Set up the DX MCP server
The DX MCP server gives AI agents access to DX's Data Cloud and software catalog — querying the underlying Postgres database and reading software-entity context, relationships, and scorecards. This guide covers creating a DX bearer token and connecting DX's hosted MCP server to MintMCP.
Prerequisites
- A MintMCP admin account
- A DX account with Data Cloud access
- For per-user setup: each user needs permission to create a Personal Access Token in DX
- For shared setup: a DX admin to create an organization token
Get a DX bearer token
DX authenticates with a bearer token. Choose the method that fits your team:
- Per-user PAT (recommended): each user supplies their own token. DX attributes audits per user and applies that user's permissions. Best for analyst-facing deployments.
- Shared org token: a single token used for all users. Best for read-only catalog and lookup use.
- Per-user PAT (recommended)
- Shared org token
Each user does this once for themselves.
- Log in to DX and open your account settings.
- Go to Personal access tokens.
- Create a new Personal Access Token. Enable the read scopes you need exposed through MCP. Follow the principle of least privilege.
- Copy the token — you will paste it into MintMCP when connecting.
Scope reference:
| Capability | Scope |
|---|---|
| Data Cloud reads | snapshots:read |
| Software catalog | catalog:read |
| Scorecards | scorecards:read |
A DX admin does this once for the whole organization.
- In DX, go to Admin > Organization tokens at app.getdx.com/admin/organizationtokens.
- Create a new organization token.
snapshots:readis enabled by default and covers Data Cloud reads. Enable additional read scopes if you want the corresponding catalog and scorecard tools available through MCP. Follow the principle of least privilege. - Copy the token — you will paste it into MintMCP.
Scope reference:
| Capability | Scope |
|---|---|
| Data Cloud reads | snapshots:read (enabled by default) |
| Software catalog | catalog:read |
| Scorecards | scorecards:read |
Add DX to MintMCP
- Per-user PAT (recommended)
- Shared org token
- In MintMCP, go to MCP store > Manage store.
- Click + Add an MCP to your registry → Connect to an MCP by URL.
- Fill in the form:
- Name: DX
- MCP Server URL:
https://ai.getdx.com/mcp - Authorization Method: Bearer Token
- Connection Type: Per-user credentials
- Click Save.
When users connect, each person pastes their own DX PAT. DX sees each user individually and applies their permissions.
- In MintMCP, go to MCP store > Manage store.
- Click + Add an MCP to your registry → Connect to an MCP by URL.
- Fill in the form:
- Name: DX
- MCP Server URL:
https://ai.getdx.com/mcp - Authorization Method: Bearer Token
- Connection Type: Shared credentials
- Bearer token: paste the DX organization token from the previous step
- Click Save.
All users share the same DX identity. Per-user attribution exists only at the MintMCP audit layer.
Security considerations
- Personal Access Tokens reflect the creating user's existing DX permissions — each user can only access data they're already authorized to see.
- Organization tokens run as a single shared identity. Limit scopes to the minimum your use case requires.
- Rotate organization tokens from the same Admin > Organization tokens page where they were created.
Next steps
- Tool customization — Control which DX tools are exposed to users
- MCP gateway administration — Manage access and permissions