Endpoint Action Layer · Agent-ready · Setup once, execute forever

Run actions on any endpoint.
Keep every decision yours.

Figaro is the Endpoint Action Layer — a single API that executes commands on Windows, macOS, Linux, and Android endpoints. Install the agent once on each device, then trigger any action forever: from your product, your backend, or your AI agents.

Read the docs →Book a demo
POST /v1/executev1 API
// Send intent
{
"target":       "windows-fleet",
"action":       "rotate_credentials",
"requested_by": "ops-service"
}

// Figaro returns a signed response
{
"status":       "completed",
"execution_id": "fg_01HX92A3",
"latency_ms":   382,
"audit":        "attached"
}
Design partner programme open. Early access · white-glove onboarding · founding pricing — fewer than 10 spots per quarter.Apply for a spot →
Leasing Co.·HealthTech·MSPs·SaaS Builders·Device Fleets·AI Agents·Internal Tools·Automation Teams·Leasing Co.·HealthTech·MSPs·SaaS Builders·Device Fleets·AI Agents·Internal Tools·Automation Teams·

We needed to trigger actions on customer devices from inside our SaaS. Every MDM we evaluated wanted us to adopt their entire platform. Figaro was running in our product in two days.

JM
J. MartínCTO, SaaS platform · 2,400 endpoints

Our clients don’t know Figaro exists. They see our portal, our brand, our audit reports. Figaro is the engine underneath — and that’s exactly how we wanted it.

AR
A. ReyesFounder, MSP · 14 client fleets

The security team’s first question was ‘what’s the inbound exposure?’. When we explained the outbound-only model they signed off in the same meeting. That never happens.

TP
T. PapadopoulosHead of Eng, HealthTech · regulated environment

The problem

MDMs manage devices.
Figaro acts on them.

MDMs are platforms built to enrol, inventory, and govern devices at an IT level. That’s not what builders need. If your product needs to trigger an action on an endpoint, you shouldn’t have to adopt an entire platform to do it.

PROBLEM 01

Full platform lock-in

MDMs come with hundreds of features you’ll never use — and charge you for all of them. You can’t buy just the execution layer.

PROBLEM 02

Logic trapped inside the platform

The platform decides how actions are triggered, sequenced, and reported. Your business logic lives inside someone else’s system.

PROBLEM 03

IT-first, not API-first

No clean API. No programmable workflows. No way to plug device execution into your own product or agent without months of work.

Traditional MDM

Heavy
Billed per enrolled device — even idle ones
Months to integrate into your product
Vendor lock-in by design

Figaro

API-first
Only active endpoints billed
Ship in hours, not months
Your logic, fully portable

Setup once, execute forever

One command on each endpoint.
Every action, forever after.

setup — one time per endpoint
# Windows (PowerShell)
irm https://get.tryfigaro.dev/agent | iex \
--token fg_agent_XXXX

# macOS / Linux
curl -fsSL https://get.tryfigaro.dev/agent | bash \
--token fg_agent_XXXX

# Android (ADB / MDM push)
adb install figaro-agent.apk

// Agent confirms registration
{
"endpoint_id": "ep_win_7f3a9",
"status": "registered",
"ready": true
}
That’s the last time you touch this endpoint for setup. Agent updates happen silently in the background.

There’s no MDM enrolment, no certificate authority, no fleet configuration wizard. You run a single install command on the target machine — and that endpoint is permanently reachable through the Figaro API.

One API call. Any action. Any time. Works for humans, automation scripts, and AI agents equally.

The agent runs as a lightweight background service (~8MB, <1% CPU at rest). Updates are silent and automatic — no re-enrolment, no token rotation required. If a machine goes offline, actions queue and execute the moment it reconnects.
1
Install the agent

Run one command or push via your existing tooling. Takes under 60 seconds per endpoint.

2
Endpoint registers with Figaro

The agent authenticates, establishes a secure channel, and confirms it’s ready for action.

3
Execute anything, forever

Your product, agent, or automation triggers actions via the API. No re-enrolment. No drift.

Under the hood

Not magic. Just very well
engineered plumbing.

Here’s exactly what happens between your API call and the signed result landing back in your system.

