Skip to main content
Activation required. AI access management must be enabled for your tenant before you can use it. To get started, contact the C1 support team for a walkthrough.
AI Access Management (AIAM) extends C1’s identity governance platform to the AI tool layer. It acts as a control plane between AI clients (Claude Desktop, Cursor, ChatGPT, Copilot, and other MCP-compatible clients) and the downstream MCP servers those clients connect to. When AIAM is enabled, every tool call from an AI client is routed through C1’s identity-aware proxy. The proxy authenticates the caller, checks the tool call against the user’s granted access profile, enforces any configured policy constraints, forwards the call to the downstream MCP server, and writes an audit log entry with full identity context. AIAM covers the following capabilities:
  • Registering and configuring MCP servers (from the 3,000+ hosted catalog)
  • Discovering and classifying the tools each server exposes
  • Governing tool access at a granular level — admins review, approve, or disable individual tools and control which tools each user and agent can call
  • Bundling approved tools into toolsets and binding them to access profiles
  • Provisioning end-user and agent access through the standard C1 request and approval workflow
  • Vaulting and rotating downstream credentials so they are never exposed to end users or stored locally
  • Logging every tool call with identity, tool, parameter, and policy context for audit and compliance
C1’s AI Connections feature has two sides. This page covers AI access management (AIAM) — governing outbound AI tool calls to external services like Salesforce and GitHub. If you want AI assistants to query C1’s own identity data instead, see C1 MCP.

Key concepts

How the pieces fit together

A typical end-to-end flow:
  1. Admin registers an MCP server in C1 (for example, the GitHub MCP server) and configures its auth mode.
  2. C1 discovers the tools the server exposes and lists them as Unset.
  3. Admin reviews and approves tools, then bundles approved tools into a toolset.
  4. Admin binds the toolset to an access profile with an approval policy.
  5. End user registers their AI client with C1.
  6. End user requests the access profile from the C1 catalog (web, Slack, or from their AI client).
  7. Approver approves, and the toolset becomes available to the user’s AI client.
  8. AI client calls a tool → request hits C1 MCP → C1 checks the user’s access profile and the tool’s approval status → forwards to the downstream MCP server using the configured auth mode → returns the result, logging the call.

Where to go from here