Connect Ngrok to AI agents

Connect Ngrok to Claude, Codex, Cursor, or other AI agents for your entire team. Metorial security, governance, observability, and gives your team a unified Magic MCP url to connect.

Supported Tools

create_address

Reserve TCP Address

Reserve a new TCP address for non-HTTP traffic. The hostname and port are assigned by ngrok and cannot be chosen. Useful for SSH, database connections, or other TCP services.

get_domain

Get Reserved Domain

Retrieve details of a specific reserved domain by its ID. Returns the full domain configuration including certificate and DNS settings.

delete_ip_policy_rule

Delete IP Policy Rule

Remove a CIDR rule from an IP policy.

update_domain

Update Reserved Domain

Update an existing reserved domain's description, metadata, or certificate configuration.

create_certificate_authority

Create Certificate Authority

Upload a CA certificate for mutual TLS authentication. The CA will be used to verify client certificates presented during mTLS connections.

get_event_subscription

Get Event Subscription

Retrieve details of a specific event subscription including its sources and destinations.

update_ip_policy

Update IP Policy

Update an IP policy's description or metadata.

create_ssh_certificate_authority

Create SSH Certificate Authority

Create a new SSH certificate authority key pair for signing SSH host and user certificates.

list_ssh_certificate_authorities

List SSH Certificate Authorities

List all SSH certificate authorities. SSH CAs are key pairs used to sign SSH host and user certificates.

create_event_subscription

Create Event Subscription

Create an event subscription to capture audit or traffic events. Specify which event types to capture (sources) and where to send them (destination IDs). Create event destinations first using the "Create Event Destination" tool. Common audit event types: `api_key_created.v0`, `ip_policy_created.v0`, `ip_policy_updated.v0` Common traffic event types: `http_request_complete.v0`, `tcp_connection_closed.v0`

list_domains

List Reserved Domains

List all reserved domains on your ngrok account. Reserved domains are hostnames you can listen for HTTP, HTTPS, or TLS traffic on. Supports pagination.

restart_tunnel_session

Restart Tunnel Session

Restart an ngrok agent tunnel session. Uses exec() to restart the agent process. Not supported on Windows agents.

create_domain

Reserve Domain

Reserve a new domain (hostname) for receiving HTTP, HTTPS, or TLS traffic. You can use your own domain by creating a CNAME record. Optionally configure automatic TLS certificate management via Let's Encrypt or attach a custom certificate.

delete_api_key

Delete API Key

Delete an API key. Requests using this key will no longer be authenticated.

list_ssh_credentials

List SSH Credentials

List all SSH public keys registered for tunnel authentication. SSH credentials authorize SSH reverse tunnel connections.

create_event_destination

Create Event Destination

Create an event destination for publishing captured events. The target must be exactly one of: **kinesis**, **firehose**, **cloudwatch_logs**, **datadog**, or **azure_logs_ingestion**. Each target type has its own configuration format.

create_vault

Create Vault

Create a new vault to organize secrets. Secrets can then be stored within the vault.

update_api_key

Update API Key

Update an API key's description or metadata.

create_ip_policy

Create IP Policy

Create a new IP policy. After creating a policy, add CIDR rules to it using the "Add IP Policy Rule" tool, then apply the policy to restrict access to endpoints, API, agent connections, or the dashboard.

delete_certificate_authority

Delete Certificate Authority

Delete a certificate authority. It must not be in use by any mTLS module.

delete_ip_policy

Delete IP Policy

Delete an IP policy and all its associated rules.

get_tunnel

Get Tunnel

Retrieve details of a specific active tunnel, including its public URL, protocol, and where it forwards traffic.

list_tunnels

List Tunnels

List all active tunnels. Tunnels are created by running ngrok agents and provide public endpoints to access your local services. This is a read-only listing.

list_event_destinations

List Event Destinations

List all event destinations. Destinations define where captured events are published (CloudWatch Logs, Kinesis, Firehose, Datadog, or Azure Logs Ingestion).

get_endpoint

Get Endpoint

Retrieve details of a specific endpoint by ID, including its traffic routing configuration and associated tunnel or domain.

get_credential

Get Tunnel Credential

Retrieve details of a specific tunnel credential (authtoken) by ID.

list_secrets

List Secrets

List all secrets across all vaults. Secret values are not returned in the listing.

delete_domain

Delete Reserved Domain

Release a reserved domain. The domain will no longer receive traffic and will become available for re-reservation.

get_api_key

Get API Key

Retrieve details of a specific API key. Note: the token value is only available at creation time.

delete_vault

Delete Vault

Delete a vault and all secrets it contains.

create_secret

Create Secret

Create a new secret in a vault. Secrets store sensitive values used across your ngrok resources.

