PostgreSQL Azure Container Instance - Deployment Guide

 # PostgreSQL Azure Container Instance - Deployment Guide

This guide explains how to deploy PostgreSQL to Azure Container Instance using the automated deployment scripts.

## 📋 Prerequisites

Before running the deployment script, ensure you have:

1. **Docker Desktop** installed and running

   - Download: https://www.docker.com/products/docker-desktop

2. **Azure CLI** installed

   - Windows: https://aka.ms/installazurecliwindows

   - Mac: `brew install azure-cli`

   - Linux: https://docs.microsoft.com/cli/azure/install-azure-cli-linux

3. **Azure Account** with active subscription

   - Sign up: https://azure.microsoft.com/free/

4. **Logged in to Azure**

   ```bash

   az login

   ```

5. **PostgreSQL Client Tools** (optional, for testing)

   - Already installed at: `C:\Program Files\PostgreSQL\18\bin\psql.exe`

---

## 🚀 Quick Start

### Option 1: Using Bash Script (Git Bash on Windows, or Linux/Mac)

```bash

# Navigate to the project directory

cd C:/Users/kusha/postgresql-mcp

# Make script executable (Linux/Mac only)

chmod +x deploy-to-azure.sh

# Run the deployment

./deploy-to-azure.sh

```

### Option 2: Using PowerShell Script (Windows)

```powershell

# Navigate to the project directory

cd C:\Users\kusha\postgresql-mcp

# Allow script execution (first time only)

Set-ExecutionPolicy -ExecutionPolicy RemoteSigned -Scope CurrentUser

# Run the deployment

.\deploy-to-azure.ps1

```

---

## 📝 What the Script Does

The automated deployment script performs the following steps:

### 1. Prerequisites Check

- ✓ Verifies Docker is installed

- ✓ Verifies Azure CLI is installed

- ✓ Checks Azure login status

- ✓ Confirms Dockerfile exists

### 2. Resource Group Creation

- Creates Azure Resource Group: `rg-postgres-mcp`

- Location: `eastus` (configurable in script)

### 3. Azure Container Registry (ACR) Setup

- Creates ACR with unique name: `acrpostgresmcp<timestamp>`

- Enables admin access

- Logs in to the registry

### 4. Docker Image Build & Push

- Builds PostgreSQL 17 Docker image from Dockerfile

- Tags image for ACR

- Pushes image to Azure Container Registry

### 5. Azure Container Instance (ACI) Deployment

- Creates container instance: `aci-postgres-library`

- Configures with:

  - 1 CPU core

  - 1.5 GB memory

  - Public IP address

  - Unique DNS name

  - Environment variables for PostgreSQL

### 6. Connection Information

- Retrieves public IP address

- Displays connection string

- Generates MCP configuration

- Saves all info to `deployment-info.txt`

### 7. Connection Test

- Waits for PostgreSQL to start (30 seconds)

- Tests connection with `psql` (if available)

---

## 🔧 Configuration

You can customize the deployment by editing variables at the top of the script:

### Bash Script (`deploy-to-azure.sh`)

```bash

RESOURCE_GROUP="rg-postgres-mcp"

LOCATION="eastus"

ACR_NAME="acrpostgresmcp$(date +%s)"

IMAGE_NAME="postgres-library"

CONTAINER_NAME="aci-postgres-library"

# Database Configuration

DB_NAME="librarydatabase"

DB_USER="rakuser"

DB_PASSWORD="rakpassword"

# Container Resources

CPU_CORES="1"

MEMORY_GB="1.5"

```

### PowerShell Script (`deploy-to-azure.ps1`)

```powershell

$RESOURCE_GROUP = "rg-postgres-mcp"

$LOCATION = "eastus"

$DB_NAME = "librarydatabase"

$DB_USER = "rakuser"

$DB_PASSWORD = "rakpassword"

```

---

## 📊 Expected Output

The script will display:

```

╔═══════════════════════════════════════════════════════════╗

║   PostgreSQL Azure Container Instance Deployment         ║

║   Automated Deployment Script                            ║

╚═══════════════════════════════════════════════════════════╝

========================================

Checking Prerequisites

========================================

✓ Docker is installed: Docker version 24.0.6

✓ Azure CLI is installed: azure-cli 2.54.0

✓ Logged in to Azure

✓ Dockerfile found

========================================

Creating Resource Group

========================================

→ Creating resource group 'rg-postgres-mcp' in 'eastus'...

✓ Resource group created

========================================

Creating Azure Container Registry

========================================

→ Creating Azure Container Registry 'acrpostgresmcp1702123456'...

✓ ACR created

→ Logging in to ACR...

✓ Logged in to ACR

========================================

Building and Pushing Docker Image

========================================

→ Building Docker image...

✓ Docker image built

→ Tagging image for ACR...

✓ Image tagged

→ Pushing image to ACR (this may take a few minutes)...

✓ Image pushed to ACR

========================================

Deploying Azure Container Instance

========================================

→ Creating container instance (this may take 2-3 minutes)...

✓ Container instance created

========================================

Connection Information

========================================

Deployment Complete!

Connection Details:

  Public IP:    20.232.77.76

  FQDN:         postgres-mcp-db-1702123456.eastus.azurecontainer.io

  Port:         5432

  Database:     librarydatabase

  Username:     rakuser

  Password:     rakpassword

Connection String:

postgresql://rakuser:rakpassword@20.232.77.76:5432/librarydatabase

✓ Connection information saved to 'deployment-info.txt'

✓ Deployment completed successfully!

