Kong Agentic Guardrail Integration
Monitor and analyze all incoming requests and outgoing responses from your AI agents and MCP (Model Context Protocol) servers running on Kong API Gateway. This custom Kong plugin automatically captures API traffic, enabling comprehensive visibility, security analysis, and compliance monitoring for your AI infrastructure.
Quick Setup Steps
This integration requires you to download our custom plugin, install it inside your Kong instance, enable it for your target services/routes, and deploy the associated helm charts for full functionality.
1. Download the Custom Kong Plugin
Clone the GitHub repository containing the plugin files.
git clone https://github.com/akto-api-security/kong-integration.gitInside the repository, navigate to the /plugin directory. You will find the following two required files:
handler.lua
schema.lua
These constitute the core logic and validation schema for the custom Kong plugin.
2. Install the Plugin in Kong
Follow the steps below to install the plugin into your Kong environment.
Step 2.1: Copy Plugin Files to Kong
Create a directory for custom plugins (if not already present):
mkdir -p /usr/local/share/lua/5.1/kong/plugins/akto-mcp-endpoint-shieldCopy the files:
cp plugin/handler.lua /usr/local/share/lua/5.1/kong/plugins/akto-mcp-endpoint-shield/ cp plugin/schema.lua /usr/local/share/lua/5.1/kong/plugins/akto-mcp-endpoint-shield/
Step 2.2: Update Kong Configuration
Edit your kong.conf or environment variable configuration:
plugins = bundled,akto-mcp-endpoint-shieldThis ensures Kong loads your custom plugin along with the built-in ones.
Step 2.3: Restart Kong
Apply the config changes:
kong restart3. Enable the Plugin for a Service or Route
You can enable the plugin globally or at the service/route level. Most teams prefer enabling it only for selected upstreams (MCP servers or AI agents).
Enable for a specific service:
curl -X POST http://localhost:8001/services/<SERVICE_NAME>/plugins \
--data "name=mcp-endpoint-shield" \
--data "config.service_url=http://<AKTO_SERVICE_URL>:9091" \
--data "config.mode=async"Enable for a specific route:
curl -X POST http://localhost:8001/routes/<ROUTE_NAME>/plugins \
--data "name=mcp-endpoint-shield" \
--data "config.service_url=http://<AKTO_SERVICE_URL>:9091" \
--data "config.mode=async"Enable globally:
curl -X POST http://localhost:8001/plugins \
--data "name=mcp-endpoint-shield" \
--data "config.service_url=http://<AKTO_SERVICE_URL>:9091" \
--data "config.mode=async"Configuration Parameters:
service_url- The URL where captured traffic data will be sent (Akto guardrail service endpoint)mode- Processing mode:asyncorblocked
Once applied, the plugin will automatically capture and validate all incoming requests and outgoing responses for the selected service/route.
4. Deploy the Supporting Helm Charts
After enabling the Kong plugin, you need to deploy the Akto backend components using Helm charts. These components process and store the captured traffic data.
Step 4.1: Add Akto Helm Repository
# Add the Akto Helm repository
helm repo add akto https://akto-api-security.github.io/helm-chartsIf you've already added the repository before, update it to get the latest charts:
# Update Helm repositories
helm repo updateStep 4.2: Prepare MongoDB Connection String
Akto requires a MongoDB instance for data storage. You'll need a MongoDB connection string.
For detailed MongoDB setup instructions, refer to the Helm Deploy guide.
Step 4.3: Install Helm Charts in Sequence
Deploy the following three Helm charts in the order shown below:
Chart 1: Database Abstractor (Cyborg)
This chart sets up the database abstraction layer that manages data access patterns.
helm install akto-database-abstractor akto/akto-setup-database-abstractor \
-n <NAMESPACE> \
--set mongo.aktoMongoConn="<AKTO_MONGO_CONNECTION_STRING>"After installation, retrieve the Database Abstractor Service Token from Akto dashboard (you'll need this for Chart 2).
