Happy slice of mcp pizzaMCP.pizza

mcp-server-elasticsearch

MCP.Pizza Chef: elastic

The mcp-server-elasticsearch is an MCP server that enables seamless integration between MCP clients and Elasticsearch data stores. It allows users to query, explore, and interact with Elasticsearch indices using natural language through the Model Context Protocol. This server supports listing indices, retrieving field mappings, performing search queries, and accessing shard information, facilitating advanced data exploration and management workflows in real time.

Use This MCP server To

Query Elasticsearch indices using natural language commands List all available Elasticsearch indices for data discovery Retrieve field mappings to understand index schema Perform complex search queries with Elasticsearch DSL Access shard information for monitoring and diagnostics Integrate Elasticsearch data into AI-driven workflows Enable conversational data exploration in MCP clients

README

Elasticsearch MCP Server

This repository contains experimental features intended for research and evaluation and are not production-ready.

Connect to your Elasticsearch data directly from any MCP Client (like Claude Desktop) using the Model Context Protocol (MCP).

This server connects agents to your Elasticsearch data using the Model Context Protocol. It allows you to interact with your Elasticsearch indices through natural language conversations.

Elasticsearch Server MCP server

Available Tools

  • list_indices: List all available Elasticsearch indices
  • get_mappings: Get field mappings for a specific Elasticsearch index
  • search: Perform an Elasticsearch search with the provided query DSL
  • get_shards: Get shard information for all or specific indices

Prerequisites

  • An Elasticsearch instance
  • Elasticsearch authentication credentials (API key or username/password)
  • MCP Client (e.g. Claude Desktop)

Demo

mcp-server-elasticsearch.mov

Installation & Setup

Using the Published NPM Package

Tip

The easiest way to use Elasticsearch MCP Server is through the published npm package.

  1. Configure MCP Client

    • Open your MCP Client. See the list of MCP Clients, here we are configuring Claude Desktop.
    • Go to Settings > Developer > MCP Servers
    • Click Edit Config and add a new MCP Server with the following configuration:
    {
  "mcpServers": {
    "elasticsearch-mcp-server": {
      "command": "npx",
      "args": [
        "-y",
        "@elastic/mcp-server-elasticsearch"
      ],
      "env": {
        "ES_URL": "your-elasticsearch-url",
        "ES_API_KEY": "your-api-key"
      }
    }
  }
}

  2. Start a Conversation

    • Open a new conversation in your MCP Client
    • The MCP server should connect automatically
    • You can now ask questions about your Elasticsearch data

Configuration Options

The Elasticsearch MCP Server supports configuration options to connect to your Elasticsearch:

Note

You must provide either an API key or both username and password for authentication.

Environment Variable Description Required
ES_URL Your Elasticsearch instance URL Yes
ES_API_KEY Elasticsearch API key for authentication No
ES_USERNAME Elasticsearch username for basic authentication No
ES_PASSWORD Elasticsearch password for basic authentication No
ES_CA_CERT Path to custom CA certificate for Elasticsearch SSL/TLS No

Developing Locally

Note

If you want to modify or extend the MCP Server, follow these local development steps.

  1. Use the correct Node.js version

    nvm use

  2. Install Dependencies

    npm install

  3. Build the Project

    npm run build

  4. Run locally in Claude Desktop App

    • Open Claude Desktop App
    • Go to Settings > Developer > MCP Servers
    • Click Edit Config and add a new MCP Server with the following configuration:
    {
  "mcpServers": {
    "elasticsearch-mcp-server-local": {
      "command": "node",
      "args": [
        "/path/to/your/project/dist/index.js"
      ],
      "env": {
        "ES_URL": "your-elasticsearch-url",
        "ES_API_KEY": "your-api-key"
      }
    }
  }
}

  5. Debugging with MCP Inspector

    ES_URL=your-elasticsearch-url ES_API_KEY=your-api-key npm run inspector

    This will start the MCP Inspector, allowing you to debug and analyze requests. You should see:

    Starting MCP inspector...
Proxy server listening on port 3000

πŸ” MCP Inspector is up and running at http://localhost:5173 πŸš€

Contributing

We welcome contributions from the community! For details on how to contribute, please see Contributing Guidelines.

Example Questions

Tip

Here are some natural language queries you can try with your MCP Client.

  • "What indices do I have in my Elasticsearch cluster?"
  • "Show me the field mappings for the 'products' index."
  • "Find all orders over $500 from last month."
  • "Which products received the most 5-star reviews?"

How It Works

  1. The MCP Client analyzes your request and determines which Elasticsearch operations are needed.
  2. The MCP server carries out these operations (listing indices, fetching mappings, performing searches).
  3. The MCP Client processes the results and presents them in a user-friendly format.

Security Best Practices

Warning

Avoid using cluster-admin privileges. Create dedicated API keys with limited scope and apply fine-grained access control at the index level to prevent unauthorized data access.

You can create a dedicated Elasticsearch API key with minimal permissions to control access to your data:

POST /_security/api_key
{
  "name": "es-mcp-server-access",
  "role_descriptors": {
    "mcp_server_role": {
      "cluster": [
        "monitor"
      ],
      "indices": [
        {
          "names": [
            "index-1",
            "index-2",
            "index-pattern-*"
          ],
          "privileges": [
            "read",
            "view_index_metadata"
          ]
        }
      ]
    }
  }
}

License

This project is licensed under the Apache License 2.0.

Troubleshooting

  • Ensure your MCP configuration is correct.
  • Verify that your Elasticsearch URL is accessible from your machine.
  • Check that your authentication credentials (API key or username/password) have the necessary permissions.
  • If using SSL/TLS with a custom CA, verify that the certificate path is correct and the file is readable.
  • Look at the terminal output for error messages.

If you encounter issues, feel free to open an issue on the GitHub repository.

mcp-server-elasticsearch FAQ

How do I connect the mcp-server-elasticsearch to my MCP client?
Configure your MCP client to connect to the mcp-server-elasticsearch endpoint, enabling natural language queries to your Elasticsearch data.
What Elasticsearch operations does this MCP server support?
It supports listing indices, retrieving field mappings, performing search queries, and getting shard information.
Is the mcp-server-elasticsearch production-ready?
Currently, it contains experimental features intended for research and evaluation, so it is not recommended for production use.
Can I use this server with multiple MCP clients?
Yes, it is designed to connect with any MCP client that supports the Model Context Protocol.
Does this server support complex Elasticsearch query DSL?
Yes, it allows performing searches using the full Elasticsearch query DSL for advanced querying.
How secure is the connection between MCP clients and this server?
Security depends on your deployment setup; ensure secure network configurations and authentication as needed.
Can this server provide real-time updates from Elasticsearch?
It primarily supports query and metadata retrieval; real-time streaming is not a built-in feature.
What LLM providers can I use with this MCP server?
You can use OpenAI, Anthropic Claude, and Google Gemini models with MCP clients connected to this server.