Ansible MCP server
Launch jobs and manage inventories on Ansible Automation Platform.
About
Connect Tracecat to Ansible Automation Platform to launch jobs and query inventories for platform engineers and SOC remediation agents. You can launch a hardening playbook the moment a vulnerability scan finds a critical CVE and watch the job through to completion. From there, query inventories, inspect Event-Driven Ansible activations, and post job stdout into the incident ticket with full audit attribution.
Setup
- 1
Create a bearer token
The Ansible Automation Platform MCP server authenticates with a bearer OAuth2 token issued by AAP. The token inherits the team and organization permissions of the user that created it, so create it as a service user with least privilege.
- 2
Select the
Ansibletile in the Tracecat MCP catalogOpen the
MCP catalogin your workspace, select theAnsibletile, and paste your bearer token. - 3
Enable
Ansiblein your agentIn your
ai.agentaction orAgents→toolstab, selectAnsiblefrom theMCP integrationsdropdown.
Tools
list_job_templates | List Controller job templates available in your AAP organization. |
launch_job_template | Launch a job template with extra vars, limit, and credential overrides. |
get_job | Fetch the status, stdout, and events of a specific job run. |
list_inventories | List inventories and their sources across organizations. |
list_hosts | List hosts in an inventory with their groups and variables. |
list_projects | List Controller projects and the revision they are pinned to. |
list_activations | List Event-Driven Ansible activations and their current status. |
list_rulebooks | List rulebooks attached to EDA projects. |
list_organizations | List Gateway organizations, teams, and role assignments. |