github · manupk · Jan 10, 2026 · Jan 10, 2026 · Jan 10, 2026
diff --git a/...t/copilot/how-tos/administer-copilot/manage-mcp-usage/configure-mcp-registry.md b/...t/copilot/how-tos/administer-copilot/manage-mcp-usage/configure-mcp-registry.md
@@ -24,7 +24,7 @@ At its core, an MCP registry is a set of HTTPS endpoints that serve details abou
 * Publish your own custom implementation.
 
 > [!NOTE]
-> If you want your developers to have access to local MCP servers, include those servers in your registry with the correct server ID. For more information, see [AUTOTITLE](/copilot/reference/mcp-allowlist-enforcement).
+> If you want your developers to have access to local MCP servers, include those servers in your registry with the correct server name/ID, description and version. For more information, see [AUTOTITLE](/copilot/reference/mcp-allowlist-enforcement).
 
 To create a valid MCP registry that is reachable by {% data variables.product.prodname_copilot %}, the registry must meet the following requirements:
 * [Endpoint and specification requirements](#endpoint-and-specification-requirements)

diff --git a/content/copilot/reference/mcp-allowlist-enforcement.md b/content/copilot/reference/mcp-allowlist-enforcement.md
@@ -12,7 +12,7 @@ contentType: reference
 
 MCP allowlist enforcement currently has the following limitations:
 
-* Enforcement is based only on server name/ID matching, which can be bypassed by editing configuration files
+* Enforcement is based only on server name/ID, description and version matching, which can be bypassed by editing configuration files
 * Strict enforcement that prevents installation of non-registry servers is not yet available
 
 For the highest level of security, you can **disable MCP servers in {% data variables.product.prodname_copilot_short %}** until strict enforcement is available.