Private MCP servers 🤝 OpenAI products Your team can keep MCP servers inside your network while ChatGPT, Codex, and the Responses API connect through outbound-only HTTPS. 🔗 https://t.co/UVq0KpT0km https://t.co/uMsQJJK9ho
OpenAI Launches Secure MCP Tunnels to Connect Agents to Private Data
OpenAI· Updated
OpenAI released Secure MCP Tunnel, a networking tool that lets AI agents access private on-premises databases and tools through outbound-only HTTPS connections. This removes the need for inbound firewall exceptions, allowing enterprises to safely ground agents in sensitive internal data.
tunnel-client initiates an outbound-only HTTPS connection to OpenAI, polling for requests and forwarding them to internal tools.- Connection type
- Outbound-only HTTPS
- Authentication
- Workload Identity Federation (IAM)
- Supported IAM
- AWS, Azure, Google Cloud, and others
- Admin controls
- Spend alerts, model allowlists, data retention
- Availability
- OpenAI Platform, ChatGPT
This move addresses the primary security hurdle for enterprise agent adoption: private data access. It complements OpenAI's WebSocket-based Responses API by providing a secure path for agent loops to reach sensitive corporate resources without complex VPN configurations or the risks associated with opening inbound firewall ports.
OpenAI also introduced Workload Identity Federation to replace permanent API keys with cloud-native IAM roles from AWS, Azure, and GCP. These features are live on the OpenAI Platform, where administrators can also use the expanded Admin API to programmatically manage spend alerts and model allowlists across enterprise projects.
Still wondering? A few quick answers below.
Every HeadsUpAI update is written based on its original source and reviewed before it's published. Read our editorial standards →