Who can trigger an action

Your product or backendAPI call
AI agentAgent-ready
Automation / schedulerAny HTTP client
// All callers send the same shape
POST /v1/execute
{
"target": "ep_win_7f3a9",
"action": "rotate_credentials",
"actor": "ai-agent"
}

What comes back — every time

"status":      "completed",
"exit_code":   0,
"executed_at": "2026-04-21T09:12:03Z",
"actor":       "ai-agent",
"execution_id":"fg_01HX92A3",
"stdout":      "credentials rotated",
"audit":       "attached"
1

Figaro Cloud — receipt

Auth & routing

API key validated against your account scope
Target endpoint ID resolved to a live agent connection
Action checked against allowed operations for this key
2

Figaro Cloud → Endpoint

Encrypted delivery

Command encrypted and pushed down the persistent outbound channel
No inbound port, no VPN, no firewall rule needed
Automatic retry with backoff if endpoint is temporarily unreachable
3

Endpoint — local agent

OS-level execution

Agent decrypts and validates the instruction locally
Runs natively — PowerShell on Windows, shell on Linux, ADB on Android
Captures exit code, stdout, and error state
4

Figaro Cloud — close

Audit assembly & signed response

Result returned from agent to Figaro Cloud
Figaro timestamps, signs, and packages the full audit record
Signed response delivered back to the caller
Security model — no inbound exposure
Same pattern as Cloudflare Tunnel & Tailscale
Outbound-only channel. The agent initiates the connection to Figaro Cloud — we never reach into your network. No inbound port, no firewall rule, works behind any NAT or corporate proxy.
End-to-end encrypted. Commands are encrypted before leaving Figaro Cloud and decrypted only by the authenticated agent on the target endpoint.
Scoped API keys. Each key is restricted to a defined set of actions and target endpoints. A compromised key cannot execute outside its declared scope.
Automatic retry with backoff. If an endpoint is temporarily unreachable, actions queue and execute the moment it reconnects — no action is silently dropped.

What you can build

One action layer.
Anything you can build on top of it.

Designed to fit into your stack, not replace it.

Execution API

Run anything on
any endpoint

Windows, macOS, Linux, Android — one unified API surface. Platform differences are abstracted away from your application code entirely.

Zero Logic Ownership

Your logic.
Our pipes.

Figaro never assumes what you’re trying to build. You define every decision, trigger, and workflow. We execute exactly what you send — nothing more, nothing less.

Enterprise Audit

Complete execution history.
Immutable and queryable.

Every action is timestamped, attributed, and stored. Who triggered it. What ran. What was the result. Full traceability — cryptographically signed, append-only — without building it yourself.

ActionTargetTimeStatus
install_agentwin-prod-01209:41:02OK
rotate_credsand-fleet-0709:41:55OK
push_configwin-dev-00309:42:18ERR
lock_deviceand-prod-4409:43:01OK

Use cases

Who builds on Figaro.

Developers trust utility, not promises. Here’s what real teams ship.

SaaS Builders

Add device actions to your product.
No MDM required.

Your SaaS needs to trigger something on a customer’s device — rotate credentials, push a config, restart a service. Without Figaro, that means adopting a full MDM platform, negotiating contracts, and building an integration that will outlive your sprint. With Figaro, it’s one API call. Your product stays in control of every decision. Figaro just executes it.

  • Ship endpoint actions in days, not quarters
  • No MDM infrastructure to maintain or explain
  • Signed audit trail included on every execution
YourSaaS — Device Actions
EndpointLast actionStatus
WINprod-workstation-04rotate_credentialscompleted
ANDkiosk-lobby-12push_configcompleted
WINdev-laptop-07restart_servicefailed
your-saas-backend.js
// Trigger from your own product UI
async function runDeviceAction(endpointId, action) {
const result = await figaro.execute({
target: endpointId,
action: action,
actor: "saas-dashboard"
});
return result.execution_id; // fg_01HX92A3
}

MSPs & IT Providers

Ship your own tooling.
Under your own brand.

Your clients don’t know and don’t need to know what’s underneath. Build your management dashboard, your automation workflows, your client-facing reports — on top of Figaro. You own the product. Figaro handles execution, delivery, and the audit trail across every client fleet you manage.

  • One API key per client, scoped to their endpoints only
  • Isolated audit logs per client — ready for reporting
  • Scale to new clients without new MDM contracts
YourMSP Portal — Client Fleet
Acme Corp47 endpoints · last action 2m ago
healthy
TechRetail SA112 endpoints · last action 14m ago
healthy
HealthGroup EU23 endpoints · 1 action pending
attention
msp-provisioning.js
// Onboard a new client in seconds
const client = await figaro.createScope({
name: "healthgroup-eu",
allowed_actions: ["push_config", "restart_service"],
audit_webhook: "https://yourmsp.com/audit"
});

// client.api_key is scoped to their fleet only
// → "fg_scope_healthgroup_eu_XXXX"

Internal Tools

Give your ops team
real reach.

An ops engineer needs to restart a service on a production server, push a config to a fleet of kiosks, or lock a device that was just reported lost. Today that’s a ticket, a handoff, and a wait. With Figaro embedded in your internal tooling, it’s a button click — with an approval gate, an actor log, and a signed result that nobody has to ask for later.

