Getting Started with Informatica MCP Servers > OAuth clients and servers > OAuth clients
  

OAuth clients

Create and register an OAuth client to allow your AI agent to access Informatica's MCP servers without having access to your Informatica Intelligent Cloud Services user credentials.
Create and update OAuth clients on the MCP Server Authorization page. The following image shows where to create and update OAuth clients:
The MCP Server Authorization page lists the OAuth clients associated with the server. There is a button for adding an OAuth client, a find box, and controls to filter, sort, and download the list of clients. For each client, the client name, status, MCP servers, and last update date are displayed. You can edit, delete, regenerate secrets, and disable each OAuth client.
You can perform the following actions for OAuth clients:

Adding an OAuth client

Adding an OAuth client registers the client with the Informatica OAuth server. Adding an OAuth client generates the client ID and secret that the Informatica OAuth server uses to generate an authentication token. The credentials also include the authentication header value, which is the Base64 encoding of the client ID and secret.
    1Click Configuration in the navigation menu on the left.
    2On the MCP Server Authorization page, click Add OAuth Client.
    The Add OAuth Client wizard opens.
    3On the Authentication page, enter your Informatica Intelligent Cloud Services user name and password and click Next.
    4On the Details page, enter a name for the OAuth client, an optional description, and the access token timeout value and click Next.
    The default value for the access token timeout value is 5 minutes. You can enter a value between 5 minutes and 1440 minutes (24 hours).
    5On the Resources page, select the Informatica MCP servers you want to connect to and click Next.
    6On the Generate Credentials page, copy either the OAuth 2.0 client ID and OAuth 2.0 client secret or the authentication header value.
    You'll use these values to generate an authorization token for the MCP server.
    Note: The secret and authentication header values aren't available after you close the wizard. If you lose these values, you can regenerate the client secret.
    7Click Finish.

Editing an OAuth client

Edit an OAuth client when you want to change the name, description, access token timeout value, or MCP servers you want to connect to.
    1Click Configuration in the navigation menu on the left.
    2On the MCP Server Authorization page, click the edit icon in the row that contains the client you want to edit.
    The Edit OAuth Client wizard opens.
    3On the Authentication page, enter your Informatica Intelligent Cloud Services user name and password and click Next.
    4On the Details page, update the OAuth client name, description, or access token timeout value and click Next.
    The default value for the access token timeout value is 5 minutes. You can enter a value between 5 minutes and 1440 minutes (24 hours).
    5On the Resources page, update the Informatica MCP servers you want to connect to and click Next.
    6Click Finish.

Deleting an OAuth client

You can delete an OAuth client that's no longer needed.
    1Click Configuration in the navigation menu on the left.
    2On the MCP Server Authorization page, click the Delete icon in the row that contains the client you want to delete.

Regenerating client secrets

You can regenerate the client secrets if you want to change the credentials or if you failed to copy the secrets when you created the OAuth client.
    1Click Configuration in the navigation menu on the left.
    2On the MCP Server Authorization page, open the Actions menu in the row that contains the client and click Regenerate Secret.
    The Regenerate Client Secret wizard opens.
    3On the Authentication page, enter your Informatica Intelligent Cloud Services user name and password and click Next.
    4On the Generate Credentials page, copy either the OAuth 2.0 client ID and OAuth 2.0 client secret or the authentication header value.
    You'll use these values to generate an authorization token for the MCP server.
    Note: The secret and authentication header values aren't available after you close the wizard. If you lose these values, you can regenerate the client secret.
    5Click Finish.

Disabling and enabling an OAuth client

When you create an OAuth client, it's enabled automatically. You can disable an OAuth client to prevent it from getting tokens, for example, if the client becomes compromised. You can re-enable a disabled OAuth client.
    1Click Configuration in the navigation menu on the left.
    2On the MCP Server Authorization page, open the Actions menu in the row that contains the client and click Disable or Enable.

Downloading an OAuth client report

You can download a CSV file that contains the OAuth client information. The file lists the name, description, status, MCP servers, and last update date for each OAuth client.
The CSV file lists all OAuth clients in the organization. Any filters you apply on the MCP Server Authorization page don't apply to the download file.
    1Click Configuration in the navigation menu on the left.
    2On the MCP Server Authorization page, click the Download CSV icon.