MCP Server

Connect Claude to your Oracle databases

Give Claude Desktop and Claude Code live access to your Oracle health data — check scores, run security scans, search DBA tickets, and query the database directly with natural language. Requires Team plan or above.

Setup — 4 steps

Takes about 2 minutes. Works with Claude Desktop, Claude Code, and any MCP-compatible client.

Generate a TuneVault API key

Go to Settings → API Keys and create a key. Copy it immediately — it's only shown once. API access requires the Team plan or above.

⚠

Keep your API key secret — it grants read access to your Oracle data. Revoke and regenerate anytime from Settings → API Keys.

Generate API Key →

Claude Code — add to project or global config

Create or edit .mcp.json in your project root (or ~/.claude/mcp.json for global):

.mcp.json

{
  "mcpServers": {
    "tunevault": {
      "type": "streamable-http",
      "url": "https://tunevault.app/mcp",
      "headers": {
        "Authorization": "Bearer tv_api_YOUR_KEY_HERE"
      }
    }
  }
}

Or add via CLI:

terminal

claude mcp add tunevault \
  --transport streamable-http \
  --url https://tunevault.app/mcp \
  --header "Authorization: Bearer tv_api_YOUR_KEY_HERE"

Claude Desktop — edit claude_desktop_config.json

Open ~/.claude/claude_desktop_config.json (create it if it doesn't exist) and add the mcpServers block:

~/.claude/claude_desktop_config.json

{
  "mcpServers": {
    "tunevault": {
      "type": "streamable-http",
      "url": "https://tunevault.app/mcp",
      "headers": {
        "Authorization": "Bearer tv_api_YOUR_KEY_HERE"
      }
    }
  }
}

Restart Claude Desktop after saving.

Verify the connection

In Claude, type the prompt below. If the server is connected, Claude will list your Oracle connections. If not, see the troubleshooting note in step 4.

first prompt to try

List my Oracle connections in TuneVault.

Ask Claude about your databases

Once connected, Claude has access to all 20 TuneVault tools. Replace 42 with your actual connection ID.

example prompts

What's the health check score for connection 42? What are the top findings?

Are there any open critical TuneOps tickets?

Run a security posture scan on connection 42 and summarize the risks.

What CVEs are unpatched on my production database (connection 42)?

SELECT COUNT(*), status FROM dba_objects GROUP BY status
  -- connection_id: 42, username: tunevault_reader, password: ...

ℹ

Troubleshooting: If Claude says it can't find the TuneVault server, check that (1) the URL is exactly https://tunevault.app/mcp, (2) your API key starts with tv_api_, and (3) you restarted Claude Desktop after editing the config. Claude Code picks up config changes without restart.

20 Oracle DBA tools

Available once the server is configured. See the full parameter reference below.

list_connections

List all Oracle connections — host, service name, server type, agent version.

get_fleet_status

Fleet overview — all connections with online/offline status and latest health scores.

run_health_check

Get a link to trigger a full 200+ check health check for a connection.

get_latest_health_check

Score, summary, top action, and critical/warning findings from the latest run.

list_health_check_history

Last N health check runs with score, status, and finding counts per run.

run_ebs_health_check

Live EBS app-tier health check — Apache, OPMN, OACore, Forms, WLS, CM, disk, memory.

security_posture_scan

Full Security Posture scan — default passwords, privileges, audit trail, encryption.

get_security_posture

Concise Security Posture summary — score, scan date, critical/warning group counts.

get_vulnerability_exposure

Live CVE scan — unpatched CVEs by severity with OPatch remediation steps.

get_tablespace_usage

Tablespace used/total/pct with warning (>85%) and critical (>95%) flags.

get_blocking_sessions

V$SESSION blocking chain — blocker SID, username, SQL, and blocked session count.

get_resilience_status

RMAN backup currency, archivelog mode, Data Guard, FRA usage, redo log health.

get_patch_advisor

Current Oracle patch level and top 5 recommended patches.

run_sql_query

Execute read-only SELECT queries against Oracle via the proxy agent. Up to 200 rows.

get_adop_status

Live ADOP patching session status — phase, session ID, active cycles. Requires APPS access.

get_concurrent_manager_status

FND_CONCURRENT_QUEUES_VL — running/max processes, control code, manager type.

get_workflow_errors

WF_ITEM_ACTIVITY_STATUSES ERROR rows for the last N hours — item_type, error details.

list_ebs_patches

EBS patches applied via ADOP — bug numbers, status, fs_clone, start/end dates.

list_tuneops_tickets

Open, confirmed, and resolved DBA issue tickets with severity and fix recommendations.

create_tuneops_ticket

Log a new DBA task or issue as a TuneOps ticket (TO-XXXX).

