// MCP TOOL REFERENCE

IBMCLOUD TOOLS

88 tools from the Ibmcloud MCP Server, categorised by risk level.

View the Ibmcloud policy → Token cost: 4,844 tokens →

// ALL 88 IBMCLOUD TOOLS

READ 53 tools

Read ibmcloud_account_list List all accessible accounts Read ibmcloud_account_show Show current account information Read ibmcloud_billing_account_usage Get account usage for a billing period Read ibmcloud_billing_org_usage Get Cloud Foundry org usage Read ibmcloud_billing_resource_group_usage Get resource group usage Read ibmcloud_billing_resource_instances_usage Get usage for resource instances Read ibmcloud_catalog_search Search the service catalog Read ibmcloud_catalog_service Get details about a catalog service Read ibmcloud_catalog_service_plans List plans for a catalog service Read ibmcloud_cf_app Get Cloud Foundry application details Read ibmcloud_cf_apps List Cloud Foundry applications Read ibmcloud_cf_bind_service Bind a service to an application Read ibmcloud_cf_env Show environment variables for an application Read ibmcloud_cf_logs View recent logs for an application Read ibmcloud_cf_marketplace List marketplace services Read ibmcloud_cf_orgs List Cloud Foundry organizations Read ibmcloud_cf_routes List Cloud Foundry routes Read ibmcloud_cf_services List Cloud Foundry services Read ibmcloud_cf_spaces List Cloud Foundry spaces Read ibmcloud_cf_unbind_service Unbind a service from an application Read ibmcloud_config_list List CLI configuration Read ibmcloud_cr_images List container images Read ibmcloud_cr_namespaces List Container Registry namespaces Read ibmcloud_cr_quota Get Container Registry quota information Read ibmcloud_iam_access_group Get access group details Read ibmcloud_iam_access_group_policies List policies for an access group Read ibmcloud_iam_access_group_users List users in an access group Read ibmcloud_iam_access_groups List access groups Read ibmcloud_iam_api_keys List API keys Read ibmcloud_iam_roles List IAM roles Read ibmcloud_iam_service_api_keys List API keys for a service ID Read ibmcloud_iam_service_id Get service ID details Read ibmcloud_iam_service_ids List service IDs Read ibmcloud_iam_users List users in the account Read ibmcloud_ks_cluster Get cluster details Read ibmcloud_ks_clusters List Kubernetes clusters Read ibmcloud_ks_flavors List available machine types/flavors Read ibmcloud_ks_versions List available Kubernetes versions Read ibmcloud_ks_worker_pools List worker pools in a cluster Read ibmcloud_ks_workers List worker nodes in a cluster Read ibmcloud_ks_zones List available zones Read ibmcloud_logout Logout from IBM Cloud Read ibmcloud_plugin_list List installed CLI plugins Read ibmcloud_plugin_repo_plugins List available plugins from repository Read ibmcloud_regions List available IBM Cloud regions Read ibmcloud_resource_groups List resource groups Read ibmcloud_resource_search Search for resources Read ibmcloud_resource_service_instance Get details of a service instance Read ibmcloud_resource_service_instances List service instances Read ibmcloud_resource_service_key Get details of a service key Read ibmcloud_resource_service_keys List service keys/credentials Read ibmcloud_resource_tags List tags Read ibmcloud_version Show IBM Cloud CLI version

WRITE 24 tools

Write ibmcloud_api View or set IBM Cloud API endpoint Write ibmcloud_cf_create_service Create a Cloud Foundry service instance Write ibmcloud_cf_push Deploy a Cloud Foundry application Write ibmcloud_cf_set_env Set an environment variable for an application Write ibmcloud_cr_namespace_add Create a Container Registry namespace Write ibmcloud_iam_access_group_create Create an access group Write ibmcloud_iam_access_group_policy_create Create a policy for an access group Write ibmcloud_iam_access_group_user_add Add users to an access group Write ibmcloud_iam_api_key_create Create an API key Write ibmcloud_iam_service_api_key_create Create an API key for a service ID Write ibmcloud_iam_service_id_create Create a service ID Write ibmcloud_iam_user_invite Invite a user to the account Write ibmcloud_ks_cluster_config Configure kubectl for a cluster Write ibmcloud_ks_cluster_create Create a Kubernetes cluster Write ibmcloud_ks_worker_pool_create Create a worker pool Write ibmcloud_ks_worker_pool_resize Resize a worker pool Write ibmcloud_login Login to IBM Cloud with API key or SSO Write ibmcloud_plugin_install Install a CLI plugin Write ibmcloud_resource_group_create Create a resource group Write ibmcloud_resource_service_instance_create Create a service instance Write ibmcloud_resource_service_instance_update Update a service instance Write ibmcloud_resource_service_key_create Create a service key/credential Write ibmcloud_resource_tag_attach Attach tags to a resource Write ibmcloud_target View or set target region, resource group, org, and space

DESTRUCTIVE 7 tools

Destructive ibmcloud_cf_delete Delete a Cloud Foundry application Destructive ibmcloud_cr_image_rm Remove a container image Destructive ibmcloud_iam_api_key_delete Delete an API key Destructive ibmcloud_iam_service_id_delete Delete a service ID Destructive ibmcloud_ks_cluster_delete Delete a Kubernetes cluster Destructive ibmcloud_resource_service_instance_delete Delete a service instance Destructive ibmcloud_resource_service_key_delete Delete a service key

EXECUTE 4 tools

Execute ibmcloud_cf_restart Restart a Cloud Foundry application Execute ibmcloud_cf_scale Scale a Cloud Foundry application Execute ibmcloud_cf_start Start a Cloud Foundry application Execute ibmcloud_cf_stop Stop a Cloud Foundry application

// RUNNING THIS SERVER

The managed route: connect Ibmcloud through the PolicyLayer gateway — every tool call above is checked against your policy before it runs, with a full audit log.

DIRECT INSTALL (UNMANAGED) npx -y ibmcloud-mcp-server

// FAQ

How many tools does the Ibmcloud MCP server have? +

The Ibmcloud MCP server exposes 88 tools across 4 categories: Read, Write, Destructive, Execute.

How do I enforce policies on Ibmcloud tools? +

Route the Ibmcloud server through the PolicyLayer gateway. Define allow, deny, or approval rules per tool in the dashboard — they are enforced on every call before it reaches the server.

What risk categories do Ibmcloud tools fall into? +

Ibmcloud tools are categorised as Read (53), Write (24), Destructive (7), Execute (4). Each category has a recommended default policy.

Let agents act without letting them run wild.

Route your MCP servers through PolicyLayer and every tool call is checked against your policy before it runs — allow, deny, or require approval. Per-identity grants. Full audit log. Live in minutes.

SECURE YOUR MCP →

Free to start. No card required.

4,600+ MCP servers and 31,000+ tools scanned and risk-classified.