list_addresses

List Reserved Addresses

List all reserved TCP addresses. Reserved addresses provide stable TCP endpoints for non-HTTP services like SSH or databases. The hostname and port are assigned by ngrok.

update_credential

Update Tunnel Credential

Update a tunnel credential's description, metadata, or ACL rules.

list_ip_policies

List IP Policies

List all IP policies. IP policies are reusable groups of CIDR ranges with allow or deny actions that can restrict access to your API, agent connections, or endpoints.

delete_tls_certificate

Delete TLS Certificate

Delete a TLS certificate. It must be detached from all domains first.

create_api_key

Create API Key

Create a new API key for authenticating with the ngrok API. **Important:** The token value is only returned once at creation time — save it immediately.

create_ssh_credential

Create SSH Credential

Register an SSH public key for tunnel authentication. The key can optionally be restricted with ACL bind rules.

delete_address

Delete Reserved Address

Release a reserved TCP address. It will no longer receive traffic.

delete_ssh_certificate_authority

Delete SSH Certificate Authority

Delete an SSH certificate authority. Certificates signed by this CA will no longer be valid.

get_bot_user

Get Bot User

Retrieve details of a specific bot user (service account) by ID.

delete_secret

Delete Secret

Delete a secret from its vault.

delete_event_subscription

Delete Event Subscription

Delete an event subscription. Events will no longer be captured and published.

update_secret

Update Secret

Update a secret's name, value, description, or metadata.

get_address

Get Reserved Address

Retrieve details of a specific reserved TCP address by its ID.

create_endpoint

Create Cloud Endpoint

Create a new cloud endpoint with a URL and optional traffic policy. Cloud endpoints allow you to route traffic without running an ngrok agent.

update_event_subscription

Update Event Subscription

Update an event subscription's sources, destinations, description, or metadata.

list_event_subscriptions

List Event Subscriptions

List all event subscriptions. Event subscriptions capture audit and traffic events and publish them to configured destinations (CloudWatch, Kinesis, Firehose, Datadog, or Azure Logs).

create_credential

Create Tunnel Credential

Create a new tunnel credential (authtoken) for ngrok agent authentication. **Important:** The token value is only returned at creation time. Optionally restrict the token with ACL bind rules.

list_tls_certificates

List TLS Certificates

List all uploaded TLS certificates. TLS certificates can be attached to reserved domains to terminate TLS traffic.

list_endpoints

List Endpoints

List all active endpoints. Endpoints define how traffic is routed to your services. Only active endpoints associated with a tunnel or backend are returned.

list_tunnel_sessions

List Tunnel Sessions

List all active tunnel sessions. Sessions represent running ngrok agent or SSH reverse tunnel connections. Each session can include multiple tunnels.

update_vault

Update Vault

Update a vault's name, description, or metadata.

stop_tunnel_session

Stop Tunnel Session

Stop an ngrok agent tunnel session. This will terminate all tunnels associated with the session.

create_ip_policy_rule

Add IP Policy Rule

Add a CIDR rule to an IP policy. Each rule specifies a CIDR range and whether to allow or deny traffic from that range.

list_api_keys

List API Keys

List all API keys for your ngrok account. API keys authenticate requests to the ngrok REST API.

delete_endpoint

Delete Endpoint

Delete a cloud endpoint. This will stop routing traffic to this endpoint.

upload_tls_certificate

Upload TLS Certificate

Upload a TLS certificate and private key pair. The certificate must be PEM-encoded with the leaf certificate first. After upload, attach to a reserved domain.

delete_credential

Delete Tunnel Credential

Delete a tunnel credential. Agents using this authtoken will no longer be able to connect.

create_bot_user

Create Bot User

Create a new bot user (service account) for programmatic API access. After creation, assign API keys or authtokens to the bot user.

update_address

Update Reserved Address

Update the description or metadata of a reserved TCP address.

list_bot_users

List Bot Users

List all bot users (service accounts). Bot users provide programmatic API access separate from human user accounts. API keys and authtokens can be assigned to bot users.

list_certificate_authorities

List Certificate Authorities

List all certificate authorities (CAs) used for mutual TLS (mTLS) authentication. CAs verify that client TLS certificates were signed by a trusted authority.

delete_ssh_credential

Delete SSH Credential

Delete an SSH credential. SSH connections using this key will no longer be authenticated.

update_bot_user

Update Bot User

Update a bot user's name or active status.

update_endpoint

Update Endpoint

Update an existing endpoint's URL, traffic policy, description, metadata, or bindings.

get_ip_policy

Get IP Policy

Retrieve details of a specific IP policy by ID.

list_ip_policy_rules

List IP Policy Rules

List all IP policy rules across all policies. Rules are individual CIDR entries with allow or deny actions.

get_tls_certificate

Get TLS Certificate

Retrieve details of a specific TLS certificate including subject, validity, and issuer information.

delete_event_destination

Delete Event Destination

Delete an event destination. It must not be referenced by any event subscription.

delete_bot_user

Delete Bot User

Delete a bot user. All API keys and authtokens owned by this bot user will be revoked.

list_credentials

List Tunnel Credentials

List all tunnel credentials (authtokens). Authtokens authorize ngrok agents to connect to the ngrok service. ACL rules can restrict which domains, addresses, or labels each token can bind.

list_vaults

List Vaults

List all vaults. Vaults organize secrets used across your ngrok resources.

