# MCP Governance
### Admin-Enforced MCP Server Whitelisting
As of [5.26.3](https://docs.tabnine.com/main/release-notes#v5.26.3), admins have the ability to limit what kind of MCP servers are permitted in the organization.
Beneath the **//**** MCP Governance ****//** title of the page, Admins will be able to see a menu of control options will appear that include:
* **Allow all** – No restrictions
* **Allow only remote** – Only StreamableHTTP/SSE transports will be permitted
* **Allow-list only** – Only MCP servers in the allow list can be used
* **Block all** – Admins can disallow any MCP servers
### Adding an MCP Server
Under MCP Governance, you have the option to catalog MCP servers for use in an **Allow List** ([5.26.3](https://docs.tabnine.com/main/release-notes#v5.26.3)).
Simply go to the blue **+ Add MCP** button in the upper righthand corner of the screen and select.
A window will appear where you must input the server’s information.
If it is a remote MCP server, it must include the following:
* Server location (local or remote)
* The MCP server name\*\*
* The MCP server URL
{% hint style="info" %}
\*\*If the user specifies this server name in the `mcp_servers.json` file, then the associated configuration must be remote and have this URL.
{% endhint %}
If from a local (i.e. STDIO) server, it must **also** include:
* Command Regex
* `args`
* ‘Exact match’ toggle (Default is "no")\*\*\*
{% hint style="info" %}
\*\*\*
* "No" args in `mcp_servers.json` *must* contain those that occur in the **Allow List**.
* "Yes" means that those `args` must be used in the `mcp_servers.json` file.
{% endhint %}
Once you do that, hit **Save**.