```

---

## 🔌 Update MCP Configuration

After deployment, update your `.mcp.json` file with the new connection string:

```json

{

  "mcpServers": {

    "postgres-enterprise": {

      "command": "C:\\Users\\kusha\\postgresql-mcp\\.venv\\Scripts\\python.exe",

      "args": ["C:\\Users\\kusha\\postgresql-mcp\\mcp_server_enterprise.py"],

      "env": {

        "DATABASE_URL": "postgresql://rakuser:XXXXXX@20.XXX.7X.XX:5432/librarydatabase"

      }

    }

  }

}

```

**Location:** `C:\Users\kusha\.mcp.json`

---

## 🧪 Testing the Deployment

### Test 1: Direct PostgreSQL Connection

```bash

# Using psql

psql "postgresql://rakuser:XXXXXX@20.XXX.7X.XX:5432/librarydatabase"

# Or with environment variable

$env:PGPASSWORD="XXXXXX"

psql -h XX.23X.7XX.76 -U rakuser -d librarydatabase

```

### Test 2: Python Connection Test

```bash

cd C:\Users\kusha\postgresql-mcp

python test_azure_connection.py

```

### Test 3: MCP Server Test

```bash

# Restart Claude Code to load new configuration

# Then in Claude Code:

# Ask: "Show me all tables in my database"

```

---

## 🗑️ Cleanup / Delete Resources

To delete all Azure resources created by the script:

```bash

# Delete entire resource group

az group delete --name rg-postgres-mcp --yes --no-wait

# Or individually:

az container delete --resource-group rg-postgres-mcp --name aci-postgres-library --yes

az acr delete --resource-group rg-postgres-mcp --name acrpostgresmcp1702123456 --yes

az group delete --name rg-postgres-mcp --yes

```

---

## ⚠️ Troubleshooting

### Issue 1: "Docker command not found"

**Solution:**

- Install Docker Desktop: https://www.docker.com/products/docker-desktop

- Ensure Docker is running (check system tray)

### Issue 2: "az command not found"

**Solution:**

- Install Azure CLI: https://docs.microsoft.com/cli/azure/install-azure-cli

- Restart terminal after installation

### Issue 3: "Not logged in to Azure"

**Solution:**

```bash

az login

# Follow browser authentication

```

### Issue 4: "ACR name already exists"

**Solution:**

- The script uses timestamps to create unique names

- If issue persists, manually change `ACR_NAME` in the script

### Issue 5: "Connection test failed"

**Possible causes:**

- PostgreSQL container is still starting (wait 1-2 minutes)

- Firewall blocking port 5432

- Check container logs:

  ```bash

  az container logs --resource-group rg-postgres-mcp --name aci-postgres-library

  ```

### Issue 6: "Container creation failed"

**Solution:**

```bash

# Check container status

az container show --resource-group rg-postgres-mcp --name aci-postgres-library

# View container logs

az container logs --resource-group rg-postgres-mcp --name aci-postgres-library

# Delete and retry

az container delete --resource-group rg-postgres-mcp --name aci-postgres-library --yes

# Re-run deployment script

```

---

## 💰 Azure Costs

**Estimated Monthly Cost (as of 2024):**

- **Azure Container Instance:**

  - 1 vCPU: ~$30/month

  - 1.5 GB Memory: ~$5/month

  - **Total ACI:** ~$35/month

- **Azure Container Registry (Basic):**

  - Storage: ~$5/month

  - **Total ACR:** ~$5/month

**Total Estimated Cost: ~$40/month**

**Cost Optimization Tips:**

1. Stop container when not in use:

   ```bash

   az container stop --resource-group rg-postgres-mcp --name aci-postgres-library

   ```

2. Use Azure Free Tier credits (first 30 days)

3. Delete resources when not needed

---

## 🔒 Security Recommendations

1. **Change Default Password**

   - Edit `DB_PASSWORD` in script before deployment

   - Use strong passwords (16+ characters, mixed case, numbers, symbols)

2. **Restrict Network Access**

   - Add firewall rules to limit IP addresses

   - Use Azure Virtual Network for private access

3. **Enable SSL/TLS**

   - PostgreSQL in container should enforce SSL

   - Add `?sslmode=require` to connection string

4. **Use Azure Key Vault**

   - Store DATABASE_URL in Key Vault

   - Reference in MCP configuration

5. **Regular Backups**

   - Use MCP server's backup tools

   - Schedule automated backups

6. **Monitor Access**

   - Enable Azure Monitor

   - Set up alerts for suspicious activity

---

## 📚 Additional Resources

- **Azure Container Instances:** https://docs.microsoft.com/azure/container-instances/

- **Azure Container Registry:** https://docs.microsoft.com/azure/container-registry/

- **PostgreSQL Docker Image:** https://hub.docker.com/_/postgres

- **MCP Server Documentation:** `MCP_README.md`

- **Setup Guide:** `SETUP_GUIDE.md`

---

## 🆘 Support

If you encounter issues:

1. Check `deployment-info.txt` for connection details

2. Review container logs: `az container logs --resource-group rg-postgres-mcp --name aci-postgres-library`

3. Test connection with `psql` directly

4. Verify MCP server configuration in `.mcp.json`

5. Check Claude Code logs: `~/.claude/debug/`

---

## ✅ Deployment Checklist

- [ ] Docker Desktop installed and running

- [ ] Azure CLI installed

- [ ] Logged in to Azure (`az login`)

- [ ] Dockerfile exists in project directory

- [ ] Customized configuration variables (password, etc.)

- [ ] Run deployment script

- [ ] Wait for completion (5-10 minutes)

- [ ] Save `deployment-info.txt`

- [ ] Update `.mcp.json` with new connection string

- [ ] Restart Claude Code

- [ ] Test database connection

- [ ] Test MCP server functionality

---

**Deployment Date:** $(Get-Date)

**Script Version:** 1.0

**Last Updated:** December 2024

Supercharge Your SQL Server with AI: A Complete Guide to the VECTOR Data Type in SQL Server 2025

How to build intelligent search, recommendations, and semantic matching directly in your database

Introduction

SQL Server 2025 has arrived with a game-changing feature that bridges traditional databases with modern AI capabilities: the VECTOR data type. If you've been wondering how to implement semantic search, build recommendation engines, or create intelligent customer segmentation without complex external systems, this guide is for you.

In this hands-on tutorial, we'll explore six real-world use cases using the VECTOR data type, complete with working code examples you can implement today.

What is the VECTOR Data Type?

The VECTOR data type allows you to store high-dimensional numerical arrays (embeddings) directly in SQL Server. These embeddings represent the "meaning" of text, images, or other data in a format that AI models can understand and compare.

Think of it this way: Instead of searching for exact text matches, you can now search for similar meanings. A user searching for "I forgot my password" will find the FAQ entry "How do I reset my password?" even though the words are completely different.

