The NetApp DataOps Toolkit MCP Server for Azure NetApp Files (ANF) is an open-source server component written in Python that provides access to Traditional DataOps Toolkit capabilities through the Model Context Protocol (MCP). The server provides a comprehensive set of tools for managing NetApp volumes in Microsoft Azure, including volume creation, cloning, snapshot management, and cross-region replication relationships.
Note
This MCP server uses the stdio transport, as shown in the MCP Server Quickstart, making it a "local MCP server".
- Create Volume: Rapidly provision new Azure NetApp Files volumes with comprehensive configuration options including protocols (NFS/SMB), performance tiers, export policies, and advanced features like encryption and tiering.
- Clone Volume: Create near-instantaneous, space-efficient clones of existing volumes from snapshots using NetApp's FlexClone technology.
- List Volumes: Retrieve a list of all existing data volumes in a specified capacity pool within your Azure NetApp Files account.
- Create Snapshot: Create space-efficient, read-only point-in-time copies of data volumes for versioning, backup, and recovery scenarios.
- List Snapshots: Retrieve a list of all snapshots for a specific Azure NetApp Files volume.
- Create Replication: Set up cross-region replication relationships for disaster recovery and high availability between Azure regions.
- Create ANF Config: Create an ANF configuration file to avoid repetitive parameters and simplify tool usage.
- Python >= 3.9
uvorpip- Azure CLI installed and authenticated
- Azure NetApp Files resources (NetApp Account, Capacity Pool, delegated subnet)
- Appropriate IAM permissions (NetApp Contributor role or equivalent)
To run the MCP server using uv, run the following command. You do not need to install the NetApp DataOps Toolkit package before running this command.
uvx --from 'netapp-dataops-traditional[azure]' netapp_dataops_anf_mcp.pyTo install the NetApp DataOps Toolkit for Traditional Environments with Azure support, run the following command.
python3 -m pip install 'netapp-dataops-traditional[azure]'After installation, the netapp_dataops_anf_mcp.py command will be available in your PATH for direct usage.
The MCP server uses DefaultAzureCredential from azure-identity, which automatically selects the appropriate credential based on the environment — no configuration required. The active subscription is resolved via the Azure SDK's SubscriptionClient.
No secrets or environment variables are required. The credential resolves automatically based on the environment.
Authenticate once via Azure CLI:
# Install Azure CLI (if not already installed)
# https://docs.microsoft.com/en-us/cli/azure/install-azure-cli
# Login to Azure (opens browser)
az login
# If you have access to multiple tenants, specify the tenant ID
az login --tenant <TENANT_ID>
# If you have multiple subscriptions, set the active one
az account set --subscription <SUBSCRIPTION_ID>
# Verify active session (optional – subscription is auto-detected via the SDK)
az account showHow It Works:
DefaultAzureCredentialis instantiated and passed toSubscriptionClient- The first available subscription is resolved via the Azure SDK
- The resolved
subscription_idis used to initializeNetAppManagementClient - The client is cached in a singleton (
ANFClientManager) and reused across calls
Benefits:
- Zero secrets – No
AZURE_CLIENT_ID,AZURE_CLIENT_SECRET, orAZURE_TENANT_IDneeded - Portable – Works in local dev, CI/CD, containers, and Azure-hosted environments
- Subscription auto-resolved – No subscription ID in config files or function parameters
- Multi-tenant support – Respects
az login --tenant
The MCP server supports an optional configuration file that simplifies ANF operations by storing common Azure infrastructure details. This reduces the complexity of tool usage and provides consistent defaults.
Option 1: Interactive Setup (Recommended)
# Run this once to set up your ANF infrastructure defaults
from netapp_dataops.traditional.anf.config import create_anf_config
create_anf_config()This interactive setup will prompt you for:
- Resource Group Name
- NetApp Account Name
- Capacity Pool Name
- Azure Region/Location
- Virtual Network Name
- Subnet Name
- Default Protocol Types (NFSv3, NFSv4.1, SMB)
The configuration file will be automatically created at ~/.netapp_dataops/anf_config.json.
The configuration file is stored at ~/.netapp_dataops/anf_config.json and contains your Azure NetApp Files infrastructure defaults. This file is automatically created by the interactive setup or can be manually created.
Configuration File Structure:
{
"resourceGroupName": "your-resource-group",
"accountName": "your-netapp-account",
"poolName": "your-capacity-pool",
"location": "eastus",
"virtualNetworkName": "your-vnet",
"subnetName": "default",
"protocolTypes": ["NFSv3"]
}📝 Note: The subscription ID is not stored in the configuration file. It is automatically resolved at runtime via
DefaultAzureCredentialand the Azure SDK'sSubscriptionClient.
Simplified Tool Usage:
Without Configuration:
Create a volume in my-resource-group using my-netapp-account in the premium-pool located in eastus with virtual network my-vnet and subnet netapp-subnet. Name it data-volume with creation token data-vol-001 and size 500 GiB using NFSv3 protocol.
With Configuration:
Create a volume named data-volume with creation token data-vol-001 and size 500 GiB.