  • Approvals and actor tracking on every action
  • Immutable log ready for security and compliance teams
  • No script access, no SSH — scoped actions only
Internal Ops — Action Log
m.torres
restart_serviceon prod-server-02
09:41approved
a.reyes
lock_deviceon kiosk-floor-03
09:38approved
system
wipe_deviceon lost-laptop-11
09:21pending
ops-tool-handler.js
// Action with approval gate
const job = await figaro.execute({
target: "lost-laptop-11",
action: "wipe_device",
actor: "ops-portal",
require_approval: true
});

// status: "pending_approval"
// notifies approver via webhook
Also used across

VR / XR

Immersive device fleets

Push content, trigger scene loads, lock headsets between sessions, wipe remotely. XR devices run Android — Figaro already speaks that language.

Meta QuestAndroid XRHoloLensPico

Healthcare

Clinical endpoint control

Deploy APKs, lock tablets, manage clinical kiosks — embedded in your own product, not a third-party platform.

AI Agents

Agents that act on the real world

When your agent decides something needs to happen on a device, Figaro is the layer that makes it happen — with auth, retries, and a signed audit trail.

Leasing & Hardware

Device lifecycle at scale

Provisioning, credential rotation, remote actions across large portfolios. Active endpoints only — idle hardware costs nothing.

Convinced? Start now.

Figaro is running in most stacks within a day. No sales process to start.

Read the docs →Book a demo

Security & compliance

Your security team will ask.
Here are the answers.

“No MDM enrolment, no certificate authority” — we understand why that sounds alarming. Here’s exactly how Figaro handles every concern a security-conscious team will raise.

“If there’s no CA, how do you know the agent is legitimate?”
Each agent is provisioned with a unique cryptographic token issued at install time and bound to your account. The token is non-transferable — an agent running on an unregistered machine cannot authenticate. Token rotation and revocation are available at any time.
“A persistent outbound connection sounds like a backdoor.”
It’s the same pattern Cloudflare Tunnel, Tailscale, and AWS SSM use. The agent initiates outbound-only over TLS 1.3. Figaro Cloud cannot push arbitrary code; it can only deliver signed, scoped action payloads that the agent validates before executing.
“IT has no visibility into what’s installed or running.”
Every registered endpoint appears in your dashboard with install time, last-seen, and a full action history. Your IT and security teams can audit any endpoint, revoke its registration instantly, and receive alerts on anomalous action patterns.
“An AI agent running OS commands with no human in the loop is a governance nightmare.”
API keys can be scoped to an explicit allowlist of actions — an AI agent key that can only run rotate_credentials cannot run wipe_device, regardless of what the agent requests. You define the blast radius at key creation. Figaro enforces it at execution.
“What happens if an API key leaks?”
Revoke it from the dashboard — the key is invalidated globally within seconds. Because keys are scoped to specific actions and endpoint groups, a leaked key has a bounded blast radius by design. We also support key expiry, IP allowlisting, and webhook alerts.
“We’re in healthcare / finance. What about compliance?”
Figaro is built with SOC 2 Type II and ISO/IEC 27001 alignment in mind. The append-only, cryptographically signed audit trail satisfies most audit requirements out of the box. For HIPAA and regulated industries, we’re happy to walk through our data handling model and BAA availability.

Have a concern not covered here?

Talk to our security team

Pricing

Built around what’s active.
Not what’s enrolled.

MDMs charge per enrolled device — including the ones sitting in a drawer. With Figaro, only endpoints that have actually executed something in the last 30 days count toward your bill. Idle hardware costs nothing.

Active-only billing

Pay only for endpoints that executed something this month. Idle devices enrolled but dormant cost nothing.

Volume discounts built in

As your fleet grows, cost per active endpoint drops automatically. No renegotiation, no annual surprise.

No platform fee

No seat minimums, no base subscription. You start small, we scale with you. Talk to us and we’ll model it for your exact fleet.

Get pricing for your fleetTell us your fleet size and active endpoint estimate — we’ll respond within 24h with a modelled breakdown
Design partner programme · Limited spots

Build with us.
Shape what Figaro becomes.

We’re inviting a small number of teams to get direct access to our roadmap, our engineering team, and pricing that reflects the early relationship.

Early feature access

Features you need get prioritised. You get them before general release — and your feedback shapes how they ship.

White-glove onboarding

Direct line to our engineering team throughout integration. We build alongside you — not hand you a doc and disappear.

Founding partner pricing

Rates locked at the founding tier for the life of your account. You won’t be repriced as the product matures.

Fewer than 10 spots per quarter.

Tell us what you’re building and your fleet size — we review every application personally and respond within 48h.

Apply for a spot →

Ready to ship endpoint actions
inside your product?

Start with the docs and have Figaro running in hours. If you’d rather talk through your use case first, we’re happy to map it together.

Read the docs →Get in touch