원클릭으로
cloudflare-zero-trust
Manage Cloudflare Zero Trust — access applications, policies, identity providers, gateway
Codex 또는 Claude로 설치 이 Prompt를 복사해 Codex, Claude 또는 다른 어시스턴트에 붙여 넣으면 Skill 페이지를 검토하고 설치를 진행할 수 있습니다.
메뉴
Manage Cloudflare Zero Trust — access applications, policies, identity providers, gateway
Codex 또는 Claude로 설치 이 Prompt를 복사해 Codex, Claude 또는 다른 어시스턴트에 붙여 넣으면 Skill 페이지를 검토하고 설치를 진행할 수 있습니다.
SOC 직업 분류 기준
Deploy and manage Cloudflare Workers — upload scripts, configure routes, manage secrets, view analytics
Cloudflare zone health dashboard — DNS, security, tunnels, WAF, DDoS status
Manage Cloudflare R2 storage buckets and objects — create, list, inspect, delete buckets and objects
Manage Cloudflare Workers KV namespaces and key-value pairs — create, list, read, write, delete
Live integration test for all Cloudflare MCP tools — read + safe writes with cleanup
Manage Cloudflare DNS records — add, list, update, delete records with verification across multiple zones
| name | cloudflare-zero-trust |
| description | Manage Cloudflare Zero Trust — access applications, policies, identity providers, gateway |
Workflow skill for managing Cloudflare Zero Trust (formerly Cloudflare Access and Teams). Covers listing and managing access applications, access policies, identity providers (IdPs), and Gateway status.
Zero Trust resources are account-scoped, not zone-scoped. All operations apply to the Cloudflare account configured in the MCP server credentials.
Call cloudflare_zt_list_apps to retrieve all configured access applications.
Format output as a table:
| Name | Domain | Type | Session Duration | Status |
|---|---|---|---|---|
| Internal Dashboard | dashboard.example.com | self_hosted | 24h | enabled |
| SSH Bastion | ssh.example.com | ssh | 8h | enabled |
| Admin Portal | admin.example.com | self_hosted | 4h | enabled |
Group applications by type if multiple types are present (self_hosted, ssh, vnc, saas, bookmark).
Note total count and highlight any disabled applications.
Identify the target application from the list or ask the user to specify.
Call cloudflare_zt_get_app with the application ID.
Display full application details:
Call cloudflare_zt_list_policies for the application to show attached policies.
Display policies in a table:
| Policy Name | Action | Order | Rules |
|---|---|---|---|
| Allow Team | allow | 1 | email ends with @example.com |
| Block External | block | 2 | not (ip.src in {10.0.0.0/8}) |
List all policies for an application:
cloudflare_zt_list_policies for the application ID.Create a new policy:
cloudflare_zt_create_policy with all parameters.cloudflare_zt_list_policies to confirm the policy was created.Call cloudflare_zt_list_idps to retrieve all configured identity providers.
Display as a table:
| Name | Type | ID | Status |
|---|---|---|---|
| Google Workspace | idp-abc | active | |
| GitHub | github | idp-def | active |
| One-time PIN | onetimepin | idp-ghi | active |
For each IdP, note:
If no IdPs are configured, warn the user: Zero Trust access policies cannot authenticate users without an IdP (or One-time PIN as fallback).
cloudflare_zt_gateway_status to retrieve Cloudflare Gateway (DNS filtering) status.cloudflare_zt_list_apps — list all Zero Trust access applicationscloudflare_zt_get_app — get full details of a specific applicationcloudflare_zt_list_policies — list access policies for an applicationcloudflare_zt_create_policy — create a new access policycloudflare_zt_list_idps — list configured identity providerscloudflare_zt_gateway_status — get Cloudflare Gateway status and DNS filtering info