proxmox-mcp
by BenjaminDuthe
Overview
MCP server enabling Claude to manage Proxmox VE infrastructure for VMs, LXC containers, snapshots, storage, and cluster resources.
Installation
docker run --rm -it --env-file .env -e PROXMOX_SSH_KEY_PATH=/home/mcp/.ssh/id_proxmox -v ~/.ssh/id_proxmox:/home/mcp/.ssh/id_proxmox:ro proxmox-mcpEnvironment Variables
- PROXMOX_HOST
- PROXMOX_TOKEN_ID
- PROXMOX_TOKEN_SECRET
- PROXMOX_USER
- PROXMOX_PASSWORD
- PROXMOX_PORT
- PROXMOX_VERIFY_SSL
- PROXMOX_TIMEOUT
- PROXMOX_SSH_KEY_PATH
- PROXMOX_SSH_USER
- PROXMOX_SSH_PASSWORD
- PROXMOX_SSH_PORT
- PROXMOX_SSH_TIMEOUT
Security Notes
The server uses `httpx` and `asyncssh` to connect to Proxmox. By default, `PROXMOX_VERIFY_SSL` is set to `false` and SSH `known_hosts` is `None`, which disables certificate and host key verification. While convenient for self-signed Proxmox setups, this creates a man-in-the-middle vulnerability if not addressed with proper certificates. The `vm_file_write` tool has a list of `PROTECTED_PATHS` (e.g., `/etc/shadow`, `/etc/passwd`) preventing writes, but this can be bypassed with `force=True`. Granting an AI access to SSH tools (like `ssh_execute` as root) or file writing inside VMs via guest agent (even with `force=True`) carries significant risk and requires careful permission management of the API token.
Similar Servers
mcphub
An orchestration hub that aggregates, manages, and routes Model Context Protocol (MCP) servers and their tools, providing a centralized interface, user management, OAuth 2.0 authorization server capabilities, and AI-powered tool discovery and routing.
mcpm.sh
MCPM is a command-line tool for managing Model Context Protocol (MCP) servers, enabling discovery, installation, execution, sharing, and integration with various MCP clients.
mcp-k8s
Facilitates natural language interaction and automation for Kubernetes cluster management and Helm operations via the Model Control Protocol (MCP).
linux-mcp-server
This server provides read-only Linux system administration, diagnostics, and troubleshooting capabilities for AI agents using the Model Context Protocol (MCP).