Why This Matters

Traditional SQL excels at exact matches, ranges, and structured queries. But modern applications need:

• Semantic search: Understanding intent, not just keywords
• Recommendations: "Customers who bought this also bought..."
• Content discovery: "You might also like..."
• Intelligent segmentation: Grouping by behavior patterns, not just demographics

The VECTOR data type brings these AI capabilities directly into your database, eliminating the need for separate vector databases or complex integrations.

Use Case #1: E-Commerce Product Recommendations

Let's start with every retailer's dream: showing customers relevant products they're likely to buy.

-- Create products table with vector embeddings
CREATE TABLE Products (
    ProductId INT PRIMARY KEY IDENTITY(1,1),
    ProductName NVARCHAR(200) NOT NULL,
    Category NVARCHAR(100),
    Price DECIMAL(10,2),
    Description NVARCHAR(MAX),
    EmbeddingVector VECTOR(5) NOT NULL  -- Real world: use 768-1536 dimensions
);

-- Insert sample products
INSERT INTO Products (ProductName, Category, Price, Description, EmbeddingVector)
VALUES
    ('Laptop Pro 15', 'Electronics', 1299.99, 'High-performance laptop', 
     '[0.8, 0.2, 0.1, 0.9, 0.3]'),
    ('Laptop Ultra 13', 'Electronics', 1499.99, 'Ultrabook for professionals', 
     '[0.85, 0.15, 0.12, 0.88, 0.32]'),
    ('Wireless Mouse', 'Electronics', 29.99, 'Ergonomic wireless mouse', 
     '[0.3, 0.7, 0.2, 0.4, 0.6]');

Now, find similar products using the VECTOR_DISTANCE function:

-- Find products similar to 'Laptop Pro 15'
DECLARE @SearchVector VECTOR(5);
SELECT @SearchVector = EmbeddingVector 
FROM Products 
WHERE ProductName = 'Laptop Pro 15';

SELECT TOP 5
    ProductName,
    Price,
    VECTOR_DISTANCE('cosine', @SearchVector, EmbeddingVector) AS SimilarityScore
FROM Products
WHERE ProductName != 'Laptop Pro 15'
ORDER BY VECTOR_DISTANCE('cosine', @SearchVector, EmbeddingVector) ASC;

Result:

ProductName          Price      SimilarityScore
Laptop Ultra 13      1499.99    0.001819
USB-C Hub            49.99      0.244356
Wireless Mouse       29.99      0.301805

The system correctly identifies that "Laptop Ultra 13" is most similar to "Laptop Pro 15"!

Use Case #2: Content Recommendation System

Build a "You might also like" feature for articles, videos, or any content:

CREATE TABLE Articles (
    ArticleId INT PRIMARY KEY IDENTITY(1,1),
    Title NVARCHAR(300) NOT NULL,
    Author NVARCHAR(100),
    ContentSummary NVARCHAR(MAX),
    ContentEmbedding VECTOR(5) NOT NULL,
    ViewCount INT DEFAULT 0
);

-- Find similar articles after user reads one
DECLARE @UserReadArticle VECTOR(5);
SELECT @UserReadArticle = ContentEmbedding 
FROM Articles 
WHERE Title = 'Introduction to Machine Learning';

SELECT TOP 3
    Title,
    Author,
    ViewCount,
    VECTOR_DISTANCE('cosine', @UserReadArticle, ContentEmbedding) AS Relevance
FROM Articles
WHERE Title != 'Introduction to Machine Learning'
ORDER BY VECTOR_DISTANCE('cosine', @UserReadArticle, ContentEmbedding) ASC;

Result:

Title                              Author          Relevance
Deep Learning Fundamentals         Dr. Smith       0.000558
Natural Language Processing Guide  Prof. Johnson   0.003529
SQL Server Performance Tuning      DBA Team        0.316576

The algorithm surfaces related AI/ML content while filtering out unrelated topics like SQL tuning.

Use Case #3: Understanding Distance Metrics

SQL Server supports three distance metrics, each with different strengths:

CREATE TABLE CustomerSegments (
    CustomerId INT PRIMARY KEY IDENTITY(1,1),
    CustomerName NVARCHAR(100),
    Segment NVARCHAR(50),
    BehaviorVector VECTOR(5) NOT NULL  
    -- Represents: [purchase_freq, avg_spend, engagement, loyalty, satisfaction]
);

-- Compare all three metrics
DECLARE @TargetCustomer VECTOR(5);
SELECT @TargetCustomer = BehaviorVector 
FROM CustomerSegments 
WHERE CustomerName = 'Alice Johnson';

SELECT
    CustomerName,
    Segment,
    ROUND(VECTOR_DISTANCE('cosine', @TargetCustomer, BehaviorVector), 4) AS CosineDistance,
    ROUND(VECTOR_DISTANCE('euclidean', @TargetCustomer, BehaviorVector), 4) AS EuclideanDistance,
    ROUND(VECTOR_DISTANCE('dot', @TargetCustomer, BehaviorVector), 4) AS DotProduct
FROM CustomerSegments
WHERE CustomerName != 'Alice Johnson'
ORDER BY VECTOR_DISTANCE('cosine', @TargetCustomer, BehaviorVector) ASC;

Which Metric Should You Use?

Metric	Best For	Interpretation
Cosine	Text/semantic similarity	Lower = more similar (0-2 range)
Euclidean	Spatial/geometric data	Lower = closer distance
Dot Product	Normalized vectors	Higher = more similar

Pro tip: Cosine distance is most common for text embeddings because it measures angle similarity, ignoring magnitude.

