- 入门指南
- 最佳实践
- 租户
- 注册表
- Cloud Robots
- Automation Suite 机器人
- 文件夹上下文
- 流程
- 作业
- Apps
- 触发器
- 日志
- 监控
- 索引
- 队列
- 资产
- 连接
- 业务规则
- 存储桶
- MCP 服务器
- Orchestrator 测试
- 资源目录服务
- 集成
- 故障排除
Orchestrator 用户指南
Personal access tokens (PATs) are user-scoped tokens with a configurable lifetime (up to one year). They are useful when you need a longer-lived token than interactive login provides, or when you cannot run uipath auth interactively but still need to authenticate as a user.
When you create a PAT, you must select permissions from the Orchestrator API Access resource that cover the MCP operations you need.
先决条件
- You have the Automation User, Automation Developer, or Folder Administrator role in the folder containing the MCP Server. These roles include the
MCPServers.Viewpermission.
Generate a personal access token
-
Go to UiPath, select your user icon, then select Preferences.
-
Navigate to Personal access token and select Generate new token.
-
Enter a name and an expiration date.
-
Under Scopes, select the following permissions from the Orchestrator API Access resource:
OR.Execution: required for listing tools. MCP Servers calls the OrchestratorListReleasesAPI to resolve process metadata, and that endpoint requires this scope.OR.Jobs: required for executing tools. All MCP Server types that run processes as tools (UiPath, Coded, and Command) call the OrchestratorStartJobsAPI, which requires this scope.
-
Select Save and copy the token immediately.
重要提示:The token is shown only once. If you do not copy it now, you must generate a new token.
结果
The token is now available for use in the Authorization header of HTTP requests to the MCP Server.
Use the personal access token
To call an MCP Server with the token:
curl -X POST "https://cloud.uipath.com/{org}/{tenant}/agenthub_/mcp/{folderKey}/{slug}" \
-H "Authorization: Bearer <your-PAT>" \
-H "Content-Type: application/json" \
-d '{"jsonrpc":"2.0","method":"initialize","params":{...},"id":1}'
curl -X POST "https://cloud.uipath.com/{org}/{tenant}/agenthub_/mcp/{folderKey}/{slug}" \
-H "Authorization: Bearer <your-PAT>" \
-H "Content-Type: application/json" \
-d '{"jsonrpc":"2.0","method":"initialize","params":{...},"id":1}'
Token characteristics
- Opaque token with audience
UiPath.Orchestrator. - Configurable expiration (up to one year).
- Access is the intersection of the PAT scopes and the user's folder-level role permissions.
- Works with any HTTP client (cURL, Postman, MCP Inspector, custom code).
限制
- PATs are tied to a specific user identity. If the user is deactivated, the PAT stops working.
- PATs can only be created by users who have interactive access to UiPath.
- Integration Service activities do not support PAT authentication. The MCP connection succeeds, but tool calls that rely on Integration Service connections fail.