Add MCP servers

Create an inventory of Model Context Protocol (MCP) servers. You can use them to create a resource connection between an MCP server and an AI agent.

Okta only supports MCP servers that have preregistered OAuth clients. Dynamic Client Registration isn't supported. The client must be configured as a confidential client using the authorization code flow, which requires a client ID and client secret.

Before you begin

You have the super admin role, or a custom role with the Manage third-party MCP Servers permission and resource type. See Use custom admin roles.

Start this task

  1. In the Admin Console, go to DirectoryMCP Servers.

  2. Click Add MCP server. The Add MCP server page opens.
  3. Enter a name, description, and base URL for the MCP server.

    You can't change the base URL after you configure the MCP server. To use a different URL, delete the MCP server entry and create a new one.

  4. Click Next.
  5. Create a client credentials set:
    1. Enter a Client credentials name.
    2. Enter your Client ID and Client secret.
    3. Enter a scope.
    4. Click Add to add more scopes.
    5. Click Save.
  6. To create more client credentials sets, click Add and repeat the previous step.
  7. Click Done and close. The MCP server appears on the MCP Servers page with the INACTIVE status.

Activate an MCP server

  1. On the MCP Servers page, click the vertical ellipsis that's next to an MCP server and click Activate.
  2. To deactivate the agent, click the vertical ellipsis and select Deactivate. To delete it, click the vertical ellipses and select Delete.

Next step

Connect AI agents to resources