Sold by: Amazon Web Services
Deployed on AWS
The AWS API MCP Server enables AI assistants to interact with AWS services and resources through AWS CLI commands. It provides programmatic access to manage your AWS infrastructure while maintaining proper security controls. This server acts as a bridge between AI assistants and AWS services, allowing you to create, update, and manage AWS resources across all available services. It helps with AWS CLI command selection and provides access to the latest AWS API features and services, even those released after an AI model's knowledge cutoff date. This MCP server is meant for testing, development, and evaluation purposes.
3.5
Overview
The AWS API MCP Server enables AI assistants to interact with AWS services through the Model Context Protocol (MCP). When deployed to AgentCore, it provides secure, scalable access to AWS APIs with built-in authentication and session isolation.
This server acts as a bridge between AI assistants and AWS services, allowing you to query, manage, and interact with AWS resources across all available services. It helps with AWS CLI command selection and provides access to the latest AWS API features, even those released after an AI model's knowledge cutoff date.
When deployed via AWS Marketplace to AgentCore Runtime, the server runs in a managed runtime environment with IAM-based permissions and external authentication. This eliminates the need for local credential management while providing enterprise-grade security and scalability.
For local development, testing, and alternative deployment methods, see the GitHub repository. https://github.com/awslabs/mcp/tree/main/src/aws-api-mcp-server
Highlights
- The AWS API MCP Server enables AI assistants to interact with AWS services and resources through AWS CLI commands.
- Acts as a bridge between AI assistants and AWS services, allowing you to create, update, and manage AWS resources across all available services.
- Provides access to the latest AWS API features and services, even those released after an AI model's knowledge cutoff date.
Details
Sold by
Categories
Delivery method
Type
Supported services
Delivery option
AWS API MCP 1.3.24
AWS API MCP 1.3.14
Latest version
Operating system
Linux
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
This product is available free of charge. Free subscriptions have no end date and may be canceled any time.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Vendor refund policy
This is a free container
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
AWS API MCP 1.3.24
Supported services: Learn more
- Amazon Bedrock AgentCore
Container image
Containers are lightweight, portable execution environments that wrap server application software in a filesystem that includes everything it needs to run. Container applications run on supported container runtimes and orchestration services, such as Amazon Elastic Container Service (Amazon ECS) or Amazon Elastic Kubernetes Service (Amazon EKS). Both eliminate the need for you to install and operate your own container orchestration software by managing and scheduling containers on a scalable cluster of virtual machines.
Version release notes
Additional details
Usage instructions
Overview
This is a highlevel deployment overview. For detailed instructions, troubleshooting, and configuration options see the complete deployment guide. https://github.com/awslabs/mcp/blob/main/src/aws-api-mcp-server/DEPLOYMENT.md
Security Best Practices
Single User Only: This deployment is designed for individual use. Do NOT use in multi-user environments.
Least Privilege: You are responsible for configuring appropriate permissions. We Recommend to start with read-only access and add permissions incrementally based on your requirements.
Credential Separation: The MCP server uses the IAM role specified during deployment, separate from your local AWS credentials. This means that the Agent will execute requests against AWS services using the MCP Server IAM Role, and and not the callers credentials.
Defense-in-Depth: AI assistants executing AWS commands can be vulnerable to prompt injection attacks. Implement layered security with minimal IAM permissions, exercise caution with untrusted data sources (logs, databases, user-generated content), and command validation workflows.
Required Environment Variables Add these to your AgentCore runtime configuration:
"AUTH_TYPE": "no-auth"
"AWS_API_MCP_HOST": "0.0.0.0"
"AWS_API_MCP_PORT": "8000"
"AWS_API_MCP_STATELESS_HTTP": "true"
"AWS_API_MCP_TRANSPORT": "streamable-http"
"AWS_API_MCP_ALLOWED_HOSTS" = "*"
"AWS_API_MCP_ALLOWED_ORIGINS" = "*"
Note:
-
AUTH_TYPE=no-auth is required since AgentCore uses external authentication such as Amazon Cognito.
-
These are the minimum required variables - additional environment variables and security configurations are available. See GitHub for complete configuration options.
Recommended Permission Model for the MCP Server
The MCP server has no inherent AWS permission requirements - permissions depend entirely on which AWS services your use case requires. You are responsible to determine and configure appropriate permissions based on your specific needs.
