Adobe Sign Users MCP Server

Create a powerful Model Context Protocol (MCP) server for Adobe Sign Users in minutes with our AI Gateway. This guide walks you through setting up seamless user management integration with enterprise-grade security and instant OAuth authentication.

About Adobe Sign Users API

The Adobe Sign Users API provides comprehensive access to user management, permissions, and account administration. It enables programmatic control over user creation, group management, settings, and compliance features across your Adobe Sign organization.

Key Capabilities

• User Management: Create, update, deactivate users
• Group Administration: Manage user groups and permissions
• Settings Control: User preferences and configurations
• Account Management: Organization-level administration
• Compliance Features: Audit logs and user activity
• Delegation: Manage user delegates
• Notifications: User alert preferences
• Integration Settings: API and webhook access

API Features

• REST API v6: User operations
• Bulk Operations: Mass user management
• OAuth 2.0: Secure authentication
• Activity Tracking: User audit logs
• Permission Management: Granular controls
• Group Hierarchy: Nested groups
• SSO Integration: Identity provider sync
• Custom Attributes: Extended user properties

What You Can Do with Adobe Sign Users MCP Server

The MCP server transforms Adobe Sign Users API into a natural language interface, enabling AI agents to:

User Management

• User Creation

  • "Create new user john@company.com"
  • "Add user with send-only permissions"
  • "Create admin user for legal department"
  • "Bulk import users from CSV"

• User Updates

  • "Update user email address"
  • "Change user's first and last name"
  • "Modify user title and company"
  • "Update phone number"

• User Status

  • "Deactivate departed employee"
  • "Reactivate user account"
  • "Suspend user temporarily"
  • "Check user activation status"

Group Management

• Group Operations

  • "Create legal department group"
  • "Add users to sales team group"
  • "Remove user from group"
  • "List all groups for user"

• Group Settings

  • "Set group admin"
  • "Configure group permissions"
  • "Enable group sharing"
  • "Set default group settings"

• Group Hierarchy

  • "Create nested group structure"
  • "Move group to new parent"
  • "View group hierarchy"
  • "Inherit parent permissions"

Permission Management

• User Permissions

  • "Grant send agreement permission"
  • "Enable user to create templates"
  • "Allow webhook management"
  • "Set API access level"

• Role Assignment

  • "Assign account admin role"
  • "Make user group admin"
  • "Set custom role permissions"
  • "Remove administrative rights"

• Feature Access

  • "Enable advanced features"
  • "Grant reporting access"
  • "Allow bulk send"
  • "Configure workflow permissions"

User Settings

• Preferences

  • "Set default signature"
  • "Configure email notifications"
  • "Update timezone"
  • "Set language preference"

• Security Settings

  • "Enable two-factor authentication"
  • "Set password requirements"
  • "Configure login restrictions"
  • "Manage API keys"

• Notification Settings

  • "Configure email alerts"
  • "Set reminder preferences"
  • "Enable mobile notifications"
  • "Customize alert frequency"

Delegation Management

• Delegate Setup

  • "Add delegate for user"
  • "Set delegation period"
  • "Configure delegate permissions"
  • "Enable auto-delegation"

• Delegation Rules

  • "Create vacation delegation"
  • "Set up approval delegation"
  • "Configure escalation rules"
  • "Manage delegation chain"

• Monitoring

  • "View active delegations"
  • "Track delegation usage"
  • "Audit delegate actions"
  • "Report on delegations"

User Analytics

• Activity Reports

  • "Show user login history"
  • "Track agreement sending"
  • "Monitor user adoption"
  • "Measure feature usage"

• Compliance Tracking

  • "Audit user actions"
  • "Export activity logs"
  • "Track permission changes"
  • "Monitor security events"

• Usage Metrics

  • "Calculate user efficiency"
  • "Track signature volume"
  • "Measure turnaround time"
  • "Analyze user patterns"

Account Administration

• Organization Settings

  • "Update company branding"
  • "Configure global settings"
  • "Set security policies"
  • "Manage licenses"

• Compliance Configuration

  • "Enable audit logging"
  • "Set retention policies"
  • "Configure GDPR settings"
  • "Manage data residency"

• Integration Management

  • "Configure SSO settings"
  • "Manage API applications"
  • "Set webhook permissions"
  • "Control third-party access"

Bulk Operations

• Mass User Management

  • "Import 100 users from HR system"
  • "Bulk update user departments"
  • "Mass deactivate inactive users"
  • "Export all user data"

