VERIFIED

Authenticator

Safety: 55/100

0.0(0)

This MCP server securely provides AI agents access to 2FA codes and passwords stored in the Authenticator App, enabling automated logins.

MCP ServersFreemium

Boost this tool

Subscribe to listing upgrades or segmented pushes.

Overview

This MCP server securely provides AI agents access to 2FA codes and passwords stored in the Authenticator App, enabling automated logins.

This MCP server offers convenient access to authentication credentials but requires careful handling of the access token. It is safe to use when the AI agent and the access token are properly secured. It is risky if the access token is exposed or the AI agent is compromised.

Performance should be adequate for typical use cases, as it primarily involves retrieving data from a local application. However, high-volume requests may introduce latency.

There are no direct costs associated with running the MCP server itself. Costs may arise from the resources consumed by the AI agent and the Authenticator App.

CloudTypeScript32 starsMITCI/CD

Connections & Capabilities

Connects To

GitHubTwitter

Capabilities

Read

Client Compatibility

Claude Desktop

full

Cursor

full

Windsurf

untested

VS Code (Copilot)

untested

Quickstart

Claude Desktop Config

{
  "mcpServers": {
    "Authenticator App MCP": {
      "command": "npx",
      "args": ["-y", "authenticator-mcp", "--access-token=YOUR-KEY"]
    }
  }
}

Environment Variables

AUTHENTICATOR_ACCESS_TOKEN

Tools (1)

moderate

authenticator-mcp

Provides access to 2FA codes and passwords stored in the Authenticator App.

Allows access to sensitive credentials, but only with a valid access token.

Security

Auth Method

API Key

Data Locality

cloud

Known Risks

!Exposure of the access token could grant unauthorized access to credentials.
!Compromised AI agent could misuse the credentials.
!Lack of detailed auditing or logging makes it difficult to track access.
!Potential for brute-force attacks if the access token is not sufficiently complex.

Safety Score

moderate risk

Positive

+Access requires a generated access token.
+The access token is only displayed once, encouraging secure handling.
+Designed for use with a specific desktop application.
+No internet access required once the server is running.

Risks

-Improper handling of the access token could lead to unauthorized access.
-Compromised AI agent could potentially access sensitive credentials.
-No mention of rate limiting or access controls beyond the access token.
-Potential for misuse if the AI agent is not properly secured.

Use Cases

Automated Login

-Automating login processes for websites and applications.
-Retrieving 2FA codes for secure authentication.
-Managing credentials across multiple platforms.

AI-Assisted Authentication

-Enabling AI agents to assist with authentication tasks.
-Integrating authentication into AI-driven workflows.
-Providing AI agents with secure access to credentials.

Credential Management

-Securely storing and managing 2FA codes and passwords.
-Simplifying access to credentials for AI agents.
-Centralizing credential management for automated processes.

Who Is This For?

Best For

Users who want to automate login processes.
AI agents that require access to 2FA codes and passwords.
Developers building AI-powered authentication workflows.
Individuals seeking a secure way to manage their credentials.

Not Ideal For

Environments where security is paramount and any risk of credential exposure is unacceptable.
Use cases requiring complex access control policies or auditing capabilities.
Situations where the AI agent is untrusted or potentially malicious.

Autonomy & Execution

Default ModeRead-only

Sandboxed

The server only provides read access to credentials, limiting the potential for destructive actions. The AI agent's permissions are effectively limited by the scope of the Authenticator App and the access token.

StatelessYes

Retry LogicNot documented

ConcurrencySingle-threaded

Production Tip

Regularly rotate access tokens and monitor AI agent activity for suspicious behavior.

FAQ

How do I generate an access token?

Launch the desktop version of Authenticator App · 2FA, navigate to Settings, enable the MCP Server, and generate the access token.

What happens if my access token is compromised?

Immediately generate a new access token and revoke the compromised one.

Does this MCP server store my passwords?

No, the MCP server only provides access to the credentials stored within the Authenticator App.

Can I use this with multiple AI agents?

Yes, but each AI agent will need its own access token for security reasons.

Is the communication between the AI agent and the MCP server encrypted?

The documentation does not explicitly state encryption. It is recommended to run the AI agent and MCP server on the same secure network.

What kind of data can the AI agent access?

The AI agent can access 2FA codes and passwords stored in the Authenticator App.

How do I disable the MCP server?

Toggle the MCP Server setting to 'OFF' within the Authenticator App.

Metrics

Discovered2/14/2026

Reviews0

Saved By0 users

Related Tools

Authenticator - AI Tool Review & Alternatives | Flaex AI