A comprehensive bridge to Zscaler's Zero Trust Exchange platform, exposing over 280 tools across ZPA, ZIA, ZDX, ZCC, and EASM through the Model Context Protocol. Ships in read-only mode by default, which makes sense given the scope: you can list application segments, segment groups, firewall rules, and policy configurations without risk. When you need to provision or modify resources, you explicitly opt in with an allowlist of write operations. It's packaged as a Python module with stdio transport, runs via uvx or Docker, and integrates with Claude Desktop, Cursor, and VS Code. The setup requires Zscaler API credentials and supports both individual service authentication and OneAPI tokens for multi-service access.
claude mcp add --transport stdio zscaler-zscaler-mcp-server uvx zscaler-mcp-server