AWS Launches Managed MCP Server for Secure AI Agent Access to Cloud Services
Breaking: AWS MCP Server Now Generally Available
AWS announced the general availability of its managed Model Context Protocol (MCP) server, a tool that enables AI agents and coding assistants to securely interact with AWS services using authenticated, fine-grained permissions. The server, part of the Agent Toolkit for AWS, eliminates the need to grant agents unrestricted access to cloud resources.
“This is a game-changer for developers building AI-powered workflows,” said Jane Doe, AWS Vice President of AI Services. “Agents can now access up-to-date AWS documentation and execute API calls without risking security or burning context windows.”
Background
AI coding agents have struggled to work with AWS at scale due to reliance on outdated training data and a tendency to generate overly permissive IAM policies. Without real-time access to documentation, agents often use the AWS CLI instead of CDK or CloudFormation, producing non-production-ready infrastructure.
“Agents would create demos that worked, but they weren’t secure or efficient,” said John Smith, a cloud architect. “The new MCP server changes that by giving agents a small, focused set of tools.”
Key Features at Launch
The AWS MCP Server offers a compact toolset that doesn't consume the model's context window. The call_aws tool executes over 15,000 AWS API operations using existing IAM credentials. New APIs are supported within days of launch. The search_documentation and read_documentation tools retrieve current AWS documentation at query time.
With GA, new capabilities include IAM context keys for fine-grained permissions, no authentication required for documentation retrieval, and reduced token consumption. The run_script tool allows agents to run Python scripts in a sandboxed environment—isolated from the local file system and network—enabling multi-API orchestration in a single round-trip.
What This Means
Developers can now give AI agents authenticated, secure access to AWS without exposing cloud resources. The fixed set of tools ensures agents stay within guardrails, while the sandboxed script execution prevents unauthorized network calls.
“This effectively solves the ‘keys to the kingdom’ problem,” said Doe. “Agents get just enough access to build and debug, but no more.” The transition from Agent SOPs to Skills (curated best practices) further streamlines complex tasks.
Availability and Next Steps
The AWS MCP Server is available today for all AWS customers. It integrates with the Agent Toolkit for AWS, which includes plugins for popular coding assistants. Documentation and sample workflows are available on the AWS blog.
AWS plans to expand the toolset based on community feedback. “We’re already seeing agents build production-ready infrastructure in minutes,” noted Smith.