Contact Us
Help Center Home > AI Powered Features > Configure the JumpCloud MCP Server for the AI Gateway

Configure the JumpCloud MCP Server for the AI Gateway

To allow your admins to securely query directory objects, manage users and devices, and view Directory Insights using their AI clients, you can configure the JumpCloud Model Context Protocol (MCP) server within the JumpCloud AI Gateway.

Prerequisite

Before configuring specific enterprise applications, we recommend reviewing Get Started: AI Gateway to familiarize yourself with the gateway architecture and core AI concepts (such as MCP servers and AI clients).

Completing Application Setup

Before you can connect JumpCloud’s MCP server to the AI Gateway, a JumpCloud Administrator must explicitly enable the MCP feature for your organization. See Get Started: JumpCloud MCP Server to learn more.

Note:

The JumpCloud MCP server enforces your existing Role-Based Access Control. AI agents can only perform actions that the authenticated user is already permitted to do in the Admin Portal.

  • Enable the Server: From the JumpCloud Admin Portal, go to Settings > Features. Under the JumpCloud AI section, toggle MCP Server On.
  • Authentication Method: The JumpCloud MCP integration currently uses API Token authentication. Users will authenticate their AI client by providing their JumpCloud API key. This ensures the AI agent securely inherits their exact administrative permissions. Ensure your authorized users know how to generate an API key in JumpCloud.

Configuring the Server in the AI Gateway

Once the MCP feature is enabled in your settings, register the server in the AI Gateway control plane.

  1. Log in to the JumpCloud Admin Portal.
  2. Go to Access > AI Gateway.
  3. Select the Servers tab.
  4. Click + Add Server.
  5. In the App dropdown, select Custom App.
  6. Enter a name for the server.
    • To avoid confusion between the AI Gateway platform and your directory data, we recommend naming this server JumpCloud Admin MCP.
    • We also recommend using a distinct prefix to prepend to the MCP tool names, such as jc_admin_ (for example, the AI will see the tool as jc_admin_user_suspend).
  7. Enter the JumpCloud remote MCP server URL: https://mcp.jumpcloud.com/v1.
  8. Under Authentication method, select API Token.
  9. In the App API documentation link field, enter the official JumpCloud API documentation link (https://jumpcloud.com/support/jumpcloud-apis). When your users are prompted to authenticate their tools, they can click this link for instructions on finding their personal API key. Admins can create an admin API token.
  10. Click Create.
    Your authorized users will now see your JumpCloud directory listed as an available application when they authenticate their AI clients through the gateway.
Back to Top

List IconIn this Article

Notebook IconLearn More

Get Started: AI Gateway

Still Have Questions?

If you cannot find an answer to your question in our FAQ, you can always contact us.

Submit a Case