Generic MCP
This Integration is part of the Generic MCP Pack.#
Supported versions
Supported Cortex XSOAR versions: 8.13.0 and later.
Use this integration to connect to an MCP server and automatically discover its available tools.
Configure Generic MCP in Cortex#
| Parameter | Description | Required |
|---|---|---|
| Server URL | True | |
| Authentication Type | Select the authentication method. | True |
| Client ID | ||
| Client Secret | ||
| Authorization code | ||
| Redirect URI | ||
| Custom headers | Add custom headers to be sent with each API request. Enter each header on a new line in the format: HeaderName: HeaderValue. | |
| Authorization Endpoint | The URL for the OAuth 2.0 authorization endpoint. If not provided, the default will be the origin of the `base_url` followed by `/oauth2/authorize`. For example, if `base_url` is `https://example.com/mcp\`, the default `Authorization Endpoint` will be `https://example.com/oauth2/authorize\`. | |
| Token Endpoint | The URL for the OAuth 2.0 token endpoint. If not provided, the default will be the origin of the `base_url` followed by `/oauth2/token`. For example, if `base_url` is `https://example.com/mcp\`, the default `Token Endpoint` will be `https://example.com/oauth2/token\`. | |
| Scope | Space-separated permission identifiers. | |
| API Token / API Key | API Token or API Key to access the service REST API. | False |
| Username | Username & Password to use for basic authentication. | False |
| Password | False | |
| Server Name | The name to use for the server in tool names. If not provided, the default name returned by the server will be used. | |
| Trust any certificate (not secure) | False |
Authentication Type Options#
| Parameter | Description | Type |
|---|---|---|
| Server URL | The base URL of the MCP server. This is a required parameter for all authentication types. | String |
| Authentication Type | Select the authentication method to use for connecting to the MCP server. | Enum |
| Basic | Uses a username and password for authentication. | |
| Username & Password | Provide the username and password for basic authentication. | String |
| Token | Uses a single API token or key for authentication. | |
| API Token / API Key | Provide the API Token or API Key to access the service REST API. | String |
| Bearer | Uses a Bearer token for authentication. | |
| API Token / API Key | Provide the Bearer Token to access the service REST API. | String |
| Api-Key | Uses an API key for authentication. | |
| API Token / API Key | Provide the API Key to access the service REST API. | String |
| RawToken | Uses a raw token for authentication. | |
| API Token / API Key | Provide the raw token to access the service REST API. | String |
| OAuth 2.0 Dynamic Client Registration | Uses OAuth 2.0 Dynamic Client Registration. | |
| Authorization code | Required to obtain the access token. To get this code, run the generic-mcp-generate-login-url command and follow its instructions. | String |
| Scope | Space-separated permission identifiers requested from the authorization server. | String |
| OAuth 2.0 Authorization Code | Uses the OAuth 2.0 Authorization Code flow for authentication. | |
| Client ID | The Client ID for your application. | String |
| Client Secret | The Client Secret for your application. | String |
| Authorization code | Required to obtain the access token. To get this code, run the generic-mcp-generate-login-url command and follow its instructions. | String |
| Scope | Space-separated permission identifiers requested from the authorization server. | String |
| OAuth 2.0 Client Credentials | Uses the OAuth 2.0 Client Credentials flow for authentication. | |
| Client ID | The Client ID for your application. | String |
| Client Secret | The Client Secret for your application. | String |
| Scope | Space-separated permission identifiers requested from the authorization server. | String |
| No Authorization | No authentication is used. | |
| Redirect URI | The URI to which the authorization server redirects the user-agent after granting authorization. This is typically used in OAuth 2.0 Authorization Code flow. Default: https://oproxy.demisto.ninja/authcode. | String |
| Custom headers | Add custom headers to be sent with each API request. Enter each header on a new line in the format: HeaderName: HeaderValue. | String |
| Authorization Endpoint | The URL for the OAuth 2.0 authorization endpoint. If not provided, the default will be the origin of the base_url followed by /oauth2/authorize. For example, if base_url is https://example.com/mcp, the default Authorization Endpoint will be https://example.com/oauth2/authorize. | String |
| Token Endpoint | The URL for the OAuth 2.0 token endpoint. If not provided, the default will be the origin of the base_url followed by /oauth2/token. For example, if base_url is https://example.com/mcp, the default Token Endpoint will be https://example.com/oauth2/token. | String |
| Trust any certificate (not secure) | Select this option to trust any certificate. This is not recommended for production environments. | Boolean |
Commands#
You can execute these commands from the CLI, as part of an automation, or in a playbook. After you successfully execute a command, a DBot message appears in the War Room with the command details.
generic-mcp-generate-login-url#
Generate an authentication login URL.
Base Command#
generic-mcp-generate-login-url
Input#
There are no input arguments for this command.
Context Output#
There is no context output for this command.
generic-mcp-auth-test#
Test the authentication configuration with the MCP server.
Base Command#
generic-mcp-auth-test
Input#
There are no input arguments for this command.
Context Output#
There is no context output for this command.