboard, create and verify identit
Use Cases
Maintainer
Works with
Installation
Manual Installation
npx identityConfiguration
Configuration Details
claude_desktop_config.json
Performance
Response Metrics
Resource Usage
How to Set Up and Use Identity
AGNTCY Identity is an open-source identity management system for AI agents, MCP servers, and multi-agent systems (MAS), providing cryptographic identity creation, badge issuance, and verification using W3C Verifiable Credentials. It lets AI infrastructure operators register trusted issuers, create cryptographic vaults for key management, generate identity metadata for MCP servers, and publish verifiable badges that downstream consumers can validate — establishing a trust chain for AI-to-AI and human-to-AI interactions. Organizations building multi-agent pipelines or deploying MCP servers in regulated environments use AGNTCY Identity to ensure that agent identities can be cryptographically verified rather than assumed.
Prerequisites
- Docker Engine v27+ and Docker Compose v2.35+ (for running the identity node backend)
- Go 1.21+ if building or installing the issuer CLI from source
- An Okta OAuth2 application with client ID, client secret, and issuer URL (for issuer registration)
- curl or wget for the script-based installer
Install the identity CLI
Install the identity CLI using the provided install script, or install via Go. The CLI provides the vault, issuer, metadata, badge, and verify subcommands.
# Using the install script
sh -c "$(curl -sSL https://raw.githubusercontent.com/agntcy/identity/refs/heads/main/deployments/scripts/identity/install_issuer.sh)"
# Or via Go
go install github.com/agntcy/identity/cmd/issuer@latest && \
ln -s $(go env GOPATH)/bin/issuer $(go env GOPATH)/bin/identityStart the identity node backend
The identity node provides the API server that the CLI communicates with. Clone the repository and start the node using Docker Compose.
git clone https://github.com/agntcy/identity.git
cd identity
./deployments/scripts/identity/launch_node.sh
# Alternatively: make start_nodeCreate a cryptographic vault and generate keys
Before issuing any identities, create a local file-based vault and generate a key pair. The vault stores your private keys securely.
identity vault connect file -f ~/.identity/vault.json -v "My Vault"
identity vault key generateRegister as an issuer via Okta
Register your organization as a trusted issuer using your Okta OAuth2 credentials. This establishes your organization's authority to issue identity badges for MCP servers and agents.
identity issuer register -o "Your Organization" \
-c "$OKTA_OAUTH2_CLIENT_ID" \
-s "$OKTA_OAUTH2_CLIENT_SECRET" \
-u "$OKTA_OAUTH2_ISSUER"Issue and publish an identity badge for your MCP server
Generate identity metadata for your MCP server, issue a verifiable credential badge, and publish it so consumers can verify the server's identity.
# Generate metadata
identity metadata generate -c "$OKTA_OAUTH2_CLIENT_ID" \
-s "$OKTA_OAUTH2_CLIENT_SECRET" -u "$OKTA_OAUTH2_ISSUER"
# Issue badge
identity badge issue mcp -u http://localhost:9090 -n "My MCP Server"
# Publish badge
identity badge publish
# Verify badge
identity verify -f vcs.jsonIdentity Examples
Client configuration
AGNTCY Identity is a CLI and infrastructure tool rather than a direct MCP server. The MCP server configuration references the identity node for verification during agent-to-agent interactions.
{
"mcpServers": {
"identity": {
"command": "identity",
"args": ["serve"],
"env": {
"OKTA_OAUTH2_CLIENT_ID": "<your-okta-client-id>",
"OKTA_OAUTH2_CLIENT_SECRET": "<your-okta-client-secret>",
"OKTA_OAUTH2_ISSUER": "<your-okta-issuer-url>"
}
}
}
}Prompts to try
These workflows demonstrate identity creation and verification scenarios for MCP servers and AI agents.