• Group Operations

  • "Add multiple users to group"
  • "Bulk permission updates"
  • "Mass role assignments"
  • "Group migration"

• Settings Updates

  • "Apply settings to all users"
  • "Bulk enable features"
  • "Mass notification updates"
  • "Global preference changes"

Prerequisites

• Access to Cequence AI Gateway
• Adobe Sign account with admin privileges
• User management permissions
• OAuth application credentials

Step 1: Create Adobe Sign Integration

1.1 Access Adobe Sign Admin

1. Log in to Adobe Sign as administrator
2. Go to Account Adobe Sign API
3. Click API Applications
4. Select Create Application

1.2 Configure OAuth Application

1. Fill in application details:
   • Application Name: "AI Gateway Users MCP"
   • Application Display Name: "User Management"
   • Redirect URI:

     https://auth.aigateway.cequence.ai/v1/outbound/oauth/callback

1.3 Set Application Scopes

Select required scopes:

• user_read - View user information
• user_write - Manage users
• user_login - Login as user
• group_read - View groups
• group_write - Manage groups
• account_read - View account settings
• account_write - Manage account settings

1.4 Get Credentials

1. After creation, view application
2. Copy Client ID
3. Copy Client Secret
4. Note the Base URI for your region

Step 2-4: Standard Setup

Follow standard steps to access AI Gateway, find Adobe Sign Users API, and create MCP server.

Step 5: Configure API Endpoints

1. Base URL: Your regional API endpoint
   • Example: https://api.na1.adobesign.com/api/rest/v6
2. Select Users endpoints:
   • Users endpoints
   • Groups endpoints
   • Settings endpoints
3. Click Next

Step 6: MCP Server Configuration

1. Name: "Adobe Sign Users"
2. Description: "User and group management"
3. Configure production mode
4. Click Next

Step 7: Configure Authentication

1. Authentication Type: OAuth 2.0
2. Authorization URL:

   https://secure.{region}.adobesign.com/public/oauth/v2

3. Token URL:

   https://api.{region}.adobesign.com/oauth/v2/token

4. Enter Client ID and Secret
5. Select required scopes

Available Adobe Sign Users OAuth Scopes

User Management Scopes

• user_read:self

  • View own profile
  • Access own settings
  • View own groups
  • Check permissions

• user_write:self

  • Update own profile
  • Change preferences
  • Manage own delegates
  • Update settings

• user_login:self

  • Single sign-on
  • Session management
  • Token refresh
  • Logout control

Administrative Scopes

• user_read:group

  • View group members
  • Access group users
  • Check group settings
  • List user groups

• user_write:group

  • Create users in group
  • Update group users
  • Manage permissions
  • Deactivate users

• user_read:account

  • View all users
  • Access account users
  • Full user visibility
  • Audit capabilities

• user_write:account

  • Full user management
  • Account administration
  • Global settings
  • License management

Recommended Scope Combinations

For Self-Service:

user_read:self
user_write:self
user_login:self

For Team Management:

user_read:group
user_write:group
group_read
group_write

For Full Administration:

user_read:account
user_write:account
group_read
group_write
account_read
account_write

Step 8-10: Complete Setup

Configure security, choose deployment, and deploy.

Using Your Adobe Sign Users MCP Server

With Claude Desktop

{
  "servers": {
    "adobe-sign-users": {
      "url": "your-mcp-server-url",
      "auth": {
        "type": "oauth2",
        "client_id": "your-client-id"
      }
    }
  }
}

Natural Language Commands

• "Create user account for new.employee@company.com"
• "Add john to legal department group"
• "Deactivate all users who haven't logged in for 90 days"
• "Grant admin permissions to sarah@company.com"
• "Show user activity report for last month"

API Integration Example

// Initialize MCP client
const mcpClient = new MCPClient({
  serverUrl: 'your-mcp-server-url',
  auth: {
    type: 'oauth2',
    token: 'access-token'
  }
});

// Create new user
const newUser = await mcpClient.adobeSign.users.create({
  email: 'john.doe@company.com',
  firstName: 'John',
  lastName: 'Doe',
  groupId: 'legal-dept-group-id',
  userStatus: 'ACTIVE',
  accountType: 'ENTERPRISE',
  roles: ['NORMAL_USER', 'SEND_ONLY'],
  title: 'Legal Counsel',
  company: 'Acme Corporation',
  phone: '+1-555-0123',
  locale: 'en_US',
  notificationSettings: {
    agreementSigned: true,
    agreementViewed: true,
    reminderSent: true,
    documentShared: true
  }
});

