132 tools from the Fleet MCP Server, categorised by risk level.
View the Fleet policy →fleet_find_software_on_host Find specific software on a host by hostname 2/5 fleet_get_batch_script Get details of a batch script execution 2/5 fleet_get_bootstrap_metadata Get metadata about a bootstrap package for a team 2/5 fleet_get_bootstrap_summary Get summary of bootstrap package deployment 2/5 fleet_get_carve Get detailed information about a specific carve session 2/5 fleet_get_carve_block Get a specific block of data from a carve session 2/5 fleet_get_certificate Get the Fleet server certificate chain 2/5 fleet_get_config Get the current Fleet application configuration 2/5 fleet_get_cve Get detailed information about a specific CVE 2/5 fleet_get_device_info Get device information using a device token 2/5 fleet_get_enroll_secrets Get the enrolment secrets configuration 3/5 fleet_get_filevault_summary Get FileVault encryption summary 2/5 fleet_get_host Get detailed information about a specific host by ID 2/5 fleet_get_host_by_identifier Get host by hostname, UUID, or hardware serial 2/5 fleet_get_host_device_mapping Get device mapping information for a host 2/5 fleet_get_host_encryption_key Get disk encryption recovery key for a host 3/5 fleet_get_host_macadmins Get macadmins data (Munki, MDM profiles) for a host 2/5 fleet_get_host_mdm Get MDM information for a specific host 2/5 fleet_get_host_mdm_profiles Get MDM profiles installed on a specific host 2/5 fleet_get_host_software Get software installed on a specific host 2/5 fleet_get_label Get detailed information about a specific label 2/5 fleet_get_mdm_command_results Get results of MDM commands 2/5 fleet_get_mdm_profiles_summary Get summary of MDM profile deployment status 2/5 fleet_get_osquery_table_schema Get detailed schema for a specific table 2/5 fleet_get_pack Get detailed information about a specific pack 2/5 fleet_get_policy_results Get compliance results for a specific policy 2/5 fleet_get_query Get details of a specific saved query 2/5 fleet_get_query_report Get the latest results from a scheduled query 2/5 fleet_get_script Get details of a specific script 2/5 fleet_get_script_result Get the result of a script execution 2/5 fleet_get_session Get session details by ID 2/5 fleet_get_setup_assistant Get the MDM Apple Setup Assistant configuration 2/5 fleet_get_software Get detailed information about a specific software item 2/5 fleet_get_software_install_result Get the result of a software installation request 2/5 fleet_get_software_title Get detailed information about a specific software title 2/5 fleet_get_team Get details of a specific team 2/5 fleet_get_team_secrets List team-specific enrol secrets 3/5 fleet_get_user Get details of a specific user 2/5 fleet_get_version Get the Fleet server version information 2/5 fleet_get_vulnerabilities List known vulnerabilities with filtering 2/5 fleet_health_check Check Fleet server connectivity and authentication 2/5 fleet_list_activities List Fleet activities and audit logs 2/5 fleet_list_app_store_apps List App Store apps available for installation 2/5 fleet_list_batch_script_hosts List hosts in a batch script execution 2/5 fleet_list_batch_scripts List batch script executions 2/5 fleet_list_carves List file carve sessions 2/5 fleet_list_host_certificates List certificates for a specific host 2/5 fleet_list_host_past_activities List past activities for a specific host 2/5 fleet_list_host_scripts List scripts available for a specific host 2/5 fleet_list_host_upcoming_activities List upcoming activities for a specific host 2/5 fleet_list_hosts List hosts with filtering, pagination, and search 2/5 fleet_list_invites List pending user invites 2/5 fleet_list_labels List all labels 2/5 fleet_list_mdm_apple_installers List all Apple MDM installers 2/5 fleet_list_mdm_commands List MDM commands that have been executed 2/5 fleet_list_mdm_devices List all MDM-enrolled Apple devices 2/5 fleet_list_mdm_profiles List MDM configuration profiles 2/5 fleet_list_osquery_tables List available osquery tables with dynamic discovery 2/5 fleet_list_packs List all query packs 2/5 fleet_list_policies List all compliance policies 2/5 fleet_list_queries List all saved queries with pagination 2/5 fleet_list_scheduled_queries List scheduled queries in a specific pack 2/5 fleet_list_scripts List all scripts available in Fleet 2/5 fleet_list_secrets List secret variables in Fleet 3/5 fleet_list_software List software inventory across the fleet 2/5 fleet_list_software_titles List software titles across the fleet 2/5 