Policy
Per-bot policies, allow and deny lists, and org-level management decide which tools a bot can use.
MCP Management & Security
Turn MCP from unmanaged plugin sprawl into a governed capability layer with policy, identity, secrets, and audit posture.
Governed MCP layer
Per-bot policies, allow and deny lists, and org-level management decide which tools a bot can use.
Bot-to-tool access can be tied to OAuth, OIDC, SPIFFE, and service identity patterns instead of shared credentials.
Runtime Vault can mount approved secret leases into MCP servers through runtime environment or argument paths.
Admins can review catalogue status, assignment state, health, logs, and tool output exfiltration status from one layer.
Capability path
This route now has a strong annotated panel up front, followed by a comparison block, so it reads differently from the security matrix and architecture lifecycle pages.
Governed route
Catalogue
The MCP server is visible in the org catalogue before a bot can use it.
Assignment
An admin assigns or revokes the capability for a specific bot.
Policy
Allow lists, deny lists, and bot policy gates decide whether access is permitted.
Lease
Runtime Vault mounts approved secrets into server runtime paths without teaching the bot the value.
MCP checkpoint
Create a bot, assign only the MCP capability it needs, and keep the evaluation tied to policy, identity, secret mounting, and health evidence.
Sprawl vs governance
MCP is the connection layer. Botyard is the management layer that makes those connections visible, assignable, revocable, and safer to operate across a company.
Unmanaged plugin sprawl
Governed capability layer
What Botyard manages
Botyard keeps MCP adoption practical by separating what a tool can do from which bot is allowed to use it, under which identity, with which secret path, and with which operational visibility.
Mid-page action
Runtime Vault lets the bot use an approved credential path without turning the credential into prompt or configuration sprawl.
Runtime path
MCP servers often need credentials. Botyard can keep those credentials out of bot prompts and long-lived configuration by mounting approved Runtime Vault leases only when an assigned server needs them.
Catalogue
The MCP server is visible in the org catalogue.
Assignment
An admin assigns or revokes the capability for a specific bot.
Policy
Allow lists, deny lists, and bot policy gates decide whether access is permitted.
Identity
OAuth, OIDC, SPIFFE, or service identity ties the call to a bot workload where supported.
Runtime Vault
Approved leases mount into server runtime paths without teaching the bot the secret.
Health
Logs, health state, and output risk signals help admins operate the integration.
Current boundaries
Botyard governs MCP access paths, but this page avoids claiming complete approval workflows, complete tool-call audit coverage, or scanning of local bot state.
Govern MCP in Botyard
Start with a catalogue, assign only the capabilities each bot needs, and keep policy, identity, secrets, health, and audit posture in one governed layer.