// Update user permissions
await mcpClient.adobeSign.users.updatePermissions({
  userId: newUser.userId,
  permissions: {
    canSend: true,
    canSign: true,
    canManageTemplates: true,
    canAccessReports: true,
    canManageWebhooks: false,
    canManageWorkflows: true,
    isSharingAllowed: true
  }
});

// Create user group
const group = await mcpClient.adobeSign.groups.create({
  name: 'Contract Management Team',
  description: 'Team responsible for contract lifecycle',
  isDefaultGroup: false,
  userIds: [newUser.userId],
  settings: {
    sharingEnabled: true,
    visibilityLevel: 'GROUP',
    defaultSignatureFormat: 'ESIGN'
  }
});

// Set user delegation
await mcpClient.adobeSign.users.setDelegation({
  userId: 'user-123',
  delegateUserId: 'delegate-456',
  startDate: '2025-02-01',
  endDate: '2025-02-15',
  permissions: {
    canSendOnBehalf: true,
    canSignOnBehalf: false,
    canViewAgreements: true,
    canManageAccount: false
  },
  autoDelegate: true,
  message: 'Out of office - please contact my delegate'
});

// Bulk user import
const bulkImport = await mcpClient.adobeSign.users.bulkCreate({
  users: [
    {
      email: 'user1@company.com',
      firstName: 'User',
      lastName: 'One',
      groupId: 'sales-group-id'
    },
    {
      email: 'user2@company.com',
      firstName: 'User',
      lastName: 'Two',
      groupId: 'marketing-group-id'
    }
  ],
  sendWelcomeEmail: true,
  defaultPermissions: {
    canSend: true,
    canSign: true
  }
});

// Get user activity
const activity = await mcpClient.adobeSign.users.getActivity({
  userId: newUser.userId,
  startDate: '2025-01-01',
  endDate: '2025-01-31',
  includeActions: [
    'AGREEMENT_SENT',
    'AGREEMENT_SIGNED',
    'TEMPLATE_CREATED',
    'USER_LOGIN'
  ]
});

// Update account settings
await mcpClient.adobeSign.account.updateSettings({
  settings: {
    passwordPolicy: {
      minLength: 12,
      requireUppercase: true,
      requireNumbers: true,
      requireSpecialChars: true,
      passwordExpiration: 90
    },
    sessionPolicy: {
      sessionTimeout: 30,
      requireTwoFactor: true,
      allowRememberMe: false
    },
    securityPolicy: {
      allowApiAccess: true,
      ipWhitelist: ['192.168.1.0/24'],
      enforceSSO: true
    }
  }
});

// Search users
const searchResults = await mcpClient.adobeSign.users.search({
  query: 'legal',
  searchFields: ['email', 'firstName', 'lastName', 'title'],
  filters: {
    status: 'ACTIVE',
    hasLoggedIn: true,
    groupIds: ['legal-dept-group-id']
  },
  sort: 'lastLogin:desc',
  pageSize: 50
});

Common Use Cases

User Onboarding

• New employee setup
• Permission assignment
• Group membership
• Training accounts

Access Management

• Role-based access
• Department groups
• Feature enablement
• Security policies

Compliance & Audit

• User activity tracking
• Permission auditing
• Access reviews
• Compliance reporting

Account Administration

• License management
• Settings configuration
• Policy enforcement
• Integration setup

Security Best Practices

1. Authentication Security:

   • Enforce strong passwords
   • Enable two-factor auth
   • Regular credential rotation
   • SSO integration

2. Access Control:

   • Principle of least privilege
   • Regular access reviews
   • Group-based permissions
   • Audit trail maintenance

3. Data Protection:

   • Encrypt sensitive data
   • Secure API access
   • Monitor user activity
   • Compliance adherence

Troubleshooting

Common Issues

1. User Creation Errors

   • Verify email uniqueness
   • Check license availability
   • Validate required fields
   • Review group permissions

2. Permission Issues

   • Confirm admin rights
   • Check group hierarchy
   • Verify scope access
   • Review role conflicts

3. Bulk Operations

   • Monitor rate limits
   • Validate data format
   • Check error logs
   • Use batch processing

Getting Help

• Documentation: AI Gateway Docs
• Support: support@cequence.ai
• Adobe Sign API: helpx.adobe.com/sign/using/api.html

---