SecureAuth AI Gateway
Guides

How it works

Understand how SecureAuth AI Gateway proxies MCP requests

The Model Context Protocol (MCP) is an open standard that allows AI agents to interact with external tools and services. MCP uses a client-server architecture: the AI agent is the MCP client and each service (Slack, Jira, etc.) runs an MCP server that exposes tools.

SecureAuth AI Gateway acts as both an MCP server (to your agents) and an MCP client (to upstream services). Your agents connect to a single gateway endpoint that exposes tools from all configured resources. You can add or remove resources without reconfiguring any agents.

Dashboard showing governance overview
The dashboard provides a high-level view of agents, resources, policies, and activity

Request flow

  1. Your AI agent sends an MCP tool call to the gateway
  2. The gateway authenticates the agent and identifies the user
  3. Policy rules are evaluated top-to-bottom against the request
  4. If allowed, the request is forwarded to the upstream MCP server using the user's credentials
  5. The response is returned to the agent
  6. The entire interaction is recorded in the audit log

Key benefits

  • Single endpoint — Agents only need one MCP configuration, regardless of how many services they access
  • Centralized control — Admins manage all resource access from one dashboard
  • Per-user credentials — Each user authenticates to services with their own account
  • Full audit trail — Every tool call is logged with user, agent, and request details

Monitor activity

See what your agents are doing in real time

Agent Registry

How agents and agent instances relate, and where each is managed

On this page

Request flowKey benefits