Chart 2: Data Ingestion + Mini-Runtime (Combined)
This chart deploys the data ingestion service and mini-runtime together. It processes the traffic captured by the Kong plugin.
helm install akto-mrs-runtime-combined akto/akto-mrs-runtime-combined \
-n <NAMESPACE> \
--set mini_runtime.aktoApiSecurityRuntime.env.databaseAbstractorToken="<DATABASE_ABSTRACTOR_SERVICE_TOKEN>" \
--set mini_runtime.aktoApiSecurityRuntime.env.aktoLogLevel="INFO"Replace <DATABASE_ABSTRACTOR_SERVICE_TOKEN> with the token retrieved from Chart 1.
Chart 3: Threat Backend
This chart deploys the threat analysis and security scanning backend.
helm install akto-threat-backend akto/akto-threat-backend \
-n <NAMESPACE> \
--set mongo.aktoMongoConn="<AKTO_MONGO_CONNECTION_STRING>"Chart 4: AI Guardrails
This chart deploys the AI guardrails service that validates and monitors AI agent interactions.
helm install akto-ai-guardrails akto/akto-ai-guardrails \
-n <NAMESPACE> \
--set guardrailsService.env.aktoApiToken="<AKTO_API_TOKEN>" \
--set guardrailsService.env.aktoDbAbstractorHost="<DATABASE_ABSTRACTOR_HOST>" \
--set guardrailsService.env.aktoAgentGuardUrl="http://akto-ai-guardrails-executor:8092" \
--set guardrailsService.env.aktoThreatDetectionHost="<THREAT_BACKEND_HOST>" \
--set guardrailsService.env.aktoLlmValidatorHost="<LLM_VALIDATOR_HOST>" \
--set guardrailsService.env.aktoIngestHost="<DATA_INGESTION_HOST>" \
--set guardrailsService.env.logLevel="info"Environment Variables Explained:
AKTO_API_TOKEN- Database Abstractor token retrieved from Chart 1AKTO_DB_ABSTRACTOR_HOST- Database Abstractor service URL (e.g.,http://akto-database-abstractor:8080)AKTO_AGENT_GUARD_URL- Agent Guard Executor service URL (deployed in same chart, accessible athttp://localhost:8092)AKTO_THREAT_DETECTION_HOST- Threat Backend service URL (e.g.,http://akto-threat-backend:8080)AKTO_LLM_VALIDATOR_HOST- LLM Validator service URL (same as Database Abstractor service URL)AKTO_INGEST_HOST- Data Ingestion service URL (e.g.,http://akto-mrs-runtime-combined-data-ingestion:8080)LOG_LEVEL- Logging level (set toinfofor standard logging)
Getting Service URLs:
To get the internal service URLs for the deployed components:
# Get Database Abstractor service URL
kubectl get service -n <NAMESPACE> | grep database-abstractor
# Get Threat Backend service URL
kubectl get service -n <NAMESPACE> | grep threat-backend
# Get Data Ingestion service URL
kubectl get service -n <NAMESPACE> | grep data-ingestionThe service URLs typically follow the format: http://<service-name>:<port>
Step 4.4: Verify Helm Deployments
Check that all pods are running successfully:
# Check all pods in your namespace
kubectl get pods -n <NAMESPACE>
# You should see pods for:
# - akto-database-abstractor
# - akto-mrs-runtime-combined (mini-runtime and data ingestion)
# - akto-threat-backend
# - akto-ai-guardrails (with agentGuardExecutor service)
# Check services
kubectl get services -n <NAMESPACE>
# Check Helm releases
helm list -n <NAMESPACE>All pods should show a Running status. If any pod is in CrashLoopBackOff or Error state, check the logs:
kubectl logs -n <NAMESPACE> <POD_NAME>Complete Deployment Summary:
After all four Helm charts are successfully deployed, you will have:
Database Abstractor (Cyborg) - Database access layer
Data Ingestion + Mini-Runtime - Traffic processing pipeline
Threat Backend - Security scanning and threat analysis
AI Guardrails - AI agent validation and monitoring with Agent Guard Executor
Important Notes
Ensure your Kong version supports custom plugins (Kong ≥ 2.0 recommended).
The plugin must be listed under
pluginsinkong.confto be loaded.Restart Kong after any plugin installation or configuration change.
Helm charts should be deployed in a Kubernetes cluster with sufficient permissions.
Get Support
If you need help integrating or debugging your setup:
Contact the team via Slack or internal support channels.
Raise an issue in the GitHub repository.
Email the engineering team if you need custom integrations or help debugging Kong-level errors.
Last updated
Was this helpful?