Connect any MCP-compatible AI assistant directly to your TATER compliance and operations data. Your AI becomes a compliance operator, ITSM teammate, audit-prep engineer, and living-documentation engine — reading your real tenant state and writing back through the same audit-logged surface your humans use. No copy-paste. No screenshots. No hallucinations from stale knowledge.
TATER ships an MCP (Model Context Protocol) server with 111+ tools. Any client that speaks MCP can connect — read your compliance posture, list open tickets, draft policies, prepare audit evidence, and write back to TATER on your behalf.
Two-line config in claude_desktop_config.json. The bundled mcp-remote bridge proxies stdio to the TATER HTTP MCP at api.tatersecurity.com/api/mcp. Authenticate with an org-bound TATER API key.
Declarative agent + API plugin manifests. Side-load via Copilot Studio or as a Teams app. Authenticates with the user's Entra ID identity so every action runs as the actual person — full audit trail.
Setup guide →HTTP MCP endpoint speaks the standard JSON-RPC protocol. Any agentic framework — OpenAI Assistants, Azure AI Foundry, Mistral, custom in-house — can use it with API key + org ID query params.
Endpoint details →All inference happens in your AI session — Claude on your subscription, Copilot on your M365 license, ChatGPT on your API key. TATER's job is to expose your tenant data as MCP tools. No platform LLM bills. No per-tenant token quotas to manage. You bring your own AI; TATER becomes its operating substrate.
Six concrete patterns where AI + TATER outperforms either alone. Each pattern is built into the MCP server's instructions and reinforced by the Three-Doc Rule and Help-Desk Session Pattern below.
Every diagnostic, remediation, and architectural conversation your AI assistant has against your TATER tenant ends with three durable records: an Ops task (lifecycle), a Configuration Document (the org's actual state), and a TATERpedia wiki page (generic methodology). The next person who asks the same question finds the answer already written.
via: claude.When the help-desk gets "I can't sign in" or "our SOC2 audit needs evidence by Friday", the AI agent walks the same data the human would — but in parallel across scans, controls, change requests, audits, and the wiki. It surfaces the relevant prior incidents, identifies the root cause from current state, and proposes the fix with the exact PowerShell/Graph call.
trigger_remediationalex@cb.com can't sign in from VPN. Trace it."CA-VPN-MFA updated 2 days ago by change request CR-2391 now requires authenticator-app MFA. Alex's user is on the SMS-only exemption list (expired yesterday). Updates the ticket with root cause + 3 remediation options (extend exemption, reset auth methods, or re-enroll). Logged as via: copilot.Your AI watches scans, manual-review controls, and risk acceptances and stays ahead of audit cycles. When evidence is missing, it gathers it; when justifications are stale, it drafts updates; when frameworks change, it identifies the deltas and proposes how to close them.
get_evidence_job_status and posts findings to control threads as commentscreate_risk_acceptanceauto_populate_poamset_framework_narrative with the actual implementation status surfaced from controlsProposed changes traditionally rely on a human change-board's intuition. AI + TATER turns that into data: query every control that touches the system, every dependent vendor, every audit finding from related changes, every policy gate. Output: a risk-scored impact analysis with rollback plan.
get_control_context, list_risks, list_pending_changes to surface adjacent in-flight changesThe federal pipeline benefits the most from AI augmentation because it's documentation-heavy. AI agents that know your actual control implementations and current scan posture can produce first-draft POAM items, RMF step descriptions, and SSP control narratives at scale — leaving humans to review, not author from scratch.
auto_populate_poam seeds open POAM items from failing controls + accepted riskscreate_ssp and set_framework_narrative populate the SSP with actual implementation language from your TATERpediaDrop a meeting transcript into TATER and your AI agent extracts decisions, follow-ups, business-documentation drafts (SOPs, role definitions, vendor briefs), and risks raised. Each artifact is linked back to the source meeting for full provenance.
create_business_doccreate_tasker_task, attributed to the meeting attendee mentionedprocessed, links all created artifacts back. Notifications fire to assigned task owners.When you connect an AI assistant via TATER's MCP, it inherits a strict working pattern via the server's mandatory instructions. The rules ensure documentation is the natural output of every session — not an afterthought — and that help-desk sessions don't fragment into orphaned threads.
Every diagnostic, troubleshooting, or remediation session produces all three of:
All three cross-link. Next time the same scenario comes up, the answer is already written — the AI finds the wiki via search_wiki, the ConfigDoc via search_config_docs, and the prior incident via list_tasker_tasks.
On any "something is broken" or "user can't…" request, AI agents must follow a 4-step pattern:
list_tasker_tasks by requester + symptom. Continue an existing ticket if one exists.create_tasker_task with the symptom verbatim.Side-by-side: the manual workflow vs. the AI + TATER workflow. Time saved compounds.
One auditor + one engineer · 2 weeks · 40 hours of evidence collection across portals, screenshots, manual spreadsheets, "where did we put that script again"
~3 hours of human review on AI-drafted artifacts. Evidence already attached. Risk acceptances already documented. New POAM items already filed. Framework narratives already drafted.
Help-desk technician spends 30 min reproducing, 30 min in Entra portal, 30 min searching Slack for "did we change this", documents nothing because it's late.
15 min. AI surfaces the relevant change request that broke it (CR-2391 yesterday), proposes the fix, the technician approves. Ticket, ConfigDoc, and wiki page are written automatically.
New engineer reads stale Confluence pages, asks 8 different people on Slack, builds wrong mental model, ships first PR with a security regression.
New engineer asks the AI any question. AI calls search_wiki + search_config_docs + get_org_context, returns the actual current-state answer with provenance. No stale wiki. No Slack ping chains.
Connect Claude, Copilot, or any MCP-compatible AI to your TATER tenant. Setup is under 10 minutes for Claude Desktop; M365 Copilot is a side-loaded Teams app. Both authenticate against TATER's existing identity model — same role-based access, same audit log, same MCP tool policy controls that govern human users.