fleet_list_team_users List all users that are members of a specific team 2/5 fleet_list_teams List all teams 2/5 fleet_list_user_sessions List active sessions for a user 2/5 fleet_list_users List all users with filtering 2/5 fleet_list_vpp_tokens List VPP tokens configured in Fleet 3/5 fleet_search_hosts Search hosts by hostname, UUID, serial number, or IP 2/5 fleet_search_software Search for software by name 2/5 fleet_suggest_tables_for_query Get AI-powered table suggestions based on intent 2/5 fleet_verify_invite Verify an invite token and get invite details 2/5 fleet_add_app_store_app Add an App Store app for distribution via MDM 4/5 fleet_add_labels_to_host Add labels to a host 3/5 fleet_add_team_users Add one or more users to a specific team 4/5 fleet_batch_set_software Batch upload/set software installers for a team 5/5 fleet_cancel_batch_script Cancel a batch script execution in progress 3/5 fleet_cancel_host_activity Cancel an upcoming activity for a specific host 3/5 fleet_create_invite Create a new user invite 4/5 fleet_create_label Create a new label for host classification 3/5 fleet_create_pack Create a new query pack 4/5 fleet_create_policy Create a new compliance policy 4/5 fleet_create_query Create a new saved query 4/5 fleet_create_script Create and upload a new script 5/5 fleet_create_secret Create a new secret variable 5/5 fleet_create_setup_assistant Create or update MDM Apple Setup Assistant config 4/5 fleet_create_team Create a new team 3/5 fleet_create_user Create a new user account 5/5 fleet_modify_script Modify an existing script 5/5 fleet_remove_labels_from_host Remove labels from a host 3/5 fleet_remove_team_user Remove a specific user from a team 4/5 fleet_transfer_hosts Transfer hosts to a different team 4/5 fleet_unlock_host Unlock a host device remotely 4/5 fleet_update_app_store_app Update App Store app distribution settings 3/5 fleet_update_config Update the Fleet application configuration 5/5 fleet_update_enroll_secrets Update the enrolment secrets configuration 5/5 fleet_update_invite Update a pending invite 3/5 fleet_update_label Update an existing label 3/5 fleet_update_pack Update an existing query pack 4/5 fleet_update_policy Update an existing compliance policy 4/5 fleet_update_user Update an existing user account 4/5 fleet_upload_bootstrap_package Upload a bootstrap package for MDM enrolment 5/5 fleet_upload_mdm_apple_installer Upload a new Apple MDM installer package 5/5 fleet_upload_mdm_profile Upload a new MDM configuration profile 5/5 fleet_delete_bootstrap_package Delete a bootstrap package for a team 4/5 fleet_delete_host Permanently remove a host from Fleet 5/5 fleet_delete_invite Delete a pending invite 3/5 fleet_delete_label Delete a label by name permanently 4/5 fleet_delete_mdm_profile Delete an MDM configuration profile 5/5 fleet_delete_pack Delete a query pack by name permanently 4/5 fleet_delete_policy Delete a compliance policy permanently 4/5 fleet_delete_query Delete a saved query permanently 4/5 fleet_delete_script Delete a script permanently 4/5 fleet_delete_secret Delete a secret variable by ID 5/5 fleet_delete_session Delete and invalidate a specific session 4/5 fleet_delete_setup_assistant Delete the MDM Apple Setup Assistant config 4/5 fleet_delete_user_sessions Delete all sessions for a specific user 4/5 fleet_delete_vpp_token Delete a VPP token permanently 5/5 fleet_unenroll_host_mdm Unenrol a host from MDM management 5/5 fleet_install_software Install software on a specific host 5/5 fleet_lock_device Lock an MDM-enrolled device remotely 5/5 fleet_lock_host Lock a host device remotely 5/5 fleet_query_host Run an ad-hoc live query against a specific host 4/5 fleet_query_host_by_identifier Run a live query by hostname, UUID, or serial 4/5 fleet_refetch_host Force a host to refetch and update its data 3/5 fleet_run_batch_script Run a script on multiple hosts simultaneously 5/5 fleet_run_live_query_with_results Execute a live query and collect results from hosts 5/5 fleet_run_saved_query Run a saved query against hosts 4/5 fleet_run_script Run a script on a specific host 5/5 The Fleet MCP server exposes 132 tools across 4 categories: Read, Write, Destructive, Execute.
Use Intercept, the open-source MCP proxy. Write YAML rules for each tool — rate limits, argument validation, or deny rules — then run Intercept in front of the Fleet server.
Fleet tools are categorised as Read (75), Write (32), Destructive (15), Execute (10). Each category has a recommended default policy.
Open source. One binary. Zero dependencies.
npx -y @policylayer/intercept