The MCP server automatically uses configuration defaults for:
- Resource group name
- NetApp account name
- Capacity pool name
- Azure region/location
- Virtual network name
- Subnet name
- Default protocol types
The MCP server uses the following precedence for parameter resolution:
- Tool parameters (highest priority) - Parameters explicitly provided in tool calls
- Configuration file values - Defaults from
~/.netapp_dataops/anf_config.json - Error if required parameter missing from both sources
Example Parameter Resolution:
- If you specify
resource_group_namein a tool call, it overrides the config file value - If you don't specify it in the tool call, the config file value is used
- If it's missing from both, an error is returned
This allows you to:
- Set common defaults in the configuration file
- Override specific parameters on a per-operation basis
- Maintain flexibility while reducing repetitive parameter entry
To use the MCP server with an MCP client, you need to configure the client to use the server. For many clients (such as VS Code, Claude Desktop, and AnythingLLM), this requires editing a config file that is in JSON format. Below is an example. Refer to the documentation for your MCP client for specific formatting details.
{
"mcpServers": {
"netapp_dataops_anf_mcp": {
"type": "stdio",
"command": "uvx",
"args": [
"--from",
"'netapp-dataops-traditional[azure]'",
"netapp_dataops_anf_mcp.py"
]
}
}
}If you've installed the package with pip, you can use:
{
"mcpServers": {
"netapp_dataops_anf_mcp": {
"type": "stdio",
"command": "netapp_dataops_anf_mcp.py"
}
}
}For development or testing purposes:
{
"mcpServers": {
"netapp_dataops_anf_mcp": {
"type": "stdio",
"command": "python",
"args": [
"/path/to/netapp_dataops_anf_mcp.py"
]
}
}
}The MCP server exposes Azure NetApp Files operations through tools. Here are some example use cases:
Create a 500 GiB Premium NFS volume:
- Volume Name: "data-volume-001"
- Creation Token: "data-vol-001"
- Size: 536870912000 bytes (500 GiB)
- Resource Group: "my-resource-group"
- Account: "my-netapp-account"
- Pool: "premium-pool"
- Location: "eastus"
- Protocol: "NFSv3"
- Virtual Network: "my-vnet"
- Subnet: "netapp-subnet"
Clone from an existing snapshot:
- Source Volume: "production-data"
- Clone Name: "dev-environment"
- Creation Token: "dev-env-001"
- Snapshot: "daily-backup-001"
- Size can be larger than source volume
Set up disaster recovery:
- Source Volume: "critical-data"
- Destination Resource Group: "dr-westus-rg"
- Destination Account: "dr-account"
- Destination Pool: "dr-pool"
- Destination Volume: "critical-data-replica"
- Destination Location: "westus"
- Destination Creation Token: "critical-data-dr"
- Destination Size: 536870912000 bytes (500 GiB)
- Destination Protocol: "NFSv3"
- Destination Virtual Network: "dr-vnet"
- Source details (optional - can use config defaults)
-
Authentication Failed:
az login # or for a specific tenant az login --tenant <TENANT_ID> # verify active session az account show
-
NetApp Provider Not Registered:
az provider register --namespace Microsoft.NetApp az provider show --namespace Microsoft.NetApp --query "registrationState" -
Insufficient Permissions:
- Ensure your account has "NetApp Contributor" role
- Verify permissions on the resource group and subscription
az role assignment list --assignee YOUR_USER_ID --output table
-
Resource Not Found:
- Verify NetApp Account exists and is accessible
- Check that Capacity Pool has available space
- Ensure delegated subnet is properly configured
-
Configuration File Issues:
- Run the interactive setup to recreate the configuration:
from netapp_dataops.traditional.anf.config import create_anf_config create_anf_config()
- Verify the configuration file format and location (
~/.netapp_dataops/anf_config.json) - Check file permissions and ensure the directory is writable
-
Module Not Found:
- Ensure the package is properly installed with Azure extras
pip install 'netapp-dataops-traditional[azure]' -
Network Configuration Issues:
- Verify virtual network and subnet exist in the target region
- Check that subnet is properly delegated to Microsoft.NetApp/volumes
- Ensure network security groups allow required traffic
For troubleshooting, you can enable debug logging by setting:
export PYTHONPATH=/path/to/netapp-dataops-toolkit
python -c "
import logging
logging.basicConfig(level=logging.DEBUG)
import netapp_dataops_anf_mcp
"Before using the MCP server, validate your setup:
# Check Azure authentication
az account show
# Verify NetApp resources
az netappfiles account list --resource-group YOUR_RG
# Check capacity pools
az netappfiles pool list --resource-group YOUR_RG --account-name YOUR_ACCOUNT
# Verify subnet delegation
az network vnet subnet show --resource-group YOUR_RG --vnet-name YOUR_VNET --name YOUR_SUBNET
# Test ANF configuration (if using config file)
python -c "
from netapp_dataops.traditional.anf.config import get_config_value
print('Config test - Resource Group:', get_config_value('resource_group_name'))
print('Config test - Account:', get_config_value('account_name'))
"- Volumes per capacity pool: Varies by service level and region
- Minimum volume size: 100 GiB for regular volumes
- Maximum volume size: 100 TiB for regular volumes, 500 TiB for large volumes
- Snapshot retention: Up to 255 snapshots per volume
- Service levels affect throughput: Standard (16 MiB/s per TiB), Premium (64 MiB/s per TiB), Ultra (128 MiB/s per TiB)
- Cross-region replication introduces latency based on distance between regions
- Volume cloning is near-instantaneous but requires snapshots
- Use Azure CLI authentication for secure, credential-free access
- Regularly review and update Azure role assignments
- Implement proper network security groups and access controls
- Enable encryption at rest and in transit where required
- Leverage Azure Active Directory for centralized authentication
Report any issues via GitHub: https://github.com/NetApp/netapp-dataops-toolkit/issues.