Skip to main content
Question

MCP Usage, Authentication, and Analytics

  • July 9, 2026
  • 3 replies
  • 59 views

Forum|alt.badge.img

Hi everyone,

We're currently evaluating MCP and would appreciate some guidance from anyone with hands-on experience.

Could you please help clarify the following:

  1. Are there any known usage limitations for MCP (for example, limits on the number of users, sessions, requests, or connections)?
  2. How is authentication typically handled?
    • Does each user need to connect using their own PAT (Personal Access Token)?
    • Are other authentication methods supported?
  3. Is it possible to use a service account to access and use MCP?
  4. Are usage metrics available?
    • Can administrators view analytics, adoption metrics, or usage reports?
    • If so, what level of detail is available?

We would appreciate any documentation, best practices, or real-world experiences that you can share.

Thank you,

Inessa

3 replies

luca.latini
Docebian
  • Docebian
  • July 9, 2026

Hi everyone,

We're currently evaluating MCP and would appreciate some guidance from anyone with hands-on experience.

Could you please help clarify the following:

  1. Are there any known usage limitations for MCP (for example, limits on the number of users, sessions, requests, or connections)?
  2. How is authentication typically handled?
    • Does each user need to connect using their own PAT (Personal Access Token)?
    • Are other authentication methods supported?
  3. Is it possible to use a service account to access and use MCP?
  4. Are usage metrics available?
    • Can administrators view analytics, adoption metrics, or usage reports?
    • If so, what level of detail is available?

We would appreciate any documentation, best practices, or real-world experiences that you can share.

Thank you,

Inessa

Hi ​@inessa 

Thanks for your questions!

Here's a quick overview of the current capabilities of the Docebo MCP Server:

  • Usage limits: There are currently no MCP-specific limits on users, sessions, requests, or connections beyond the platform's standard protections.
  • Authentication: The MCP Server uses OAuth 2.0. Each user authorizes the connector with their own Docebo account, and all requests run with that user's existing permissions. 
  • Service accounts: The current implementation supports user-based OAuth authentication and does not support using a shared service account. Could you share a bit more about your use case for a service account? We'd be interested in understanding the scenario you're trying to support.
  • Usage metrics: We don't currently provide dedicated MCP analytics, but it's an area we're evaluating for future enhancements.

Hope this helps, and looking forward to learning more about your service account use case!


Forum|alt.badge.img
  • Author
  • Novice III
  • July 16, 2026

 

Thanks for the information @luca.latini

bit more about our use case for a service account? 

Just to confirm, is this an account that we can assign to a managed identity in our system in order to access and retrieve responses from the service we use on our local machines.

 

Thank you,

Inessa


luca.latini
Docebian
  • Docebian
  • July 17, 2026

 

Thanks for the information @luca.latini

bit more about our use case for a service account? 

Just to confirm, is this an account that we can assign to a managed identity in our system in order to access and retrieve responses from the service we use on our local machines.

 

Thank you,

Inessa

Hi ​@inessa , 

Thanks for the clarification.

If I understand correctly, you're asking whether the Docebo MCP Server can be accessed using a non-interactive identity (such as a service account or managed identity) instead of a user completing the OAuth flow.

At the moment, the answer is no. The Docebo MCP Server currently supports user-based OAuth 2.0 authentication only. Each connection is authorized by an individual Docebo user, and requests are executed with that user's permissions. Shared service accounts or managed identities are not currently supported.

I'd be interested in learning more about your specific scenario so we can better understand the requirement. Could you share what system or application you're trying to integrate with, and why a service account or managed identity would be preferred over user-based OAuth?

Feel free to send me a private message with your email here in the Community. I'd be happy to schedule a quick call to better understand your use case and discuss it in more detail.