loading…
Browse all
Datto Saas Protection
FreeNot checkedAn MCP server for Datto SaaS Protection, providing tools to manage cloud backup and recovery for Microsoft 365 and Google Workspace data through Datto's API.
About
An MCP server for Datto SaaS Protection, providing tools to manage cloud backup and recovery for Microsoft 365 and Google Workspace data through Datto's API.
README
A Model Context Protocol server exposing the Datto SaaS Protection (Backupify) API to Claude and other MCP clients.
What it does
Surface SaaS backup posture for your M365 and Google Workspace tenants directly to AI assistants — list customer organizations, inspect protected domains and seats, browse backup history, queue restores, and audit activity logs and license usage.
Tools
| Tool | Purpose |
|---|---|
datto_saas_list_clients |
List all customer organizations |
datto_saas_list_domains |
List protected domains under a client |
datto_saas_list_seats |
List seats in a domain (toggle archived) |
datto_saas_get_seat |
Fetch a single seat detail |
datto_saas_list_backups |
List backup runs for a seat |
datto_saas_queue_restore |
Queue a restore (DESTRUCTIVE — requires confirmation) |
datto_saas_get_restore_status |
Check restore progress |
datto_saas_list_activity |
Org activity log (date-range elicitation) |
datto_saas_get_license_usage |
Seat counts vs purchased |
Credentials
Local (env mode)
export DATTO_SAAS_PUBLIC_KEY="..."
export DATTO_SAAS_SECRET_KEY="..."
export DATTO_SAAS_REGION="us" # or "eu"
Hosted (gateway mode)
The WYRE MCP Gateway injects credentials per request via headers:
X-Datto-SaaS-Public-Key(required, secret)X-Datto-SaaS-Secret-Key(required, secret)X-Datto-SaaS-Region(optional, defaultus)
Run
npm install
npm run build
npm start # stdio
MCP_TRANSPORT=http npm start # HTTP on :8080
License
Apache 2.0 — see LICENSE.
How to install
Run in your terminal:
claude mcp add datto-saas-protection-mcp -- npx 