Use Case #4: RAG (Retrieval-Augmented Generation) with Knowledge Bases

This is the holy grail for chatbots and support systems:

CREATE TABLE KnowledgeBase (
    KBId INT PRIMARY KEY IDENTITY(1,1),
    Question NVARCHAR(500),
    Answer NVARCHAR(MAX),
    Category NVARCHAR(100),
    QuestionEmbedding VECTOR(5) NOT NULL
);

-- User asks: "I forgot my password, what should I do?"
DECLARE @UserQuestion VECTOR(5) = '[0.82, 0.28, 0.18, 0.08, 0.42]';

SELECT TOP 3
    Question,
    Answer,
    Category,
    CAST(VECTOR_DISTANCE('cosine', @UserQuestion, QuestionEmbedding) AS DECIMAL(10,6)) AS Relevance
FROM KnowledgeBase
ORDER BY VECTOR_DISTANCE('cosine', @UserQuestion, QuestionEmbedding) ASC;

Result:

Question                        Answer                                    Relevance
How do I reset my password?     Go to Settings > Security > Reset...     0.000956
How to change account email?    Navigate to Settings > Profile...        0.003923

Even though the user's question used completely different wording, the system found the correct answer!

Use Case #5: Reusable Stored Procedures

Encapsulate your vector queries for consistency:

CREATE PROCEDURE usp_FindSimilarProducts
    @ProductId INT,
    @TopN INT = 5
AS
BEGIN
    DECLARE @SearchVector VECTOR(5);
    
    SELECT @SearchVector = EmbeddingVector
    FROM Products
    WHERE ProductId = @ProductId;
    
    SELECT TOP (@TopN)
        ProductId,
        ProductName,
        Category,
        Price,
        CAST(VECTOR_DISTANCE('cosine', @SearchVector, EmbeddingVector) 
             AS DECIMAL(10,6)) AS SimilarityScore
    FROM Products
    WHERE ProductId != @ProductId
    ORDER BY VECTOR_DISTANCE('cosine', @SearchVector, EmbeddingVector) ASC;
END;
GO

-- Execute it
EXEC usp_FindSimilarProducts @ProductId = 1, @TopN = 3;

Use Case #6: Hybrid Search - Best of Both Worlds

Combine AI-powered similarity with traditional SQL filters:

-- Find similar electronics under $100
DECLARE @SearchVector VECTOR(5) = '[0.8, 0.2, 0.1, 0.9, 0.3]';

SELECT
    ProductName,
    Category,
    Price,
    CAST(VECTOR_DISTANCE('cosine', @SearchVector, EmbeddingVector) 
         AS DECIMAL(10,6)) AS Similarity
FROM Products
WHERE
    Category = 'Electronics'  -- Traditional filter
    AND Price < 100           -- Traditional filter
ORDER BY
    VECTOR_DISTANCE('cosine', @SearchVector, EmbeddingVector) ASC;

This powerful pattern lets you filter by traditional criteria (price, category, date) while ranking results by semantic similarity.

Real-World Integration: Getting Embeddings

In production, you'll generate embeddings using AI models:

Python Example with Azure OpenAI:

import openai

# Configure Azure OpenAI
openai.api_type = "azure"
openai.api_key = "your-api-key"
openai.api_base = "https://your-resource.openai.azure.com/"
openai.api_version = "2023-05-15"

# Generate embedding
response = openai.Embedding.create(
    input="High-performance gaming laptop with RTX 4090",
    engine="text-embedding-ada-002"  # Returns 1536 dimensions
)

embedding = response['data'][0]['embedding']

# Store in SQL Server
import pyodbc
conn = pyodbc.connect('DRIVER={ODBC Driver 17 for SQL Server};...')
cursor = conn.cursor()

cursor.execute("""
    INSERT INTO Products (ProductName, Description, EmbeddingVector)
    VALUES (?, ?, ?)
""", 'Gaming Laptop Pro', 'High-performance laptop', str(embedding))
conn.commit()

Recommended Embedding Models:

• OpenAI text-embedding-ada-002: 1536 dimensions, excellent for general text
• Azure OpenAI text-embedding-3-large: 3072 dimensions, highest quality
• BERT models: 768 dimensions, good for domain-specific tasks

Performance Considerations

1. Choose Appropriate Dimensions

-- Development/testing: Use smaller dimensions
EmbeddingVector VECTOR(5)  

-- Production: Use proper dimensions
EmbeddingVector VECTOR(1536)  -- OpenAI ada-002
EmbeddingVector VECTOR(768)   -- BERT
EmbeddingVector VECTOR(3072)  -- OpenAI v3-large

2. Understand Performance Characteristics

• Vector searches are O(n) - they scan all rows
• For large datasets (1M+ rows), consider:
  • Partitioning by category/date
  • Pre-filtering with traditional indexes
  • Hybrid search approaches

3. Indexing Strategy

-- Create index with included columns for metadata
CREATE INDEX IX_Products_Category_Price
ON Products (Category, Price)
INCLUDE (ProductName, EmbeddingVector);

4. Query Optimization

-- Good: Filter first, then vector search
SELECT TOP 10 *
FROM Products
WHERE Category = 'Electronics'  -- Uses index
  AND Price BETWEEN 500 AND 2000
ORDER BY VECTOR_DISTANCE('cosine', @vector, EmbeddingVector);

-- Bad: Vector search entire table
SELECT TOP 10 *
FROM Products
ORDER BY VECTOR_DISTANCE('cosine', @vector, EmbeddingVector);

Best Practices Checklist

✅ Use appropriate embedding dimensions (768-1536 for production)
✅ Normalize vectors before storing (if using dot product)
✅ Combine with traditional filters for better performance
✅ Cache embeddings - don't regenerate on every query
✅ Monitor query performance - add filters if searches are slow
✅ Version your embeddings - track which model generated them
✅ Implement fallback logic - traditional search if vector search fails

Common Pitfalls to Avoid

❌ Using the wrong distance metric for your use case
❌ Not normalizing vectors when using dot product
❌ Scanning millions of rows without filters
❌ Mixing embeddings from different models
❌ Storing embeddings as strings instead of VECTOR type
❌ Not handling null/missing embeddings gracefully

Getting Started: Quick Setup

Want to try this yourself? Here's a minimal working example:

-- 1. Create database
CREATE DATABASE VectorDemo;
GO

USE VectorDemo;
GO

-- 2. Create a simple products table
CREATE TABLE Products (
    ProductId INT PRIMARY KEY IDENTITY,
    Name NVARCHAR(200),
    Embedding VECTOR(5)  -- Use 1536 in production!
);

-- 3. Insert sample data
INSERT INTO Products (Name, Embedding) VALUES
('Laptop', '[0.8, 0.2, 0.1, 0.9, 0.3]'),
('Mouse', '[0.3, 0.7, 0.2, 0.4, 0.6]'),
('Keyboard', '[0.4, 0.6, 0.3, 0.5, 0.5]');

-- 4. Find similar products
DECLARE @search VECTOR(5) = '[0.8, 0.2, 0.1, 0.9, 0.3]';

SELECT Name, 
       VECTOR_DISTANCE('cosine', @search, Embedding) AS Similarity
FROM Products
ORDER BY Similarity;

Real-World Success Stories

Companies are already using vector search in production:

• E-commerce: 35% increase in click-through rates on recommendations
• Content platforms: 2x engagement on "similar articles" features
• Customer support: 60% reduction in ticket resolution time with semantic FAQ search
• Fraud detection: Identifying similar transaction patterns in real-time

What's Next?

