تخطي إلى المحتوى الرئيسي
Products
MCP Audit & Compliance Gateway
https://catalogartifact.azureedge.net/publicartifacts/weldonweblimited.mcp-audit-gateway-3f596606-8d7a-4cae-9e3c-9652aa2afb83/image0_mcplogosizeed.png

MCP Audit & Compliance Gateway

بواسطة WeldonWeb

Intercept, audit, and enforce compliance policies on all AI agent MCP tool calls.

MCP Audit & Compliance Gateway


As AI agents proliferate across your organisation, every tool call they make represents a potential compliance gap. The MCP Audit & Compliance Gateway gives security and platform teams complete visibility and control over every Model Context Protocol (MCP) interaction — without modifying a single line of agent code.


How It Works

Deploy the gateway into your own Azure subscription as a managed application. Point your agents at the gateway URL instead of directly at your MCP servers. The gateway transparently intercepts all traffic, evaluates your compliance policies, and forwards permitted requests — logging every decision along the way.


Key Capabilities

  • Full audit trail — Every tool invocation logged with agent identity, tool name, masked arguments, compliance decision, and latency. Streamed directly to Azure Log Analytics.
  • Policy enforcement — Configurable allow/deny rules per tool and per agent identity. Wildcard identity matching (e.g. admin-*). Regex-based argument scanning to block dangerous patterns like SQL injection or shell commands.
  • Argument masking — Sensitive values (passwords, tokens, API keys) automatically redacted before logging. Arguments truncated to prevent log bloat.
  • JWT identity extraction — Automatically resolves agent identity from Azure AD JWT claims (UPN, appid, OID) with no additional configuration.
  • Multi-server routing — Route multiple MCP servers through a single gateway endpoint. Each server gets its own path prefix and independent policy configuration.
  • Invocation metering — Usage tracked per plan tier and reported to Azure Marketplace Metering Service for accurate billing.
  • Zero agent changes — Agents only need their MCP server URL updated. No SDK changes, no code modifications.

    • Deployment

    Deploys entirely into your own Azure subscription via Azure Managed Application. All resources — Container App, Log Analytics workspace, and Managed Identity — are provisioned automatically. Your data never leaves your environment.


    Intended Audience

    Security engineers, platform teams, and compliance officers at organisations deploying AI agents in regulated or enterprise environments. Designed for teams that need an audit trail for AI actions without waiting for MCP servers to implement their own logging.


    Requirements

    • Azure subscription with Container Apps and Log Analytics available in your region
    • MCP servers accessible from within your Azure virtual network or via HTTPS
    • Azure AD tenant for JWT-based agent identity resolution

      • لمحة سريعة

      https://catalogartifact.azureedge.net/publicartifacts/weldonweblimited.mcp-audit-gateway-3f596606-8d7a-4cae-9e3c-9652aa2afb83/trailer_3025013172447290758_trailer.png
      /staticstorage/20260531.1/assets/videoOverlay_62a424ca921ff733.png
      https://catalogartifact.azureedge.net/publicartifacts/weldonweblimited.mcp-audit-gateway-3f596606-8d7a-4cae-9e3c-9652aa2afb83/image2_grafana.png
      https://catalogartifact.azureedge.net/publicartifacts/weldonweblimited.mcp-audit-gateway-3f596606-8d7a-4cae-9e3c-9652aa2afb83/image5_grafana2.png