> ## Documentation Index
> Fetch the complete documentation index at: https://www.truefoundry.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Set up Ironclad MCP Server

> Register an Ironclad OAuth client and connect Ironclad CLM tools to TrueFoundry.

Ironclad's MCP server gives agents read-only access to CLM data such as contract search, records, and workflows. Ironclad requires an OAuth client registration before TrueFoundry can connect.

## Prerequisites

* A TrueFoundry account with permission to add MCP servers.
* Ironclad NA1 account with the API add-on enabled.
* Ironclad admin access.

## Register an Ironclad OAuth Client

In Ironclad, open **Company Settings** > **API**, create a new app, and set:

| Field                | Value                                                                                                    |
| -------------------- | -------------------------------------------------------------------------------------------------------- |
| **Redirect URI**     | `https://<tfy-control-plane-base-url>/api/svc/v1/llm-gateway/mcp-servers/oauth2/callback`                |
| **Grant Types**      | Authorization Code                                                                                       |
| **Requested scopes** | `public.search.conversational`, `public.records.readRecords`, `public.workflows.readWorkflows` as needed |

Copy the Client ID and Client Secret when shown.

## Register in TrueFoundry

Add a remote OAuth2 MCP server with:

| Field                  | Value                                 |
| ---------------------- | ------------------------------------- |
| **Name**               | `ironclad`                            |
| **URL**                | `https://mcp.na1.ironcladapp.com/mcp` |
| **Client ID / Secret** | Ironclad OAuth app credentials        |

Add collaborators and save the server. Users should open the server's **Tools** section and click **Connect Now**; after OAuth succeeds, Ironclad tools appear and can be tried from the **Agent Playground**.

## Security Notes

The listed Ironclad scopes are read-only. Each user still needs an Ironclad login and only sees contracts their Ironclad permissions allow.