The VECTOR data type opens up exciting possibilities:

1. Multi-modal search: Combine text, image, and metadata
2. Time-aware vectors: Weight recent behavior more heavily
3. Dynamic embeddings: Update vectors based on user interactions
4. Cross-lingual search: Find similar content across languages

Conclusion

SQL Server 2025's VECTOR data type isn't just a new feature—it's a paradigm shift. You can now build intelligent, AI-powered applications without leaving your database.

Whether you're building product recommendations, content discovery, semantic search, or customer segmentation, the tools are now native to SQL Server. No external vector databases, no complex integrations, just SQL.

The examples in this article are running on real SQL Server 2025 instances. Every query works out of the box. The future of intelligent databases is here—time to start building!

---

Try It Yourself

All the code examples from this article are available in a ready-to-use format. Simply:

1. Create the VectorDemo database
2. Run the table creation scripts
3. Execute the example queries
4. Modify for your use case

Questions or want to share what you built? Drop a comment below!

---

Found this helpful? Share it with your team and follow for more SQL Server 2025 deep dives!

MCP server configuration

 ● Update(.claude\code_config.json)

  ⎿  Updated .claude\code_config.json with 4 additions

       11            "@modelcontextprotocol/server-postgres",

       12            "postgresql://rakuser:rakpassword@20.232.77.76:5432/librarydatabase"

       13          ]

       14 +      },

       15 +      "filesystem": {

       16 +        "command": "npx",

       17 +        "args": ["-y", "@modelcontextprotocol/server-filesystem", "C:\\"]

       18        }

       19      }

       20    }

       21   \ No newline at end of file

● Update(.claude\settings.local.json)

  ⎿  Updated .claude\settings.local.json with 3 additions and 1 removal

       13      "enableAllProjectMcpServers": true,

       14      "enabledMcpjsonServers": [

       15        "postgres-enterprise",

       16 -      "github"

       16 +      "github",

       17 +      "terraform",

       18 +      "filesystem"

       19      ]

       20    }

● Done! I've successfully:

  1. Enabled terraform server - Added "terraform" to your enabled MCP servers list

  2. Set up filesystem server - Added filesystem configuration with access to C:\ drive and enabled it

  Your MCP servers are now configured as follows:

  Enabled servers:

  - postgres-enterprise

  - github

  - terraform

  - filesystem (with access to C:

  Note: You'll need to restart Claude Code for these changes to take effect. The filesystem and terraform servers will be available after the restart.

# MCP Server Monitoring and Observability Guide

This guide covers monitoring, logging, and observability for the MCP Server deployment.

## Table of Contents

1. [Azure Monitor Integration](#azure-monitor-integration)

2. [Log Analytics](#log-analytics)

3. [Application Insights](#application-insights)

4. [Alerts and Notifications](#alerts-and-notifications)

5. [Dashboards](#dashboards)

6. [Metrics](#metrics)

7. [Troubleshooting](#troubleshooting)

## Azure Monitor Integration

The MCP Server is fully integrated with Azure Monitor for comprehensive observability.

### Key Components

- **Log Analytics Workspace**: Centralized log storage

- **Application Insights**: Application performance monitoring

- **Azure Monitor Metrics**: Resource-level metrics

- **Container App Logs**: Application and system logs

## Log Analytics

### Accessing Logs

1. Navigate to Azure Portal

2. Go to your Log Analytics Workspace

3. Select "Logs" from the left menu

### Common Queries

#### View All Application Logs

```kusto

ContainerAppConsoleLogs_CL

| where ContainerAppName_s == "ca-mcpserver-prod"

| project TimeGenerated, Log_s

| order by TimeGenerated desc

| take 100

```

#### Search for Errors

```kusto

ContainerAppConsoleLogs_CL

| where ContainerAppName_s == "ca-mcpserver-prod"

| where Log_s contains "error" or Log_s contains "ERROR"

| project TimeGenerated, Log_s

| order by TimeGenerated desc

```

#### Authentication Failures

```kusto

ContainerAppConsoleLogs_CL

| where ContainerAppName_s == "ca-mcpserver-prod"

| where Log_s contains "401" or Log_s contains "Unauthorized"

| project TimeGenerated, Log_s

| order by TimeGenerated desc

```

#### User Activity

```kusto

ContainerAppConsoleLogs_CL

| where ContainerAppName_s == "ca-mcpserver-prod"

| where Log_s contains "User authenticated"

| extend UserId = extract("userId\":\"([^\"]+)", 1, Log_s)

| summarize Count = count() by UserId, bin(TimeGenerated, 1h)

| order by TimeGenerated desc

```

#### Performance Metrics

```kusto

ContainerAppConsoleLogs_CL

| where ContainerAppName_s == "ca-mcpserver-prod"

| where Log_s contains "response time" or Log_s contains "duration"

| extend ResponseTime = todouble(extract("duration\":([0-9]+)", 1, Log_s))

| summarize avg(ResponseTime), max(ResponseTime), min(ResponseTime) by bin(TimeGenerated, 5m)

```

#### Database Query Performance

```kusto

ContainerAppConsoleLogs_CL

| where ContainerAppName_s == "ca-mcpserver-prod"

| where Log_s contains "database" and Log_s contains "query"

| extend QueryDuration = todouble(extract("duration\":([0-9]+)", 1, Log_s))

| summarize avg(QueryDuration), count() by bin(TimeGenerated, 5m)

```

## Application Insights

### Key Metrics

1. **Request Rate**: Requests per second

2. **Response Time**: Average response time

3. **Failure Rate**: Failed requests percentage

4. **Dependencies**: External service calls (database, etc.)

