How-To Guides

Connect PostgreSQL to clariBI: Complete Walkthrough

D Darek Černý
November 23, 2025 7 min read
A step-by-step walkthrough for connecting a PostgreSQL database to clariBI. Covers connection setup, network configuration, read-only user creation, testing, and troubleshooting common issues.

PostgreSQL is one of the most common databases used by SaaS companies, startups, and growing businesses. Connecting it to clariBI takes about 10 minutes and gives you instant access to query your data through natural language, build dashboards, and set up automated reports. This walkthrough covers every step, including the recommended approach of creating a dedicated read-only database user for security.

Before You Start

You will need the following information about your PostgreSQL database:

  • Host: The server address (e.g., db.yourcompany.com or an IP address like 10.0.1.50)
  • Port: Usually 5432 (the PostgreSQL default)
  • Database name: The specific database you want to connect (e.g., production, analytics)
  • Username and password: Credentials with read access to the tables you want to analyze

If your database is hosted on a cloud provider (AWS RDS, Google Cloud SQL, Azure Database, DigitalOcean Managed Databases), you will also need to configure network access to allow connections from clariBI. We cover this below.

Step 1: Create a Read-Only Database User (Recommended)

We strongly recommend creating a dedicated read-only user for clariBI rather than using your application's database credentials. This follows the principle of least privilege — clariBI only needs to read data, not modify it.

Connect to your PostgreSQL database with an admin user and run the following commands:

-- Create the read-only user
CREATE USER claribi_reader WITH PASSWORD 'your_secure_password_here';

-- Grant connect privilege on the target database
GRANT CONNECT ON DATABASE your_database_name TO claribi_reader;

-- Grant usage on the public schema (or whichever schema your tables use)
GRANT USAGE ON SCHEMA public TO claribi_reader;

-- Grant SELECT on all existing tables
GRANT SELECT ON ALL TABLES IN SCHEMA public TO claribi_reader;

-- Grant SELECT on future tables (so new tables are automatically accessible)
ALTER DEFAULT PRIVILEGES IN SCHEMA public GRANT SELECT ON TABLES TO claribi_reader;

Replace your_database_name with your actual database name and set a strong password. This user can read all tables but cannot insert, update, delete, or modify the schema in any way.

clariBI data source connection form with PostgreSQL fields for host, port, database, username, and password

Step 2: Configure Network Access

Your database needs to accept connections from clariBI's servers. The exact steps depend on where your database is hosted:

AWS RDS

  1. Open the AWS Console and navigate to your RDS instance
  2. Click on the security group associated with your instance
  3. Add an inbound rule: Type = PostgreSQL, Port = 5432, Source = clariBI's IP range (shown in the connection dialog in clariBI)
  4. Save the security group changes

Google Cloud SQL

  1. Open the Cloud SQL instance in the Google Cloud Console
  2. Go to Connections > Networking
  3. Add clariBI's IP address to the Authorized Networks list
  4. Save and wait for the changes to propagate (usually under a minute)

DigitalOcean Managed Databases

  1. Open your database cluster in the DigitalOcean control panel
  2. Go to Settings > Trusted Sources
  3. Add clariBI's IP address
  4. Save the configuration

Self-Hosted PostgreSQL

If you manage your own PostgreSQL server, you need to:

  1. Edit pg_hba.conf to allow connections from clariBI's IP address with MD5 or scram-sha-256 authentication
  2. Ensure postgresql.conf has listen_addresses set to allow external connections (not just localhost)
  3. Open port 5432 in your firewall
  4. Restart PostgreSQL to apply changes

Step 3: Add the Connection in clariBI

  1. Log in to clariBI and navigate to Settings > Data Sources
  2. Click Add Data Source
  3. Select PostgreSQL from the list of available connectors
  4. Enter your connection details:
    • Host: your database server address
    • Port: 5432 (or your custom port)
    • Database: your database name
    • Username: claribi_reader (or whatever you named the read-only user)
    • Password: the password you set in Step 1
  5. Click Test Connection to verify that clariBI can reach your database
  6. If the test succeeds, click Save
Successful PostgreSQL connection test in clariBI showing connected status and discovered tables

Step 4: Verify and Explore Your Data

After connecting, clariBI will discover the tables available through your read-only user. You can:

  • Browse the table list to verify that the expected tables appear
  • Use the conversational AI to ask questions immediately: "How many rows are in the customers table?" or "Show me the total revenue by month for the last 12 months"
  • Start building a dashboard using the dashboard creation guide

Troubleshooting Common Issues

Connection Timed Out

The most common issue. Usually means network access is not configured correctly. Verify:

  • clariBI's IP address is allowed in your database's security group or firewall
  • The port is correct (5432 unless you changed it)
  • The host address is the public/external address, not an internal/private address
  • Your database is not inside a VPN that blocks external access

Authentication Failed

The username or password is incorrect. Double-check:

  • The username matches exactly what you created (PostgreSQL usernames are case-sensitive)
  • The password is correct (try connecting with psql from your own machine to verify)
  • The pg_hba.conf allows the authentication method you expect (MD5 or scram-sha-256)

No Tables Visible

The connection succeeded but clariBI does not show any tables. This usually means the user does not have SELECT permission on the tables. Verify:

  • You ran the GRANT SELECT commands from Step 1
  • The tables are in the public schema (if they are in a different schema, grant USAGE and SELECT on that schema instead)
  • There are no row-level security policies blocking access

SSL Required

Some cloud database providers require SSL connections. If you see an SSL-related error, check the SSL option in the clariBI connection form and ensure it is enabled. Most managed database services provide SSL by default.

Data source settings in clariBI showing connection details, sync schedule, and SSL configuration options

Best Practices

  • Always use a read-only user. Never connect a BI tool with write-capable credentials. One accidental query should not be able to modify production data.
  • Use a connection to a replica if available. If you have a read replica, connect clariBI to the replica rather than the primary database. This ensures analytics queries do not compete with your application for resources.
  • Rotate credentials periodically. Update the read-only user's password on a regular schedule and update it in clariBI's connection settings.
  • Monitor query load. If clariBI's queries impact database performance, consider setting a statement timeout on the read-only user: ALTER USER claribi_reader SET statement_timeout = '30s';

Once connected, you have full access to build dashboards, run conversational queries, and create automated reports from your PostgreSQL data. For next steps, see the complete data sources documentation or jump directly to building your first dashboard.

D

Darek Černý

Darek is a contributor to the clariBI blog, sharing insights on business intelligence and data analytics.

64 articles published

Related Posts

View All Posts →

Ready to Transform Your Business Intelligence?

Start using clariBI today and turn your data into actionable insights with AI-powered analytics.

Start Free Trial View Pricing