Start with Read-Only Access (Recommended)
aws iam attach-role-policy
--role-name your-mcp-role
--policy-arn arn:aws:iam::aws:policy/ReadOnlyAccess
Add Service-Specific Permissions
Create custom policies for specific AWS services you need and add it to the bedrock-agentcore-role that you will create in the next steps. Example for S3 access:
{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": [ "s3:GetObject", "s3:ListBucket" ], "Resource": [ "arn:aws:s3:::your-bucket", "arn:aws:s3:::your-bucket/*" ] } ] }
Always Specify Custom Role
Authentication Methods
SigV4 (Recommended): Uses AWS credentials via AWS MCP Proxy
- Requires AWS credentials for endpoint access
- Requires bedrock-agentcore:InvokeAgentRuntime permission on your local IAM policy
- Requires use of MCP Proxy for AWS
JWT: Uses Cognito or external token providers
- Requires bearer token for endpoint access
- AgentCore creates Cognito User Pool automatically, but you must create users manually
- Use if your client requires JWT authentication
Client Configuration
Once the MCP Server is deployed to AgentCore Runtime, you will receive a runtime ARN. You must URL-encode this ARN to construct the endpoint URL for your MCP client. See documentation.
SigV4 Example (Claude Desktop/Cursor):
{ "aws-api-mcp": { "type": "stdio", "command": "uvx", "args": [ "--from", "git+https://github.com/aws/mcp-proxy-for-aws ", "mcp-proxy-for-aws", "YOUR_AGENTCORE_ENDPOINT", "--region", "us-east-1" ] } }
Once the MCP Server is deployed to AgentCore Runtime, you will receive an ARN to invoke the MCP server. Encode the ARN to invoke the MCP Server by replacing ':' with '%3A' and '/ with' '%2F'
For detailed troubleshooting, see GitHub for complete guide. https://github.com/awslabs/mcp/blob/main/src/aws-api-mcp-server/DEPLOYMENT.md
Support
Vendor support
Contact AWS Support
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
DataDome stops cyberfraud, bots, and malicious AI automation in real time using AI-powered detection, analyzing 5 trillion signals daily to protect websites, mobile apps, APIs, and MCP servers without compromising performance.
A repeatable, secure framework on AWS for rapidly building and deploying scalable, production-ready AI agents using Amazon Bedrock Agentcore
Free, open-source starter pack to deploy a production-ready AI agent in minutes, not weeks. Pre-configured with Claude Haiku 4.5, web search, and code execution. Perfect for CEOs or technical teams building agentic AI solutions.
Launching in 1Q26 to Publishers and 2Q26 to Developers, SimpleFeed MCP Free allows developers to explore enriched content from hundreds of publishers to make your AI Applications perform better. Explore available summary content, enrichments, vectors with 100 queries/month. Perfect for developers evaluating the platform before upgrading to full data access. Learn more at https://www.simplefeed.com/freemcp.
Customer reviews
AmitMishra1
Bridges AI with internal APIs securely and now needs simpler setup and better observability
Reviewed on Apr 07, 2026
Review from a verified AWS customer
What is our primary use case?
I use AWS API MCP Server to expose internal services like tools to LLM-based applications in a structured way, basically acting as the bridge between AI models and backend systems via APIs. In one use case, I built an API layer using API Gateway and Lambda that exposes internal services such as fetching user data and triggering workflows. This API layer is then integrated with an AI system via MCP-style interaction, allowing the model to call these APIs dynamically based on the user query.
It is especially useful when I want to safely expose controlled backend capabilities to AI systems without giving direct access.
What is most valuable?
My favorite features of AWS API MCP Server are flexible API exposure using API Gateway, integration with Lambda and backend services, and secure access via IAM , Cognito, and API keys. It is easy to extend for AI and LLM use cases and is also scalable and serverless. The integration of AWS API MCP Server with Lambda and secure access via IAM or Cognito allows me to quickly expose backend functionality in a controlled and scalable way, which is critical for AI integrations.
The real strength comes from combining multiple AWS services rather than a single product, so it helps for that as well. AWS API MCP Server has enabled me to build AI-driven features faster and safely expose internal services, while also improving how I structure APIs for AI consumption.
What needs improvement?
AWS API MCP Server has a lack of a standardized AWS-native MCP framework. Also, it requires manual setup across multiple services, which is hectic for me. Observability and tracing across the AI and API layers can be improved.
Based on my experience with AWS API MCP Server, AWS can provide more observability and tracing across the AI and API layers, which would be helpful to improve it. Right now it feels more like an architecture pattern than a fully managed service. If they address this issue, that will help me and it will get improved significantly.
For how long have I used the solution?
I have been working with AWS API MCP Server's MCP style API setup on AWS for the past few months, mainly in AI and LLM-based integrations.
How are customer service and support?
I would rate customer service as 4 out of 10.
What other advice do I have?
What I can suggest to others looking into using AWS API MCP Server is to use it when you want to try it on the MCP side, but do not rely on it only because it requires a lot of configuration and sometimes it does not work as expected.
AWS API MCP Server is built using AWS services rather than purchased through the AWS Marketplace . AWS API MCP Server is built on the AWS public cloud using API Gateway, Lambda functions, and sometimes using Bedrock and OpenAI integrations.
I would rate this solution 7 out of 10.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Amazon Web Services (AWS)