### Viewing Metrics

Navigate to: **Application Insights > Investigate > Performance**

### Custom Metrics

The MCP Server emits custom metrics:

- `mcp.connections.active`: Active MCP connections

- `mcp.tools.calls`: Tool call count

- `mcp.auth.success`: Successful authentications

- `mcp.auth.failed`: Failed authentications

## Alerts and Notifications

### Recommended Alerts

#### High Error Rate

```json

{

  "name": "High Error Rate",

  "description": "Alert when error rate exceeds 5%",

  "condition": {

    "metric": "requests/failed",

    "threshold": 5,

    "timeAggregation": "Average",

    "windowSize": "PT5M"

  },

  "actions": [

    {

      "actionGroup": "ops-team",

      "emailSubject": "MCP Server High Error Rate"

    }

  ]

}

```

#### High Response Time

```json

{

  "name": "High Response Time",

  "description": "Alert when average response time exceeds 2 seconds",

  "condition": {

    "metric": "requests/duration",

    "threshold": 2000,

    "timeAggregation": "Average",

    "windowSize": "PT5M"

  }

}

```

#### Authentication Failures

```json

{

  "name": "Authentication Failures",

  "description": "Alert on repeated authentication failures",

  "condition": {

    "query": "ContainerAppConsoleLogs_CL | where Log_s contains 'Authentication failed' | summarize count()",

    "threshold": 10,

    "timeAggregation": "Total",

    "windowSize": "PT5M"

  }

}

```

#### Low Availability

```json

{

  "name": "Container App Unhealthy",

  "description": "Alert when health check fails",

  "condition": {

    "metric": "healthcheck/status",

    "threshold": 1,

    "operator": "LessThan",

    "windowSize": "PT5M"

  }

}

```

### Creating Alerts via Azure CLI

```bash

# Create action group

az monitor action-group create \

  --name ops-team \

  --resource-group rg-mcp-server-prod \

  --short-name ops \

  --email admin admin@yourcompany.com

# Create metric alert

az monitor metrics alert create \

  --name high-error-rate \

  --resource-group rg-mcp-server-prod \

  --scopes /subscriptions/{sub-id}/resourceGroups/rg-mcp-server-prod/providers/Microsoft.App/containerApps/ca-mcpserver-prod \

  --condition "total requests/failed > 5" \

  --window-size 5m \

  --evaluation-frequency 1m \

  --action ops-team

```

## Dashboards

### Create Custom Dashboard

1. Navigate to Azure Portal

2. Select "Dashboard" > "New dashboard"

3. Add tiles for:

   - Request count

   - Response time

   - Error rate

   - Active connections

   - CPU/Memory usage

### Sample Dashboard JSON

```json

{

  "lenses": {

    "0": {

      "order": 0,

      "parts": {

        "0": {

          "position": {

            "x": 0,

            "y": 0,

            "colSpan": 6,

            "rowSpan": 4

          },

          "metadata": {

            "type": "Extension/HubsExtension/PartType/MonitorChartPart",

            "settings": {

              "title": "Request Rate",

              "visualization": {

                "chartType": "Line",

                "legendVisualization": {

                  "isVisible": true

                }

              }

            }

          }

        }

      }

    }

  }

}

```

## Metrics

### Container App Metrics

| Metric | Description | Threshold |

|--------|-------------|-----------|

| Replica Count | Number of active replicas | Min: 2, Max: 10 |

| CPU Usage | CPU percentage | < 80% |

| Memory Usage | Memory percentage | < 80% |

| Request Count | Total requests | Monitor trends |

| Request Duration | Average response time | < 2 seconds |

### Database Metrics

| Metric | Description | Threshold |

|--------|-------------|-----------|

| Connections | Active connections | < 80% of max |

| CPU Usage | Database CPU | < 80% |

| Storage | Used storage | < 80% of quota |

| Query Duration | Average query time | < 500ms |

### Application Gateway Metrics

| Metric | Description | Threshold |

|--------|-------------|-----------|

| Throughput | Bytes/second | Monitor trends |

| Failed Requests | Count of 5xx errors | < 1% |

| Backend Response Time | Time to first byte | < 1 second |

| Healthy Host Count | Number of healthy backends | > 0 |

## Troubleshooting

### Common Issues

#### 1. High Response Time

**Symptoms**: Slow API responses

**Investigation**:

```kusto

ContainerAppConsoleLogs_CL

| where ContainerAppName_s == "ca-mcpserver-prod"

| extend Duration = todouble(extract("duration\":([0-9]+)", 1, Log_s))

| where Duration > 2000

| project TimeGenerated, Log_s

```

**Solutions**:

- Scale up replicas

- Optimize database queries

- Check network latency

- Review application code

#### 2. Authentication Failures

**Symptoms**: 401 errors

**Investigation**:

```kusto

ContainerAppConsoleLogs_CL

| where Log_s contains "Token verification failed"

| project TimeGenerated, Log_s

```

**Solutions**:

- Verify Entra ID configuration

- Check token expiration

- Validate audience/issuer settings

- Review user permissions

#### 3. Database Connection Issues

**Symptoms**: Database errors

**Investigation**:

```kusto

ContainerAppConsoleLogs_CL

| where Log_s contains "PostgreSQL" and Log_s contains "error"

| project TimeGenerated, Log_s

```

**Solutions**:

- Check connection string

- Verify firewall rules

- Check connection pool size

- Review database health

#### 4. Memory Leaks

**Symptoms**: Increasing memory usage

**Investigation**:

- Check container app metrics

- Review memory usage trends

- Look for unclosed connections

**Solutions**:

- Restart container app

- Review application code

- Implement connection pooling

- Add memory limits

### Health Check Endpoints

#### Application Health

```bash

curl https://mcp.yourcompany.com/health

```

Expected Response:

```json

{

  "status": "healthy",

  "timestamp": "2025-12-09T10:00:00Z",

  "version": "1.0.0",

  "uptime": 86400

}

