Contact Us
Help Center Home > AI Gateway > Configure Cloudflare for the AI Gateway

Configure Cloudflare for the AI Gateway

To allow users to securely query your network infrastructure, debug logs, and monitor security configurations using their AI clients, you can configure Cloudflare's Model Context Protocol (MCP) servers within the JumpCloud AI Gateway.

Prerequisites

Before configuring specific enterprise applications, we recommend reviewing the Get Started: AI Gateway guide to familiarize yourself with the gateway architecture and core AI concepts (such as MCP servers and AI clients).

Completing Application Setup

Cloudflare runs a catalog of managed, remote MCP servers. Rather than a single endpoint, Cloudflare offers different server URLs depending on the specific product data you want to expose to your AI clients (for example, Observability, DNS Analytics, or Cloudflare One CASB).

Before configuring the server in JumpCloud, review Cloudflare’s own MCP servers and Cloudflare MCP server to determine which server endpoint you need, and complete your preferred authentication setup:

  • Select Your Servers: Use the primary Cloudflare MCP server https://mcp.cloudflare.com/mcp, or select product-specific servers.
    Note: You must configure a separate JumpCloud server entry for each Cloudflare endpoint you want to use. 
  • For OAuth (Recommended): Configure your OAuth application within your Cloudflare developer settings. 
  • For API Tokens: Ensure your users have the necessary permissions in your Cloudflare dashboard to generate API tokens with the appropriate scopes for the server you select.

Configuring the Server in JumpCloud

Once you have identified the Cloudflare server URL you want to use, register the server in the JumpCloud Admin Portal.

  1. Log in to the JumpCloud Admin Portal.

Important:

If your data is stored outside of the US, check which login URL you should be using depending on your region. If your organization uses LDAP, RADIUS, or requires firewall allow list configuration, the Fully Qualified Domain Names (FQDNs) will also be region specific. See JumpCloud Data Centers for the URLs, FQDNs, and IP addresses.

  1. Go to Access > AI Gateway.
  2. Select the Servers tab.
  3. Click + Add Server.
  4. In the App dropdown, select Cloudflare, or select Custom App.
  5. Enter a name for the server and an optional prefix to prepend to the MCP tool names. Prefixes must be unique.
  6. Enter the Cloudflare MCP server URL: https://mcp.cloudflare.com/mcp.
  7. Under Authentication method, select from the following:
    • OAuth (recommended).
    • API Token: Select this option and enter the official Cloudflare documentation link for creating an API token (https://developers.cloudflare.com/fundamentals/api/get-started/create-token/) in the App API documentation link field.
  8. Click Create.

Your users will now see Cloudflare listed as an available tool when they authenticate their AI clients through the JumpCloud AI Gateway. If you add multiple Cloudflare products, repeat steps 4-10 for each specific Cloudflare MCP URL. When prompted, users can click the documentation link you provided to learn how to generate their Cloudflare API token.

Back to Top

List IconIn this Article

Notebook IconLearn More

Get Started: AI Gateway

Supported AI Gateway Integrations

Still Have Questions?

If you cannot find an answer to your question in our FAQ, you can always contact us.

Submit a Case