Snowflake MCP Server for Claude

Content

The Snowflake-managed MCP server lets Claude and other MCP-capable clients discover and call governed Snowflake tools without deploying a separate server beside the warehouse. Snowflake administrators create an MCP server object in a database and schema, attach selected tools, configure OAuth or token-based access, and grant roles access to the server and the underlying tools.

This is an enterprise data-access integration, not a toy local connector. Treat the MCP server as a governed interface to Snowflake data, Cortex AI features, SQL execution, UDFs, stored procedures, and agent workflows. Start with narrow read-only tools, explicit role grants, and non-production data before allowing Claude to query broader warehouses or trigger custom tools.

Features

• Snowflake-managed MCP endpoint for database and schema scoped MCP server objects.
• Snowflake OAuth based authentication, with Programmatic Access Token fallback when OAuth is not available.
• Role-based access control for MCP server discovery and individual tool use.
• Cortex Search Service query tools for unstructured search over Snowflake data.
• Cortex Analyst tools for natural-language analysis over supported semantic views.
• Cortex Agent tools for invoking configured Snowflake Cortex Agents through MCP.
• SQL execution tools, with documented read-only configuration and query timeout options.
• Custom tools backed by Snowflake UDFs and stored procedures.
• Support for standard MCP tools/list and tools/call requests.
• Official Snowflake-Labs open-source MCP repository for Snowflake MCP workflows that need a Snowflake-backed server implementation outside the managed server path.

Use Cases

• Let Claude ask governed questions over Snowflake semantic views through Cortex Analyst.
• Search enterprise knowledge or product data through Cortex Search without handing Claude unrestricted database access.
• Expose a narrowly scoped read-only SQL execution tool for bounded warehouse analysis.
• Call approved Snowflake UDFs or stored procedures as MCP tools after human review of the business action.
• Connect an MCP client to a Cortex Agent that already has curated resources, tools, and response behavior.
• Prototype Snowflake-backed MCP workflows locally with the Snowflake-Labs MCP repository, then move production access behind managed Snowflake governance.

Installation

Snowflake setup

1. Choose the database and schema where the MCP server object will live.
2. Create or select the Cortex Analyst, Cortex Search, Cortex Agent, SQL, UDF, or stored procedure tools that should be exposed.
3. Create the Snowflake MCP server object with a reviewed specification.
4. Configure Snowflake OAuth for the client or approve a least-privilege Programmatic Access Token fallback.
5. Grant the connecting role access to the MCP server and only the tools it should discover and invoke.
6. Set each MCP user's default role and default warehouse to the intended least-privilege values.

Claude Code

After the Snowflake MCP server object and authentication are configured, add the server URL to Claude Code:

claude mcp add --transport http snowflake https://ACCOUNT.snowflakecomputing.com/api/v2/databases/DATABASE/schemas/SCHEMA/mcp-servers/SERVER_NAME

Start with a prompt that lists tools and summarizes what each one can access before asking Claude to query or invoke anything.

Configuration

{
  "mcpServers": {
    "snowflake": {
      "type": "http",
      "url": "https://ACCOUNT.snowflakecomputing.com/api/v2/databases/DATABASE/schemas/SCHEMA/mcp-servers/SERVER_NAME"
    }
  }
}

Examples

Inspect available tools first

List the Snowflake MCP tools available on this server and explain what each one can access before calling any tool.

Query through Cortex Analyst

Use the approved Cortex Analyst tool to answer this revenue question from the semantic view, then show the generated SQL before summarizing.

Search governed data

Use the product Cortex Search tool to find the top matches for this customer question and include citations from the returned search results.

Run bounded read-only SQL

Use the read-only Snowflake SQL tool to return the top 10 rows needed for this analysis, avoiding broad scans or writes.

Call a custom tool after review

Show the exact stored procedure tool call you want to make and wait for approval before invoking it.

Source notes

• Snowflake's official documentation describes the Snowflake-managed MCP server as a generally available feature for letting AI agents retrieve data from Snowflake accounts without deploying separate infrastructure.
• The documentation says MCP servers on Snowflake can expose Cortex Analyst, Cortex Search, Cortex Agents, SQL execution, UDFs, and stored procedures as tools through a standards-based interface.
• Snowflake documents OAuth-based authentication, role-based access control, the importance of least privilege, default role behavior for OAuth sessions, and default warehouse requirements.
• Snowflake's security recommendations warn about third-party MCP server verification, hardcoded token leakage, least-privilege PATs, tool-level permissions, and recursive MCP or Cortex Agent loops.
• The docs show the MCP server endpoint shape under /api/v2/databases/<database>/schemas/<schema>/mcp-servers/<name> and describe tools/list and tools/call interactions.
• The GitHub repository Snowflake-Labs/mcp is Apache-2.0 licensed and describes an MCP server for Snowflake including Cortex AI, object management, SQL orchestration, semantic view consumption, and more.

Duplicate check

Checked current content/mcp/, content/tools/, guides, skills, agents, open pull requests, live issue state, and repository-wide content for Snowflake MCP, Snowflake-managed MCP, Cortex Agents MCP, Cortex Analyst MCP, Cortex Search MCP, Snowflake-Labs/mcp, SYSTEM_EXECUTE_SQL, CORTEX_AGENT_RUN, CORTEX_SEARCH_SERVICE_QUERY, CORTEX_ANALYST_MESSAGE, snowflakecomputing.com/api/v2, and Snowflake SQL MCP. Existing BigQuery and database MCP entries cover adjacent warehouse access, and the TruLens entry mentions Snowflake as the current steward of TruLens, but no dedicated Snowflake MCP entry, Snowflake MCP source URL duplicate, or open duplicate PR was found.

Disclosure

Editorial listing. No paid placement or affiliate link is used.