More integrations teams use with Ngrok

GitHub

Manage repositories, issues, and pull requests. Create and configure branches, star repositories, review code, and merge changes. Automate CI/CD workflows with GitHub Actions, manage workflow runs, secrets, and artifacts. Track issues with labels, milestones, and assignees. Search across code, repositories, issues, and users. Manage organizations, teams, and memberships. Create and manage projects, gists, packages, deployments, and environments. Access security alerts including code scanning, secret scanning, and Dependabot alerts. Read and write file contents in repositories. Manage webhooks, notifications, and codespaces.

Sharepoint

Manage SharePoint sites, document libraries, lists, and files. Create, read, update, and delete lists and list items with custom columns. Upload, download, move, copy, and version files in document libraries. Search across sites, files, folders, lists, and list items using Microsoft Search. Manage permissions at site, list, and item levels with granular access control. Define and manage content types and site columns. Subscribe to webhooks for list and library change notifications. Retrieve site properties and search for sites across Microsoft 365.

Salesforce

Manage CRM data including Accounts, Contacts, Leads, Opportunities, Cases, and custom objects. Create, read, update, and delete records. Query data using SOQL and search across objects using SOSL. Perform bulk data operations for large-scale imports, exports, and migrations. Execute composite requests to batch multiple operations in a single API call. Access analytics, reports, and dashboards. Manage files and attachments associated with records. Interact with Chatter feeds, posts, and groups for social collaboration. Subscribe to real-time change events via Change Data Capture and Platform Events. Manage org metadata including custom objects, fields, layouts, and workflows. Query data using GraphQL for precise data retrieval across related objects.

Airtable

Create, read, update, and delete records in Airtable bases and tables. Manage base schemas including creating tables and fields. Filter records using formulas, sort by fields, and scope queries to specific views. Upsert records to find, create, or update in a single call. Upload attachments to records, read and write record comments, list accessible bases, and receive real-time base change events through webhooks.

Bitbucket

Manage Git repositories, pull requests, and CI/CD pipelines on Bitbucket Cloud. Create, fork, and configure repositories within workspaces and projects. Create, review, approve, merge, and decline pull requests with inline code comments. Browse source code, list commits, and manage branches and tags. Track issues with the built-in issue tracker. Trigger, monitor, and manage Bitbucket Pipelines. List workspace members, configure repository default reviewers and branch restrictions, create and manage repository webhooks, and search code across repositories.

Heroku

Deploy, manage, and scale applications on Heroku's cloud platform. Create and configure apps, scale dynos, provision add-ons (databases, caching, etc.), manage configuration variables, build and release code, add custom domains and SSL certificates, manage collaborators and team permissions, configure pipelines for continuous delivery, set up log drains, and sync data with Salesforce via Heroku Connect. Subscribe to webhooks for real-time notifications on app changes, builds, releases, dyno lifecycle events, and more.

Technical notes for Ngrok

Manage ngrok's globally distributed gateway for secure application connectivity. Create and manage endpoints, tunnels, and traffic routing. Reserve custom domains and TCP addresses for exposing services. Manage TLS certificates, SSH credentials, and certificate authorities for secure connections. Configure IP policies to restrict access with allow/deny CIDR rules. Manage API keys, tunnel authtokens, and bot service accounts. Set up event subscriptions to export audit and traffic logs to destinations like AWS CloudWatch, Kinesis, Firehose, Azure Logs Ingestion, and Datadog. Manage secrets and vaults for sensitive configuration data.

Connect Ngrok to production AI agents

See how Metorial gives Ngrok access the governance, tracing, and security controls teams need.

Frequently asked questions

Common questions about connecting Ngrok to AI agents with Metorial.

  1. Can Metorial connect Ngrok to AI agents?
    Yes. Metorial connects AI agents to Ngrok through a governed integration layer, so teams can use the provider while keeping access controlled and observable.
  2. Metorial is MCP compatible and lets teams expose approved provider tools to MCP-capable agents and clients through a controlled access layer.
  3. Metorial applies policies across users, groups, providers, agents, and individual tools, then records the context around every agent interaction.
  4. Yes. Metorial records provider activity so teams can inspect tool calls, troubleshoot integrations, and give security teams the visibility they need.