- "Create a new cryptographic vault and generate a key pair for my MCP server"
- "Issue a verifiable identity badge for the MCP server running at localhost:9090"
- "Verify the identity badge in vcs.json and show me the issuer details"
- "List all registered issuers in the identity node"
- "Generate agent identity metadata for a new AI agent in my multi-agent pipeline"Troubleshooting Identity
Docker Compose fails to start the identity node
Ensure you have Docker Engine v27+ and Docker Compose v2.35+. Check for port conflicts with 'docker ps'. Run 'docker-compose logs' in the identity directory to view startup errors. Confirm that make is installed if using 'make start_node'.
Issuer registration fails with Okta authentication error
Verify that OKTA_OAUTH2_CLIENT_ID, OKTA_OAUTH2_CLIENT_SECRET, and OKTA_OAUTH2_ISSUER are correctly set as environment variables. The issuer URL must be in the format https://your-domain.okta.com/oauth2/default. Confirm the Okta application has the correct grant types enabled.
identity CLI command not found after installation
If installed via Go, ensure $(go env GOPATH)/bin is on your PATH. Add 'export PATH=$PATH:$(go env GOPATH)/bin' to your ~/.bashrc or ~/.zshrc. For the script installer, source your shell profile or open a new terminal session after installation.
Frequently Asked Questions about Identity
What is Identity?
Identity is a Model Context Protocol (MCP) server that agntcy identity allows to onboard, create and verify identities for agents, model context protocol (mcp) servers and multi-agent systems (mass). It connects AI assistants to external tools and data sources through a standardized interface.
How do I install Identity?
Follow the installation instructions on the Identity GitHub repository. Clone the repo, install dependencies, and add the server config to your AI client.
Which AI clients work with Identity?
Identity works with all major MCP-compatible AI clients including Claude Desktop, Claude Code, Cursor, VS Code (GitHub Copilot), Windsurf, and Cline.
Is Identity free to use?
Yes, Identity is open source and available under the Apache-2.0 license. You can use it freely in both personal and commercial projects.
Identity Alternatives — Similar Security Servers
Looking for alternatives to Identity? Here are other popular security servers you can use with Claude, Cursor, and VS Code.
Casdoor
★ 13.6kAn open-source Agent-first Identity and Access Management (IAM) /LLM MCP & agent gateway and auth server with web UI supporting OpenClaw, MCP, OAuth, OIDC, SAML, CAS, LDAP, SCIM, WebAuthn, TOTP, MFA, Face ID, Google Workspace, Azure AD
ghidraMCP
★ 9.0kAn Model Context Protocol server that enables LLMs to autonomously reverse engineer applications by exposing Ghidra's decompilation and analysis tools. It allows AI agents to list code structures, rename methods, and analyze binaries directly through
HexStrike AI
★ 8.9kHexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot, etc.) autonomously run 150+ cybersecurity tools for automated pentesting, vulnerability discovery, bug bounty automation, and security research. Seamlessly b
IDA Pro MCP
★ 8.7kEnables AI-assisted reverse engineering in IDA Pro by providing tools to analyze binaries, decompile functions, manage comments, search patterns, and interact with the IDA database through natural language.
Anthropic Cybersecurity Skills
★ 6.6k754 structured cybersecurity skills for AI agents · Mapped to 5 frameworks: MITRE ATT&CK, NIST CSF 2.0, MITRE ATLAS, D3FEND & NIST AI RMF · agentskills.io standard · Works with Claude Code, GitHub Copilot, Codex CLI, Cursor, Gemini CLI & 20+ platform
Hooker
★ 5.1k🔥🔥 hooker is a Frida-based reverse engineering toolkit for Android. It offers a user-friendly CLI, universal scripts, auto hook generation, memory roaming to detect activities/services, one-click SOCKS5 proxy setup, Frida JustTrustMe, and BoringSSL u
Browse More Security MCP Servers
Explore all security servers available in the MCPgee directory. Each server includes setup guides for Claude, Cursor, and VS Code.
Set Up Identity in Your Editor
Choose your AI client for step-by-step setup instructions.
Quick Config Preview
Add this to your claude_desktop_config.json or .cursor/mcp.json
Ready to use Identity?
Browse our complete directory of 33,000+ MCP servers, read setup guides for your editor, and start building with the Model Context Protocol.