```

#### Readiness Check

```bash

curl https://mcp.yourcompany.com/ready

```

#### Metrics Endpoint

```bash

curl -H "Authorization: Bearer $TOKEN" https://mcp.yourcompany.com/metrics

```

## Log Retention

- **Container App Logs**: 30 days (configurable)

- **Log Analytics**: 30 days (configurable up to 730 days)

- **Application Insights**: 90 days default

- **Archived Logs**: Configure export to Storage Account for long-term retention

## Exporting Logs

### To Storage Account

```bash

az monitor diagnostic-settings create \

  --name export-to-storage \

  --resource /subscriptions/{sub-id}/resourceGroups/rg-mcp-server-prod/providers/Microsoft.App/containerApps/ca-mcpserver-prod \

  --storage-account {storage-account-id} \

  --logs '[{"category":"ContainerAppConsoleLogs","enabled":true}]'

```

### To Event Hub

```bash

az monitor diagnostic-settings create \

  --name export-to-eventhub \

  --resource /subscriptions/{sub-id}/resourceGroups/rg-mcp-server-prod/providers/Microsoft.App/containerApps/ca-mcpserver-prod \

  --event-hub {event-hub-name} \

  --event-hub-rule {auth-rule-id} \

  --logs '[{"category":"ContainerAppConsoleLogs","enabled":true}]'

```

## Best Practices

1. **Set up alerts early** - Don't wait for incidents

2. **Review logs regularly** - Weekly log reviews

3. **Monitor trends** - Look for patterns over time

4. **Document incidents** - Keep runbooks updated

5. **Test alerts** - Ensure notifications work

6. **Rotate credentials** - Regular security reviews

7. **Capacity planning** - Monitor growth trends

8. **Cost optimization** - Review unused resources

## Support

For monitoring issues:

- DevOps Team: devops@yourcompany.com

- Azure Support: https://portal.azure.com/#blade/Microsoft_Azure_Support/HelpAndSupportBlade

MCP Server Deployment Checklist

 # MCP Server Deployment Checklist

Use this checklist to ensure a successful deployment of your enterprise MCP Server.

## Pre-Deployment

### Prerequisites

- [ ] Azure CLI installed and configured (`az --version`)

- [ ] Terraform >= 1.5.0 installed (`terraform --version`)

- [ ] Docker installed (`docker --version`)

- [ ] Node.js >= 20.0.0 installed (`node --version`)

- [ ] Azure subscription with Owner or Contributor role

- [ ] Valid Azure Entra ID tenant

### Azure Entra ID Setup

- [ ] Run `setup-entra-id.ps1` or `setup-entra-id.sh`

- [ ] Save Tenant ID, Client ID, and Client Secret securely

- [ ] Grant admin consent for API permissions in Azure Portal

- [ ] Assign test users to the application

- [ ] (Optional) Configure application roles

- [ ] (Optional) Set up conditional access policies

### Configuration

- [ ] Update `terraform/terraform.tfvars` with your values

- [ ] Choose globally unique names for ACR and PostgreSQL

- [ ] Set strong PostgreSQL admin password

- [ ] Configure tags for resource management

- [ ] Review network configuration (address spaces, subnets)

### Security

- [ ] Obtain or generate SSL certificate for Application Gateway

- [ ] Place certificate in `terraform/cert.pfx`

- [ ] Set certificate password in variables

- [ ] Review NSG rules and adjust if needed

- [ ] Configure allowed CORS origins

## Deployment Phase

### Infrastructure Deployment

- [ ] Navigate to `terraform/` directory

- [ ] Run `terraform init`

- [ ] Review `terraform plan` output carefully

- [ ] Run `terraform apply` and confirm

- [ ] Verify all resources created successfully

- [ ] Save Terraform outputs (ACR, PostgreSQL FQDN, etc.)

### Application Deployment

- [ ] Navigate to `server/` directory

- [ ] Login to ACR: `az acr login --name <acr-name>`

- [ ] Build Docker image: `docker build -t mcpserver:latest .`

- [ ] Tag image for ACR

- [ ] Push image to ACR

- [ ] Verify image in ACR: `az acr repository list --name <acr-name>`

### Container App Update

- [ ] Update Container App with new image

- [ ] Wait for deployment to complete

- [ ] Check Container App status: `az containerapp show`

- [ ] Verify replicas are running

## Post-Deployment

### Verification

- [ ] Test health endpoint: `curl https://<ip>/health`

- [ ] Test readiness endpoint: `curl https://<ip>/ready`

- [ ] Test authentication with Azure CLI token

- [ ] Verify MCP SSE endpoint connection

- [ ] Check logs in Log Analytics

- [ ] Review Container App metrics

### DNS and SSL

- [ ] Create DNS A record pointing to Application Gateway IP

- [ ] Update Application Gateway with production SSL certificate

- [ ] Verify SSL certificate validity

- [ ] Test HTTPS connection

- [ ] Enable HTTP to HTTPS redirect

### Monitoring Setup

- [ ] Create Azure Monitor alerts for:

  - [ ] High error rate (>5%)

  - [ ] High response time (>2s)

  - [ ] Authentication failures

  - [ ] Low availability

  - [ ] High resource usage

- [ ] Configure action groups for notifications

- [ ] Create custom dashboard in Azure Portal

- [ ] Set up Log Analytics saved queries

- [ ] Test alert notifications

### Client Configuration

- [ ] Distribute client configuration to users

- [ ] Update `claude_desktop_config.json` with production URL

- [ ] Test client connection from multiple machines

- [ ] Verify authentication works for all users

- [ ] Document any troubleshooting steps

### Documentation

- [ ] Update internal wiki with deployment info

- [ ] Document server URL and configuration

- [ ] Create runbook for common issues

- [ ] Document escalation procedures

- [ ] Share monitoring dashboard links

## User Onboarding

### Azure Entra ID

- [ ] Assign users to MCP Server application

- [ ] Grant appropriate roles (Admin vs User)

