ワンクリックで
cloudflare-zero-trust
Manage Cloudflare Zero Trust — access applications, policies, identity providers, gateway
Codex または Claude でインストール この Prompt をコピーして Codex、Claude、または他のアシスタントに貼り付けると、Skill ページを確認してインストールできます。
メニュー
Manage Cloudflare Zero Trust — access applications, policies, identity providers, gateway
Codex または Claude でインストール この Prompt をコピーして Codex、Claude、または他のアシスタントに貼り付けると、Skill ページを確認してインストールできます。
SOC 職業分類に基づく
Deploy and manage Cloudflare Workers — upload scripts, configure routes, manage secrets, view analytics
Cloudflare zone health dashboard — DNS, security, tunnels, WAF, DDoS status
Manage Cloudflare R2 storage buckets and objects — create, list, inspect, delete buckets and objects
Manage Cloudflare Workers KV namespaces and key-value pairs — create, list, read, write, delete
Live integration test for all Cloudflare MCP tools — read + safe writes with cleanup
Manage Cloudflare DNS records — add, list, update, delete records with verification across multiple zones
| name | cloudflare-zero-trust |
| description | Manage Cloudflare Zero Trust — access applications, policies, identity providers, gateway |
Workflow skill for managing Cloudflare Zero Trust (formerly Cloudflare Access and Teams). Covers listing and managing access applications, access policies, identity providers (IdPs), and Gateway status.
Zero Trust resources are account-scoped, not zone-scoped. All operations apply to the Cloudflare account configured in the MCP server credentials.
Call cloudflare_zt_list_apps to retrieve all configured access applications.
Format output as a table:
| Name | Domain | Type | Session Duration | Status |
|---|---|---|---|---|
| Internal Dashboard | dashboard.example.com | self_hosted | 24h | enabled |
| SSH Bastion | ssh.example.com | ssh | 8h | enabled |
| Admin Portal | admin.example.com | self_hosted | 4h | enabled |
Group applications by type if multiple types are present (self_hosted, ssh, vnc, saas, bookmark).
Note total count and highlight any disabled applications.
Identify the target application from the list or ask the user to specify.
Call cloudflare_zt_get_app with the application ID.
Display full application details:
Call cloudflare_zt_list_policies for the application to show attached policies.
Display policies in a table:
| Policy Name | Action | Order | Rules |
|---|---|---|---|
| Allow Team | allow | 1 | email ends with @example.com |
| Block External | block | 2 | not (ip.src in {10.0.0.0/8}) |
List all policies for an application:
cloudflare_zt_list_policies for the application ID.Create a new policy:
cloudflare_zt_create_policy with all parameters.cloudflare_zt_list_policies to confirm the policy was created.Call cloudflare_zt_list_idps to retrieve all configured identity providers.
Display as a table:
| Name | Type | ID | Status |
|---|---|---|---|
| Google Workspace | idp-abc | active | |
| GitHub | github | idp-def | active |
| One-time PIN | onetimepin | idp-ghi | active |
For each IdP, note:
If no IdPs are configured, warn the user: Zero Trust access policies cannot authenticate users without an IdP (or One-time PIN as fallback).
cloudflare_zt_gateway_status to retrieve Cloudflare Gateway (DNS filtering) status.cloudflare_zt_list_apps — list all Zero Trust access applicationscloudflare_zt_get_app — get full details of a specific applicationcloudflare_zt_list_policies — list access policies for an applicationcloudflare_zt_create_policy — create a new access policycloudflare_zt_list_idps — list configured identity providerscloudflare_zt_gateway_status — get Cloudflare Gateway status and DNS filtering info