Uses dotenv for environment variable management to securely store and access database connection credentials.
Uses Homebrew on macOS to install the required ODBC Driver for SQL Server.
Supports Linux operating systems for running the MCP server, with specific instructions for installing required ODBC drivers.
Supports macOS operating systems for running the MCP server, with specific instructions for installing required dependencies via Homebrew.
Built on Python 3.12 or higher, leveraging Python packages for SQL Server connectivity and environment variable management.
Netwrix Access Analyzer MCP Server
An MCP server for Netwrix Access Analyzer, designed to integrate with Claude Desktop. Currently supports Active Directory and File System solutions.
Features
- SQL Server integration with automatic connection on startup
- Dynamic database schema exploration
- SQL query execution
- Netwrix Access Analyzer File System tools
Dependencies
This MCP server requires the following dependencies:
- Python 3.12 or higher
- MCP SDK
- pyodbc 4.0.39 or higher (for SQL Server connectivity)
- python-dotenv 1.0.0 or higher (for environment variable management)
- ODBC Driver 17 for SQL Server or later (must be installed on your system)
Netwrix Access Analyzer (NAA) Dependencies
This MCP Server requires Netwrix Access Analyzer (NAA) File System or Active Directory scans to be completed.
Available Tools
Solution | Tool Name | Description |
---|---|---|
Active Directory | Get-ADEffectiveMembership | Discovers effective group membership in AD with filters. |
Active Directory | Get-ADExceptions | Retrieves AD exceptions with optional filters. |
Active Directory | Get-ADPermissions | Retrieves AD permissions from the permissions view with filters. |
Active Directory | Get-DomainControllers | Lists domain controllers. |
Active Directory | Get-CertificateVulnerabilities | Lists certificate vulnerabilities. |
Active Directory | Get-ADCARights | Lists AD CA rights. |
Active Directory | Get-ADSecurityAssessment | Retrieves AD security assessment results. |
Active Directory | Get-ADUsers | Retrieves AD user details with filters. |
Active Directory | Get-ADGroups | Retrieves AD group details with filters. |
Active Directory | Get-ADComputers | Retrieves AD computer details with filters. |
Database | Connect-Database | Connects to a specified MSSQL database. |
Database | Show-ConnectionStatus | Shows the current DB connection status. |
Database | Show-TableSchema | Shows the schema for a given table. |
File System | Discover-SensitiveData | Discovers where sensitive data exists (DLP matches). |
File System | Get-OpenShares | Finds open shares accessible to broad groups. |
File System | Get-TrusteeAccess | Finds resources where a trustee has access. |
File System | Get-TrusteePermissionSource | Finds the source of access for a trustee/resource. |
File System | Get-ResourceAccess | Gets effective access for a resource path. |
File System | Get-UnusedAccess | Finds users with unused access to a share. |
File System | Get-RunningJobs | Lists running Netwrix Access Auditor jobs. |
File System | Get-ShadowAccess | Retrieves details about shadow access. |
Installation Instructions (Claude Desktop)
- Install Claude Desktop
- Download and install Claude Desktop from the official website: https://claude.ai/download
- Follow the installation prompts for your operating system (macOS, Windows, or Linux).
- Clone this repository
- Connect Claude Desktop to this Server
- Add the following
uv
configuration to your Claude Desktop MCP Configuration:
- Add the following
Troubleshooting
Connection Issues
If you encounter connection issues:
- Verify your SQL Server is running and accessible from your network
- Check your credentials in the .env file
- Ensure the ODBC driver is correctly installed
- Check the logs for detailed error messages
Claude Desktop Integration
If Claude Desktop can't find the uv command:
- Use the full path to uv in your configuration (use which uv or where uv to find it)
- Make sure you've restarted Claude Desktop after configuration changes
- Check the Claude logs for any error messages related to the MCP server
Community
If you need help using this MCP server or understanding your results, just visit the Netwrix Community - we’re here to help!
This server cannot be installed
hybrid server
The server is able to function both locally and remotely, depending on the configuration or use case.
A Model Context Protocol server that enables AI agents to interact with Netwrix Access Analyzer through standardized interfaces, allowing visibility into data access risks, data classification, and user access patterns to help organizations better secure their most sensitive data.
Related MCP Servers
- AsecurityFlicenseAqualityA Model Context Protocol server that lets AI assistants interact with the Sentry API to retrieve and analyze error data, manage projects, and monitor application performance.Last updated -117
- -securityAlicense-qualityA Model Context Protocol server that provides network analysis tools for security professionals, enabling AI models like Claude to perform tasks such as ASN lookups, DNS analysis, WHOIS retrieval, and IP geolocation for security investigations.Last updated -1Apache 2.0
- -securityFlicense-qualityA Model Context Protocol server that enables AI agents to interact with n8n workflows and automation tools through a standardized interface, allowing execution of workflows and access to n8n functions.Last updated -