MCP dynamic authentication
MCP dynamic authentication is now generally available.
With dynamic authentication, MCP tools run using end-user credentials rather than shared service accounts. Actions execute with each user's own permissions and are fully traceable back to that person.
What's included
- Tools can run using user-provided authentication instead of shared service accounts — end users authenticate with their own credentials and actions execute with their permissions
- Authentication Management tab — manage all authentications used by your MCP tools, set their types, and view where they're used
- User access management through an allowlist — control who can execute tools on your MCP server
- Monitor tab showing usage, connected users, and tool execution activity
Why it matters
- Better security — users can only do what their permissions allow
- Full auditability — every action traces back to a specific user
- Production-ready observability — see who's using what and when
For details, see the Agent Gateway - Dynamic Authentication documentation.