MCP - Integration Guide

The MCP (Model Context Protocol) integration allows you to connect to a remote MCP server to access external tools and resources that are not yet natively integrated into Sana Agents. This enables greater flexibility and extensibility for your workspace. Workspace admins can publish connectors to the workspace and control access, non-admins can not connect any MCP unless a workspace admin has already set it up and made it available for that user.

The capabilities of the Sana MCP integration is dependent on the chosen remote server and which tools that the workspace admin who set it up allows. For example, if an admin connects to the official Linear MCP server and enables both read and write

tools, then users will be able to read and write to Linear.

The MCP connector in Sana differs from the common private, shared or centralized types and can be described as a mix of all depending on which MCP server you choose to connect to.

More specifically, only workspace admins can set up a brand new MCP integration and make it available inside of Sana. When setting up this integration, the admin chooses which user, or group of users, that should be able to see the integration on their list of available integrations and choose to connect to it. Users who get chosen to be able to connect to the integration by the workspace admin still need to authenticate to the MCP server with their individual credentials if the connected MCP server requires authentication.

The scope and permissions requested by the app will depend on the remote server you connect to.

Getting the opportunity to connect to any remote MCP server is a powerful feature - it brings a lot of potential benefits to extend your capabilities as you can connect to other systems but it also brings a lot of risks as Sana has not verified these third-party applications. It is strongly recommended to connect only to official MCP servers from trusted providers. Avoid unofficial servers unless you have thoroughly reviewed their data handling practices.

Sana strives to implement all features of the latest MCP protocol, but some specific features may not be fully supported yet. If you encounter any compatibility issues, please contact your engagement manager.

Furthermore, Sana supports the "Streamable HTTP" transport protocol for MCP, with a fallback to "SSE" (Server-Sent Events). This ensures robust and efficient communication with remote MCP servers.

1. Navigate to the “Custom MCP integration section” in the integrations tab inside of the workspace settings and click on “Add MCP integration”.

2. Fill in the information in the pop-up and click “Add integration”.

3. After setting up the MCP, it should be visible in the list of custom MCP integrations inside of the integrations tab on the workspace settings page, see example below. Now, regular users should be able to see it and connect to it through the normal integrations page.

1. Go to the integrations page, scroll down to the section “Available custom integration” and click on the integration you want to add.

2. Read through the description, verify that you trust the application and click “Continue”.

3. If the MCP server requires authentication you need to approve it. See example below for Linear MCP server where the user is redirected. After clicking approve you should be redirected back to Sana and continue to the next step.

4. Preview the available tools configured by your workspace admin to understand the capabilities, click continue once ready.

5. The integration should now be available in the “MCP integrations” table on the integrations page. This means that it is now correctly set up and ready to be used.

Q: What is a remote MCP server?

A: MCP is a protocol that standardizes how applications provide context to LLMs. Some companies have created remote MCP servers that expose a particular application’s capabilities to developers and end-users through requests to their remote MCP server.

Q: Can I toggle on/off specific tools?

A: Yes and no, workspace admins can choose which tools that should be on and off for the chosen MCP integration and those rules will apply for each user who chooses to connect to it, see image below. Individual users will not have the ability to override these selections and can hence not toggle on/off specific tools.

Q: Why should I add a remote MCP server?

A: Sana integrates with many third-party applications, but not all. If there is an application you want to use that we don’t currently support, you can connect it yourself by adding it through a remote MCP server.

Q: Why does not the MCP server perform well?

A: Sana got no control of the quality of the MCP servers you choose to connect to and their capabilities depends on what the developers of the MCP server have chosen to include. Make sure to review the list of available tools to get a better understanding of supported capabilities and iterate on the system prompt to help prompt the agent to improve the results if needed.

Q: What should I use the system prompt for?

A: The system prompt can be used to give instructions to the AI on how it should interact with the MCP server to improve its performance.

Q: Who can I select to share the MCP connector with as a workspace admin?

A: You can choose to share it with all workspace users, individual users or user groups.

Q: Why is my MCP server not working anymore or behaving differently?

A: The list of tools exposed by the connected MCP server can change over time as it is owned by an external maintainer. This may cause certain functionalities to stop working or behave differently.

Q: How can I find safe remote MCP servers to add?

A: Sana recommends always using only official MCP servers from trusted providers. Check their websites to confirm this is a service they support.

​Q: Are MCP requests made from the backend or frontend?

A: All requests to remote MCP servers are made from the backend for enhanced security and reliability.

Q: Which types of authentication can I use?

A: It depends on what the chosen MCP server supports and requires. When setting up an MCP server we currently select OAuth (recommended), API key or no authentication.