Full Tool Reference — parameters, data sources, requirements →

Tool reference

All tools require a valid API key. Proxy-agent tools require a connection with an installed TuneVault agent (not direct TCP). Full reference with parameter details →

      
        
            Tool
            Description
            Data source
            Requires
          

        list_connectionsAll Oracle connections for the authenticated useroracle_connectionsany
get_fleet_statusFleet overview with online/offline status and health scoresoracle_connections + health_checksany
run_health_checkLink + instructions to trigger a new health checkoracle_connectionsany
get_latest_health_checkScore, summary, and top findings from last runhealth_checks + check_resultsany
list_health_check_historyLast N runs with score, status, and finding countshealth_checks + check_resultsany
run_ebs_health_checkLive EBS app-tier health check via agent endpointagent /api/ebs-app-healthcheckproxy agent
security_posture_scanFull Security Posture scan — passwords, privileges, audit, encryptioncheck_resultsany
get_security_postureConcise Security Posture summary — score and group countscheck_resultsany
get_vulnerability_exposureLive CVE scan via proxy agent + TuneVault patch indexOracle DB (live)proxy agent
get_tablespace_usageTablespace used/total/pct with warning and critical flagsOracle DB (live)proxy agent
get_blocking_sessionsV$SESSION blocking chain — blocker details and blocked countOracle DB (live)proxy agent
get_resilience_statusRMAN backup currency, archivelog, Data Guard, FRA, redo logscheck_resultsany
get_patch_advisorCurrent patch level and top 5 recommended patchesadvisor_findings / Oracle DBproxy agent
run_sql_queryLive SELECT query via proxy agent, up to 200 rowsOracle DB (live)proxy agent
get_adop_statusLive ADOP session status — phase, session ID, active cyclesOracle DB (live)proxy agent
get_concurrent_manager_statusFND_CONCURRENT_QUEUES_VL — running/max processes, control codeOracle DB (live)proxy agent
get_workflow_errorsWF_ITEM_ACTIVITY_STATUSES ERROR rows in last N hoursOracle DB (live)proxy agent
list_ebs_patchesEBS patches via ADOP — bug numbers, status, fs_clone, datesOracle DB (live)proxy agent
list_tuneops_ticketsDBA issue tickets filtered by severity/status/connectiontuneops_ticketsany
create_tuneops_ticketCreate a new TuneOps ticket (TO-XXXX) manuallytuneops_ticketsany

      
    

Tool	Description	Data source	Requires
list_connections	All Oracle connections for the authenticated user	oracle_connections	any
get_fleet_status	Fleet overview with online/offline status and health scores	oracle_connections + health_checks	any
run_health_check	Link + instructions to trigger a new health check	oracle_connections	any
get_latest_health_check	Score, summary, and top findings from last run	health_checks + check_results	any
list_health_check_history	Last N runs with score, status, and finding counts	health_checks + check_results	any
run_ebs_health_check	Live EBS app-tier health check via agent endpoint	agent /api/ebs-app-healthcheck	proxy agent
security_posture_scan	Full Security Posture scan — passwords, privileges, audit, encryption	check_results	any
get_security_posture	Concise Security Posture summary — score and group counts	check_results	any
get_vulnerability_exposure	Live CVE scan via proxy agent + TuneVault patch index	Oracle DB (live)	proxy agent
get_tablespace_usage	Tablespace used/total/pct with warning and critical flags	Oracle DB (live)	proxy agent
get_blocking_sessions	V$SESSION blocking chain — blocker details and blocked count	Oracle DB (live)	proxy agent
get_resilience_status	RMAN backup currency, archivelog, Data Guard, FRA, redo logs	check_results	any
get_patch_advisor	Current patch level and top 5 recommended patches	advisor_findings / Oracle DB	proxy agent
run_sql_query	Live SELECT query via proxy agent, up to 200 rows	Oracle DB (live)	proxy agent
get_adop_status	Live ADOP session status — phase, session ID, active cycles	Oracle DB (live)	proxy agent
get_concurrent_manager_status	FND_CONCURRENT_QUEUES_VL — running/max processes, control code	Oracle DB (live)	proxy agent
get_workflow_errors	WF_ITEM_ACTIVITY_STATUSES ERROR rows in last N hours	Oracle DB (live)	proxy agent
list_ebs_patches	EBS patches via ADOP — bug numbers, status, fs_clone, dates	Oracle DB (live)	proxy agent
list_tuneops_tickets	DBA issue tickets filtered by severity/status/connection	tuneops_tickets	any
create_tuneops_ticket	Create a new TuneOps ticket (TO-XXXX) manually	tuneops_tickets	any

ℹ

EBS tools (get_adop_status, get_concurrent_manager_status, get_workflow_errors, list_ebs_patches, run_ebs_health_check) auto-pair app-tier connections to the DB agent via ebs_instance_name. Pass username=apps + password for APPS schema access.

Authentication

The MCP server uses the same API keys as the TuneVault REST API — one key, one account, all your connections.

HTTP header

Authorization: Bearer tv_api_YOUR_KEY_HERE

Keys are scoped to your account — all tool calls run in your context. Revoke at any time from Settings → API Keys. Last-used timestamp is recorded on each request.