共有:

MCP · EMA Extension GA

MCP just grew an org door.

The Model Context Protocol's enterprise access-management add-on, "EMA Extension," has reached stable release. Instead of every employee OAuth-ing into each MCP server one by one, IT can now grant and audit access at the organization level. It doesn't change much for solo devs — for companies running internal MCP, it changes a lot.

AI Navigate Editorial2026.07.076 min read

BEFORE · PER USER OAUTH Each user authorizes alone AFTER · EMA EXTENSION ORG POLICY Central grant · central audit
01

What Changed

From "one user, one OAuth"
to "org policy, one place"

MCP's enterprise-focused Extension for Managed Access ("EMA") reached stable release, letting organizations centrally grant and audit permissions across MCP servers. In practice, that means IT gets a single-pane view of what data every employee's AI can touch.

Until now, each employee OAuth'd their AI client into each internal MCP server (Wiki, Jira, Google Drive) one at a time. From IT's chair, "who can see what" was hard to know at any given moment. EMA is the plumbing that closes that gap.


02

By The Numbers

Three concrete outcomes

1 pane
to manage MCP permissions org-wide
Org
level roles and policies apply
Audit
logs unified in one review surface
03

How It Fits

What EMA actually adds

Not new tech so much as one missing rung in the IT-governance ladder.

01

Org-role definitions

Define "Sales: read on CRM MCP; Engineering: full on Wiki + GitHub MCP" in one place, once.

02

Skip per-user OAuth

Employees inherit org-policy grants instead of authorizing every server themselves. Onboarding and offboarding get lighter overnight.

03

Access audit

"Which users looked at which customer records via the sales MCP last week?" — answerable from a single log stream now.

04

Who Benefits

Where the ROI lives

EMA is high valueBarely relevant
Mid-to-large orgs running multiple internal MCP serversSolo developers or tiny teams (personal MCPs suffice)
Regulated industries with strict access-audit rulesSetups that only wire in public SaaS MCPs
Companies already unified under SSO / IdPOrgs without SSO yet, and no internal MCP running
Teams wanting automated onboarding and offboardingHandful-of-people orgs where verbal grants still work

05

So What

Rollout order that actually works

Practical adoption sequence: first, inventory your internal MCP servers (Wiki, Jira, Drive, Notion, homegrown SaaS bridges) and map "what does each role need to see?" Then wire EMA to your existing IdP (Okta, Azure AD, Google Workspace) so MCP permissions layer cleanly on top of your SSO reality — do it in that order and you avoid two competing permission models.

Solo developers won't feel much directly. But if you build MCP servers to sell into enterprises, expect "EMA-compatible" to become a de facto RFP checkbox in the coming quarters. Worth designing your server that way now.

Zoom out: MCP has been shifting from "developer protocol" to "safe enterprise substrate." EMA hitting GA is a marker of that transition, not a one-off feature.

Source: related news · AI Navigate — Daily Update · 2026.07.07