Manage Aiven services using MCP
Use the Aiven Model Context Protocol (MCP) server to create and manage Aiven services from AI assistants, such as Cursor and Claude Code.
Prerequisites
- An Aiven account
- An organization with MCP access enabled
- An MCP-compatible client, such as Cursor, Claude Code, Claude Desktop, or Visual Studio Code
MCP server URL
Use the following server URL when configuring your client:
https://mcp.aiven.live/mcp
Configure your MCP client
- Cursor
- Claude Code
- Claude Desktop
- VS Code
- Other clients
To add the server manually:
-
In your project root, create or edit
.cursor/mcp.json. -
Add the following configuration:
{
"mcpServers": {
"aiven": {
"type": "http",
"url": "https://mcp.aiven.live/mcp"
}
}
} -
Save the file.
-
Restart Cursor.
-
Open Settings > Tools & MCP.
-
Select aiven and click Connect.
-
Open a terminal.
-
Run the following command:
claude mcp add --transport http aiven https://mcp.aiven.live/mcp -
Run
/mcpin Claude Code to verify the server is registered. -
The first time you use the server, your browser opens.
-
Sign in to Aiven and select your organization.
For more information, see the Claude Code MCP documentation.
-
Open the Claude Desktop configuration file. If it does not exist, create it:
-
macOS:
~/Library/Application Support/Claude/claude_desktop_config.json -
Windows:
%APPDATA%\Claude\claude_desktop_config.json
-
-
Add the following configuration to the file:
{
"mcpServers": {
"aiven": {
"type": "http",
"url": "https://mcp.aiven.live/mcp"
}
}
} -
Save the file and restart Claude Desktop.
For more information, see the Claude Desktop MCP documentation.
Requires Visual Studio Code 1.102 or later with the GitHub Copilot extension installed and enabled.
-
Open your workspace in Visual Studio Code.
-
In the workspace root, create a
.vscodedirectory if it does not exist. -
In the
.vscodedirectory, create or editmcp.json. -
Add the following configuration:
{
"servers": {
"aiven": {
"type": "http",
"url": "https://mcp.aiven.live/mcp"
}
}
} -
Save the file.
-
Reload Visual Studio Code.
-
Open the Command Palette and run MCP: List Servers.
-
Confirm that aiven appears in the list.
For more information, see the VS Code MCP documentation.
-
Open your MCP client configuration.
-
Add the Aiven MCP server using the following URL:
https://mcp.aiven.live/mcp
Most clients use a configuration similar to:
{
"mcpServers": {
"aiven": {
"url": "https://mcp.aiven.live/mcp"
}
}
}
- Save the file and restart your client.
Some clients require a transport type, such as "type": "http". If the configuration
fails, see your client documentation.
Verify the connection
- Cursor
- Claude Code
- Claude Desktop
- VS Code
- Other clients
-
Open Cursor Chat with Cmd+L on macOS or Ctrl+L on Windows/Linux.
-
Try a prompt such as:
List my Aiven projects.
-
If prompted to allow tool execution, click Allow.
-
To confirm the server is registered, go to Settings > Tools & MCP and check that aiven appears with a connected status.
-
Run
/mcpin Claude Code to verify the server is registered. -
Try a prompt such as:
List my Aiven projects.
-
If your client prompts you to allow tool execution, approve the request.
-
Open a new conversation.
-
Verify that the MCP tools icon appears in the input area.
-
Try a prompt such as:
List my Aiven projects.
-
If prompted to allow tool execution, click Allow.
-
Open Copilot Chat in Visual Studio Code.
-
Open the Command Palette and run MCP: List Servers.
-
Confirm that aiven appears in the list.
-
Try a prompt such as:
List my Aiven projects.
-
If prompted to allow tool execution, click Allow.
-
Open your AI assistant.
-
Try a prompt such as:
List my Aiven projects.
-
If your client prompts you to allow tool execution, approve the request.
-
Verify that the response includes information about your Aiven projects.
Authentication
The Aiven MCP server uses OAuth 2.0 with Proof Key for Code Exchange (PKCE) for authentication. The first time you use the server, your browser opens so you can sign in to Aiven and select your organization. The server refreshes tokens automatically.
Security and responsibility
MCP tools can perform destructive operations on your Aiven services, including creating, modifying, and deleting services, databases, topics, and data. AI agents can run operations from natural language prompts that are easy to misinterpret. Using the Aiven MCP server can result in damage to or loss of data. Whether to enable MCP access is your organization's decision. Evaluate the risks before you grant AI agents access to your resources.
Under the shared responsibility model, security and compliance for MCP usage are shared between Aiven and your organization. Aiven secures the platform and API. You are responsible for the following:
- Deciding whether to enable MCP in your organization and evaluating the associated risks.
- Controlling access by scoping API tokens to the minimum permissions needed (principle of least privilege) and rotating them regularly.
- Reviewing AI agent actions before they run, especially for write or delete operations on production resources.
- Configuring MCP servers securely, including choosing read-only mode where appropriate to restrict the server to non-destructive operations.
Supported tools
Service management
Create, update, and delete Aiven services across all supported service types. Browse available plans and pricing, view service metrics and logs, and manage service configurations and cloud regions.
PostgreSQL®
Create and manage PostgreSQL databases, execute read and write SQL queries, and manage PgBouncer connection pools. Get AI-powered query optimization recommendations, view query performance statistics, and list available extensions.
Apache Kafka®
Create and manage Kafka topics, produce and consume messages, and configure Kafka Connect connectors. Browse Schema Registry subjects and manage connector lifecycle operations including pause, resume, and restart.
Read-only mode
To restrict the server to read-only operations, set the AIVEN_READ_ONLY
environment variable to true in your MCP client configuration:
{
"mcpServers": {
"aiven": {
"type": "http",
"url": "https://mcp.aiven.live/mcp",
"env": {
"AIVEN_READ_ONLY": "true"
}
}
}
}
In read-only mode, the server only allows operations that read data, such as listing services, viewing metrics, and running SELECT queries. The server blocks write operations, such as creating services or modifying data.