How to integrate Ngrok MCP with OpenClaw

Trusted by
AWS
Glean
Zoom
Airtable
GET STARTED FOR FREEGET A DEMO

30 min · no commitment · see it on your stack

Ngrok logo
OpenClaw logo
divider

Introduction

OpenClaw is the fastest growing agent harness out there, which can work 24/7 to automate almost any kind of tasks. However, its capabilities are limited to the tools it has access to. Composio allows your OpenClaw to access Ngrok with authentication management handled for you. You can execute actions on Ngrok via your favorite OpenClaw interface (Telegram, WhatsApp, TUI, etc), whichever you prefer.

Also integrate Ngrok with

Why use Composio?

Apart from a managed and hosted MCP server, you will get:

  • Programmatic tool calling allows LLMs to write its code in a remote workbench to handle complex tool chaining. Reduces to-and-fro with LLMs for frequent tool calling.
  • Handling Large tool responses out of LLM context to minimize context rot.
  • Dynamic just-in-time access to 20,000 tools across 1000+ other Apps for cross-app workflows. It loads the tools you need, so LLMs aren't overwhelmed by tools you don't need.

How to install Ngrok with OpenClaw

Using Composio API Key and Setup Prompt

Copy the setup prompt from the OpenClaw dashboard
  • Run it in your OpenClaw chat interface.
  • Authenticate Ngrok from the dashboard
  • Go back to your OpenClaw interface and start asking questions.

Using OpenClaw/Composio Plugin

1. Install OpenClaw Composio plugin

bash
openclaw plugins install @composio/openclaw-plugin

2. Copy the API Key from dashboard.composio.dev

3. Setup OpenClaw Config

bash
openclaw config set plugins.entries.composio.config.consumerKey "ck_your_key_here"

4. Restart OpenClaw

bash
openclaw gateway restart

5. Go to your chat interface and start asking questions.

6. When prompted, authenticate the app and you're all set.

How It Works

The plugin connects to Composio's MCP server at https://connect.composio.dev/mcp and registers all available tools directly into the OpenClaw agent. Tools are called by name — no extra search or execute steps needed.

If a tool returns an auth error, the agent will prompt you to connect that toolkit at dashboard.composio.dev.

Configuration

bash
{
  "plugins": {
    "entries": {
      "composio": {
        "enabled": true,
        "config": {
          "consumerKey": "ck_your_key_here"
        }
      }
    }
  }
}
OptionDescriptionDefault
enabledEnable or disable the plugintrue
consumerKeyYour Composio consumer key (ck_...)
mcpUrlMCP server URL (advanced)https://connect.composio.dev/mcp

What is the Ngrok MCP server, and what's possible with it?

The Ngrok MCP server is an implementation of the Model Context Protocol that connects your AI agent and assistants like Claude, Cursor, etc directly to your Ngrok account. It provides structured and secure access to your Ngrok tunnels and API keys, so your agent can perform actions like managing endpoints, listing tunnels, handling API keys, and auditing IP restrictions on your behalf.

  • Active tunnel and endpoint monitoring: Instantly list all active tunnels and endpoints in your Ngrok account, making it simple to track running services and public URLs.
  • API key management: Programmatically create, list, and delete API keys to securely manage who and what can access your Ngrok resources.
  • HTTPS edge configuration visibility: Retrieve a comprehensive list of all HTTPS edges to review and manage how Ngrok handles encrypted traffic.
  • IP restriction and policy auditing: List and inspect all IP restrictions and policy rules, helping you enforce access control and security best practices.
  • Detailed access audit trails: Fetch details about specific IP restrictions for security audits and compliance, ensuring you always know who can access your tunnels and APIs.

Supported Tools & Triggers

Tools
Create API KeyCreates a new API key for authenticating with the ngrok API.
Create Tunnel CredentialCreates a new tunnel authtoken credential for authenticating ngrok agents.
Create EndpointCreate a cloud endpoint on the ngrok account.
Create Event SourceAdd a new event source to an event subscription.
Create Event SubscriptionCreates a new event subscription in ngrok.
Create HTTPS EdgeCreates a new HTTPS edge in your ngrok account.
Create HTTPS Edge RouteCreates a new route on an HTTPS edge in ngrok.
Create SSH CredentialCreates a new SSH credential from an uploaded public SSH key.
Create VaultCreates a new vault in your ngrok account.
Create Vault SecretTool to create a new secret in an ngrok vault for secure storage of sensitive data like API keys, passwords, or tokens.
Delete API KeyDelete an API key by its ID.
Delete CredentialsDelete a tunnel authtoken credential by ID.
Delete HTTPS Edge Route Circuit Breaker ModuleDelete the Circuit Breaker module from an HTTPS Edge Route.
Delete Edge Route Compression ModuleDelete the compression module from an HTTPS edge route.
Delete Edge Route Request Headers ModuleDelete the request headers module from an HTTPS edge route.
Delete Edge Route Response Headers ModuleDelete the response headers module from an HTTPS edge route.
Delete Edge Route SAML ModuleDelete the SAML module configuration from an HTTPS edge route.
Delete Edge Route User Agent Filter ModuleDelete the user agent filter module from an HTTPS edge route.
Delete Edge Route Webhook Verification ModuleDelete the webhook verification module from an HTTPS edge route.
Delete Edge Route WebSocket TCP Converter ModuleDelete the WebSocket TCP converter module from an HTTPS edge route.
Delete EndpointDelete an endpoint by ID.
Delete Event SourceDelete an event source from an event subscription.
Delete Event SubscriptionDelete an event subscription by ID.
Delete HTTPS EdgeDelete an HTTPS edge by ID.
Delete HTTPS Edge RouteDelete an HTTPS edge route by ID.
Delete Reserved Domain CertificateDetach the certificate attached to a reserved domain.
Delete Reserved Domain Certificate Management PolicyDetach the certificate management policy from a reserved domain.
Delete SecretDelete a vault secret by ID.
Delete SSH CredentialsDelete an SSH credential by ID.
Delete VaultDelete a vault by ID.
Get API KeyGet the details of an API key by ID.
Get CredentialsTool to retrieve detailed information about a tunnel authtoken credential by ID.
Get Edge Route Backend ModuleRetrieves the backend module configuration for an HTTPS edge route.
Get Edge Route Circuit Breaker ModuleTool to retrieve the circuit breaker module configuration for a specific HTTPS edge route.
Get Edge Route Compression ModuleRetrieves the compression module configuration for a specific HTTPS edge route.
Get Edge Route IP Restriction ModuleRetrieves the IP restriction module configuration for a specific HTTPS edge route.
Get Edge Route OIDC ModuleRetrieves the OIDC (OpenID Connect) module configuration for a specific HTTPS edge route.
Get Edge Route Request Headers ModuleRetrieves the request headers module configuration for a specific HTTPS edge route.
Get Edge Route Response Headers ModuleGet the response headers module configuration for an HTTPS edge route.
Get Edge Route SAML ModuleRetrieves the SAML authentication module configuration for a specific HTTPS edge route.
Get Edge Route Traffic PolicyRetrieves the Traffic Policy module configuration for a specific HTTPS edge route.
Get Edge Route User Agent Filter ModuleRetrieves the user agent filter module configuration for a specific HTTPS edge route.
Get Edge Route Webhook Verification ModuleRetrieves the webhook verification module configuration for an HTTPS edge route.
Get Edge Route WebSocket TCP Converter ModuleRetrieves the WebSocket TCP Converter module configuration for a specific HTTPS edge route.
Get EndpointGet the status of an endpoint by ID.
Get Event SourceGet an event source by type for a specific event subscription.
Get HTTPS EdgeGet the details of an HTTPS edge by ID.
Get HTTPS Edge Mutual TLS ModuleRetrieves the mutual TLS module configuration for an HTTPS edge.
Get HTTPS Edge RouteRetrieves detailed information about a specific HTTPS edge route by its ID.
Get IP Restriction DetailsRetrieves detailed information about a specific IP restriction by its ID.
Get Reserved DomainGet the details of a reserved domain by ID.
Get SecretTool to retrieve detailed information about a vault secret by ID.
Get Secrets by VaultTool to get all secrets in a vault by vault ID.
Get SSH CredentialsTool to retrieve detailed information about an SSH credential by ID.
Get VaultGet the details of a vault by ID.
List Agent IngressesList all Agent Ingresses owned by this account.
List API KeysThis tool lists all API keys owned by the user.
List Bot UsersTool to list all bot users on this ngrok account.
List Certificate AuthoritiesList all certificate authorities on this account.
List Tunnel CredentialsList all tunnel authtoken credentials on the ngrok account.
List All EndpointsList all active endpoints on the ngrok account.
List Event DestinationsList all Event Destinations on the ngrok account.
List Event SubscriptionsList all event subscriptions on the ngrok account.
List Event Subscription SourcesTool to list the types for which this event subscription will trigger.
List Failover BackendsList all failover backends on this account.
List HTTP Response BackendsList all HTTP response backends on the account.
List HTTPS EdgesLists all HTTPS Edges in your ngrok account.
List IP PoliciesList all IP policies on this account.
List IP Policy RulesThis tool lists all IP policy rules associated with your ngrok account.
List IP RestrictionsLists all IP restrictions configured on the ngrok account.
List Reserved AddressesList all reserved addresses on this account.
List Reserved DomainsList all reserved domains on this account.
List Service UsersTool to list all service users on this ngrok account.
List SSH Certificate AuthoritiesList all SSH Certificate Authorities on this account.
List SSH CredentialsList all SSH credentials on the ngrok account.
List SSH Host CertificatesList all SSH Host Certificates issued on this account.
List SSH User CertificatesList all SSH user certificates on the ngrok account.
List Static BackendsList all static backends on the account.
List TCP EdgesLists all TCP Edges in your ngrok account.
List TLS CertificatesList all TLS certificates on the ngrok account.
List TLS EdgesLists all TLS Edges in your ngrok account.
List Active TunnelsList all active tunnels in the ngrok account.
List Tunnel SessionsList all online tunnel sessions running on this account.
List VaultsList all vaults owned by the ngrok account.
List Vault SecretsList all vault secrets owned by the ngrok account.
List Weighted BackendsList all weighted backends on the ngrok account.
Replace Edge Route Circuit Breaker ModuleReplaces the circuit breaker module configuration on an HTTPS edge route.
Replace Edge Route Compression ModuleReplaces the compression module configuration for an HTTPS edge route.
Replace Edge Route Request Headers ModuleReplaces the request headers module configuration for an HTTPS edge route.
Replace Edge Route Response Headers ModuleReplaces the response headers module configuration for an HTTPS edge route.
Replace Edge Route Traffic PolicyReplaces the traffic policy module on an HTTPS edge route.
Replace Edge Route User Agent Filter ModuleReplaces the user agent filter module configuration for an HTTPS edge route.
Replace Edge Route Webhook Verification ModuleReplaces the webhook verification module configuration for an HTTPS edge route.
Update API KeyUpdates attributes of an API key by ID.
Update CredentialsTool to update attributes of a tunnel authtoken credential by ID.
Update EndpointTool to update an Endpoint by ID, currently available only for cloud endpoints.
Update Event SubscriptionTool to update attributes of an event subscription by ID.
Update HTTPS Edge RouteTool to update an HTTPS edge route by ID.
Update Reserved DomainTool to update the attributes of a reserved domain by ID.
Update SecretTool to update a vault secret by ID.
Update SSH CredentialTool to update attributes of an SSH credential by ID.
Update VaultTool to update attributes of a vault by ID.

Conclusion

You've successfully integrated Ngrok with OpenClaw using Composio plugin. Now interact with Ngrok directly from your terminal, Web UI, or any messenger app using natural language commands.

Key benefits of this setup:

  • Seamless integration across TUI, Web UIs, and Messenger apps like Telegram, WhatsApp, Slack, etc.
  • Natural language commands for Ngrok operations
  • Managed authentication through Composio
  • Access to 20,000+ tools across 1000+ apps for cross-app workflows
  • Programmatic tool calling for complex tool chaining

Next steps:

  • Try asking OpenClaw to perform various Ngrok operations
  • Explore cross-app workflows by connecting more toolkits like Calendar, Slack, Notion, etc.
  • Build complex automation scripts that leverage OpenClaw's 24/7 running capabilities

How to build Ngrok MCP Agent with another framework

OpenAI Agents SDK logo

OpenAI Agents SDK

Use Ngrok MCP with OpenAI Agents SDK

Claude Agent SDK logo

Claude Agent SDK

Use Ngrok MCP with Claude Agent SDK

Claude Code logo

Claude Code

Use Ngrok MCP with Claude Code

Claude Cowork logo

Claude Cowork

Use Ngrok MCP with Claude Cowork

Codex logo

Codex

Use Ngrok MCP with Codex

Hermes logo

Hermes

Use Ngrok MCP with Hermes

CLI logo

CLI

Use Ngrok MCP with CLI

Google ADK logo

Google ADK

Use Ngrok MCP with Google ADK

LangChain logo

LangChain

Use Ngrok MCP with LangChain

Vercel AI SDK logo

Vercel AI SDK

Use Ngrok MCP with Vercel AI SDK

Mastra AI logo

Mastra AI

Use Ngrok MCP with Mastra AI

LlamaIndex logo

LlamaIndex

Use Ngrok MCP with LlamaIndex

CrewAI logo

CrewAI

Use Ngrok MCP with CrewAI

FAQ

What are the differences in Tool Router MCP and Ngrok MCP?

With a standalone Ngrok MCP server, the agents and LLMs can only access a fixed set of Ngrok tools tied to that server. However, with the Composio Tool Router, agents can dynamically load tools from Ngrok and many other apps based on the task at hand, all through a single MCP endpoint.

Can I use Tool Router MCP with OpenClaw?

Yes, you can. OpenClaw fully supports MCP integration. You get structured tool calling, message history handling, and model orchestration while Tool Router takes care of discovering and serving the right Ngrok tools.

Can I manage the permissions and scopes for Ngrok while using Tool Router?

Yes, absolutely. You can configure which Ngrok scopes and actions are allowed when connecting your account to Composio. You can also bring your own OAuth credentials or API configuration so you keep full control over what the agent can do.

How safe is my data with Composio Tool Router?

All sensitive data such as tokens, keys, and configuration is fully encrypted at rest and in transit. Composio is SOC 2 Type 2 compliant and follows strict security practices so your Ngrok data and credentials are handled as safely as possible.

Used by agents from

Context
Letta
glean
HubSpot
Agent.ai
Altera
DataStax
Entelligence
Rolai
Context
Letta
glean
HubSpot
Agent.ai
Altera
DataStax
Entelligence
Rolai
Context
Letta
glean
HubSpot
Agent.ai
Altera
DataStax
Entelligence
Rolai

Never worry about agent reliability

We handle tool reliability, observability, and security so you never have to second-guess an agent action.

Get started for freeGet a demo