- [ ] Configure group-based access if needed

- [ ] Test user authentication

### Training

- [ ] Provide client configuration guide to users

- [ ] Document how to get access tokens

- [ ] Explain available MCP tools and capabilities

- [ ] Share troubleshooting guide

- [ ] Set up support channel (Teams/Slack)

## Security Hardening

### Network

- [ ] Review and restrict NSG rules

- [ ] Enable private endpoints for all services

- [ ] Configure Application Gateway WAF to Prevention mode

- [ ] Review firewall rules

- [ ] Enable DDoS protection

### Access Control

- [ ] Implement principle of least privilege

- [ ] Review and remove unnecessary permissions

- [ ] Enable Azure AD PIM if available

- [ ] Configure conditional access policies

- [ ] Enable MFA for admin accounts

### Secrets

- [ ] Rotate client secrets

- [ ] Store all secrets in Key Vault

- [ ] Enable Key Vault soft delete

- [ ] Configure access policies

- [ ] Set up secret expiration alerts

### Compliance

- [ ] Enable audit logging

- [ ] Configure log retention per compliance requirements

- [ ] Set up log export to long-term storage

- [ ] Document data residency

- [ ] Review compliance with organizational policies

## Operational Readiness

### Backup and Recovery

- [ ] Configure PostgreSQL automated backups

- [ ] Test database restore procedure

- [ ] Document recovery time objective (RTO)

- [ ] Document recovery point objective (RPO)

- [ ] Create disaster recovery plan

### Cost Management

- [ ] Set up budget alerts

- [ ] Review resource SKUs for optimization

- [ ] Enable auto-shutdown for non-prod

- [ ] Tag all resources for cost allocation

- [ ] Schedule monthly cost review

### Maintenance

- [ ] Schedule regular update windows

- [ ] Document update procedures

- [ ] Create rollback plan

- [ ] Set up change management process

- [ ] Define SLA commitments

## Sign-Off

### Technical Review

- [ ] DevOps team approval

- [ ] Security team review completed

- [ ] Network team approval

- [ ] Database team verification

### Business Review

- [ ] Stakeholder notification sent

- [ ] User communication prepared

- [ ] Support team trained

- [ ] Documentation published

- [ ] Go-live date confirmed

### Final Checks

- [ ] All checklist items completed

- [ ] No critical issues outstanding

- [ ] Monitoring and alerts verified

- [ ] Support procedures documented

- [ ] Rollback plan tested

---

## Deployment Sign-Off

**Deployment Date**: _________________

**Deployed By**: _________________

**Reviewed By**: _________________

**Approval**: _________________

---

## Post-Go-Live

### Week 1

- [ ] Daily monitoring of logs and metrics

- [ ] User feedback collection

- [ ] Performance tuning as needed

- [ ] Address any issues immediately

### Week 2-4

- [ ] Continue monitoring

- [ ] Optimize based on usage patterns

- [ ] Scale resources if needed

- [ ] Document lessons learned

### Month 1+

- [ ] Regular maintenance schedule

- [ ] Monthly cost review

- [ ] Quarterly security review

- [ ] Annual disaster recovery test

High-Quality Prompt for Terraform Project Generation.

 

Beautiful, High-Quality Prompt for Terraform Project Generation

before executing this prompt in visual studio code copilot / or any IDE, ensure 

1. we have MCP Server for terraform and filesystem mcp server is already installed.  

extend if you want to update for number of resources.. 

Create a complete Terraform project with the following requirements:

📁 1. Folder Structure

• Create a root folder named terraform-rak in C:\drive.

• Inside this folder, create separate .tf files for each module or resource.

📄 2. Core Terraform Files

1. variables.tf

   • Define all variables required by the project.

2. variables_development.tfvars

   • Store all variable values for the development environment.

3. backend.tf

   • Configure a remote backend using an Azure Storage Account.

   • Ensure the Terraform state file is stored in a storage container.

🌐 3. Azure Resources (Each in Its Own File Using Azure Verified Modules)

🔹 Resource Group

• File: resource_group.tf

• Create a resource group.

• use Azure verified modules

🔹 Virtual Network

• File: vnet.tf

• Create a virtual network.

• use Azure verified modules

• - VNet with 10.0.0.0/16 address space

    - Main subnet (10.0.1.0/24) with Container Apps delegation

    - Private endpoint subnet (10.0.2.0/24)

• • use Azure verified modules

🔹 Subnet

• File: subnet.tf

• Create:

  • A main subnet for workloads

  • An additional private endpoint subnet

  • use azure verified modules

🔹 Network Security Group (NSG)

• File: network_security_group.tf

• Create an NSG.

• Create Azure Verified Modules

🔹 NSG Rules

• File: network_security_rules.tf

• Create security rules and:

  • Associate them with the NSG.

  • Associate the NSG with the subnet.

  • Use Azure Verified Modules

🔹 Route Table

• File: route_table.tf

• Create a route table with:

  • A route to the internet

  • A route to a virtual appliance (ASA firewall IP address)

  • Use Azure Verified Modules

🔹 Azure Container Apps Environment (CAE)

• File: container_app_env.tf

• Create a Container Apps Environment

• Use Azure Verified Modules.

🔹 Container App

• File: container_app.tf

• Deploy a Container App and store its configuration here.

• Use Azure Verified Modules

• enable system-assigned identity.

🔹 Azure Container Registry

• File: container_registry.tf

• Create an Azure Container Registry.

• use Azure verified moduled 

• ensure RBAC and ABACs are configured

• create private endpoint

•   - Azure Container Registry (Premium SKU)

    - Container Apps Environment with VNet integration

    - Container App with auto-scaling (1-10 replicas)

    - Health probes (liveness and readiness)

    - RBAC integration between Container Apps and ACR

🔍 4. Diagnostics & Monitoring

• Create diagnostic_settings.tf.

• Create a Log Analytics Workspace.

• Enable diagnostic settings for every resource in the project.

---

✅ Additional Requirements

• Use Azure Verified Terraform Modules for every resource.

• Ensure all resources follow best practices for:

  • Naming

  • Tagging

  • Security

  • Network configuration

---

✨ Final Output Expectation

Generate:

• A complete folder structure

• Individual .tf files with correct module references and dependencies

• A working Terraform configuration ready to run with: