Skip to main content

Documentation Index

Fetch the complete documentation index at: https://www.truefoundry.com/llms.txt

Use this file to discover all available pages before exploring further.

Databricks managed MCP servers expose Unity Catalog functions, Genie spaces, SQL, and vector search directly from a Databricks workspace. Register each endpoint you need as a separate MCP server in TrueFoundry.

Prerequisites

  • A TrueFoundry account with permission to add MCP servers.
  • A Databricks workspace with managed MCP servers enabled.
  • Workspace permissions for the Databricks resources you plan to expose.

Find the Databricks MCP URL

In Databricks, open Agents > MCP Servers. Use the URL for the server type you need:
Server typeURL format
Unity Catalog functionshttps://<workspace-hostname>/api/2.0/mcp/functions/{catalog}/{schema}
System AI Python interpreterhttps://<workspace-hostname>/api/2.0/mcp/functions/system/ai
Genie spacehttps://<workspace-hostname>/api/2.0/mcp/genie/{genie_space_id}
Databricks SQLhttps://<workspace-hostname>/api/2.0/mcp/sql
Vector searchhttps://<workspace-hostname>/api/2.0/mcp/vector-search/{catalog}/{schema}/{index_name}

Choose Authentication

OAuth

For production, register an OAuth app from the Databricks account console under Settings > App Connections. Use a confidential client, choose scopes such as all-apis, genie, or unity-catalog, and copy the Client ID and Client Secret. In TrueFoundry, add a remote MCP server with OAuth2 Authorization Code and the Databricks MCP URL. Paste the Databricks OAuth client credentials when prompted and save the server. Users should open the server’s Tools section and click Connect Now; after OAuth succeeds, Databricks tools appear and can be tried from the Agent Playground.

Personal Access Token

For a shared service-account setup, create a Databricks personal access token from User Settings > Developer > Access tokens. In TrueFoundry, register the Databricks MCP URL with API Key or bearer-token style shared credentials and send the token as Authorization: Bearer <token>.

Security Notes

Unity Catalog permissions still apply to each Databricks identity. Genie endpoints are read-only, but Databricks SQL can execute writes depending on permissions. If your workspace has IP restrictions, allow egress from the environment where the MCP Gateway connects.