> For the complete documentation index, see [llms.txt](https://docs.vngcloud.vn/vng-cloud-document/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.vngcloud.vn/vng-cloud-document/ai-stack/agent-base/mcp-governance.md). # MCP Governance MCP Governance gives you centralized control over all traffic from AI agents to external services — authentication, authorization, and audit logging — without changing agent code. *** ## Overview When agents call **MCP Tool Servers** (web search, database, file system, etc.) directly with no intermediary control layer, you have no way to know which agent is calling which tool, you cannot restrict access, and there is no audit trail when incidents occur. MCP Governance provides a **centralized control plane** between agents and external services, consisting of two main components: | Component | Function | | ---------------- | -------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | | **MCP Gateway** | Centralized proxy for all MCP tool calls — authenticates inbound requests from agents, authenticates outbound requests to MCP servers, and enforces attached Policy Groups | | **Policy Group** | A set of operator-first rules defining which agents can call which tools under which conditions — attach to an MCP Gateway for automatic enforcement | *** ## Scope * MCP Gateway CRUD (create / view / edit / delete) * Attach Policy Group to MCP Gateway *** ## Get Started with MCP Governance | I want to... | Go to | | -------------------------------- | -------------------------------------------------------------------------------------------------------------- | | Understand how MCP Gateway works | [MCP Gateway](/vng-cloud-document/ai-stack/agent-base/mcp-governance/mcp-gateway.md) | | Create my first MCP Gateway | [Manage MCP Gateway](/vng-cloud-document/ai-stack/agent-base/mcp-governance/mcp-gateway/manage-mcp-gateway.md) | --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.vngcloud.vn/vng-cloud-document/ai-stack/agent-base/mcp-governance.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.