For AI agents: a documentation index is available at the root level at /llms.txt and /llms-full.txt. Append /llms.txt to any URL for a page-level index, or .md for the markdown version of any page.
System StatusStart using Credal
  • Getting Started
    • Introduction
    • Quickstart
    • Video: Agent Building Basics
    • FAQs
  • Platform
      • Third-party Server Registration
      • Setting up Controls
      • Publishing the server
      • Monitoring Usage
    • Bulk Analysis
LogoLogo
System StatusStart using Credal
On this page
  • Agent Access Control
  • Auto-block on Tool Changes (Third-party servers)
PlatformManaging MCP Servers

Setting up Controls

Was this page helpful?
Edit this page
Previous

Publishing the server

Next
Built with

For every MCP server, admins have granular control over which tools are available and how they can be used:

  • Publish/Unpublish Tools: Enable or disable individual tools from the server. If a third-party server exposes actions that are too sensitive or not relevant for your organization, simply unpublish them to prevent their use.
  • Enforce Human Approval: Require human approval before specific tools execute. For tools you want to allow but monitor closely, approval enforcement ensures nothing runs without a human sign-off first.

Tool Controls

Tool Syncing: Credal automatically refreshes the list of available tools every time tools/list is called through the MCP gateway. You can also manually refresh tools using the refresh button in the UI.

Agent Access Control

Beyond tool-level controls, you can restrict which Credal agents are allowed to call an MCP server at all. By default, any agent in your organization can invoke the server’s tools. Use the Allowed Agents section in the server’s settings to maintain an explicit allowlist of agents that can call the server. Agents you add to the allowlist can also be automatically attached to the server in their own configuration.

This is a useful extra lock for servers that use sensitive actions or contain sensitive prompting, where you want to be deliberate about which agents can reach them.

Auto-block on Tool Changes (Third-party servers)

For third-party imported servers, you can enable the Auto-block on tool changes toggle. When active, any time the remote server’s tool schema changes — new tools, renamed tools, modified parameter shapes — those changes are automatically blocked and require an admin to review and explicitly approve them before agents can use the updated tools.

This prevents a third-party server update from silently expanding what your agents can do, and gives your team a mandatory review gate for any capability changes from external providers.