AWS MCP Server
Interact with Amazon Web Services through your AI assistant - manage EC2, S3, Lambda, and hundreds of AWS services.
AWS MCP Server
Manage AWS infrastructure and services directly from your AI assistant. The AWS MCP server provides natural language interfaces for managing EC2, S3, Lambda, IAM, CloudWatch, and hundreds of other AWS services across multiple regions and accounts.
This server is essential for cloud architects managing large AWS environments, DevOps teams automating deployment workflows, and security engineers performing compliance audits across their AWS organization.
What it Does
- Resource Management: List, create, and manage AWS resources
- Cost Analysis: Query billing and cost data
- Security Audit: Review IAM policies and security configurations
- Monitoring: Access CloudWatch logs and metrics
- Multi-Region: Work across multiple AWS regions
Installation
# Using npx
npx -y @anthropic-ai/mcp-server-aws
# Using Docker
docker run -i --rm -v ~/.aws:/root/.aws mcp/aws
Configuration
{
"mcpServers": {
"aws": {
"command": "npx",
"args": ["-y", "@anthropic-ai/mcp-server-aws"],
"env": {
"AWS_REGION": "us-east-1",
"AWS_PROFILE": "production"
}
}
}
}
Available Tools
| Tool | Purpose | Category |
|---|---|---|
list_ec2 | List EC2 instances with filtering | Compute |
list_s3_buckets | List S3 buckets | Storage |
list_lambdas | List Lambda functions | Serverless |
list_iam_roles | List IAM roles | Security |
get_costs | Query AWS billing and cost data | Cost |
get_cloudwatch_logs | Retrieve CloudWatch log groups | Monitoring |
check_public_s3 | Identify publicly accessible S3 buckets | Security |
list_rds | List RDS instances | Databases |
Common Workflows
Security Audit
- List all IAM roles and check for overly permissive policies
- Identify S3 buckets with public access enabled
- Review CloudTrail logs for unusual API activity
- Check security group rules for open ports to 0.0.0.0/0
- Generate a security findings summary
Cost Investigation
- Query cost data for the current month
- Identify the top-spending services
- List EC2 instances and check for idle or underutilized resources
- Review RDS instances for appropriate instance sizes
- Generate cost optimization recommendations
Resource Inventory
- List EC2 instances across all regions
- Check Lambda functions and their recent invocation counts
- Inventory S3 bucket sizes and object counts
- Review RDS instance configurations
- Compile a complete resource inventory report
Example Prompts
- "List all EC2 instances in us-east-1"
- "Show me S3 buckets with public access"
- "What Lambda functions did I deploy this week?"
- "Check IAM policies for security issues"
- "Show CloudWatch logs for the api-service"
- "What are my top 5 cost centers this month?"
Troubleshooting
| Issue | Likely Cause | Solution |
|---|---|---|
| "Access denied" | IAM credentials lack permissions | Verify the IAM policy allows the requested action |
| "Region not found" | Unsupported or disabled AWS region | Check AWS_REGION and verify the region is enabled in your account |
| "Resource not found" | Resource doesn't exist in the specified region | Verify the resource exists and you have the correct region |
| "Throttling" | API rate limit exceeded | Implement exponential backoff or request a rate limit increase |
Security Notes
- Use least-privilege IAM credentials
- Prefer read-only operations when possible
- Enable CloudTrail for audit logging
- Use AWS SSO for credential management
Related Articles
Docker MCP Server
Manage Docker containers, images, networks, and volumes through AI assistants using natural language with the Docker MCP Server.
Markdown to PDF MCP Server
Markdown to PDF MCP servers enable AI models to convert Markdown documents into PDF files, supporting syntax highlighting, custom styling, and flexible output options.
Slack MCP Server
Slack MCP server provides AI assistants with full Slack workspace integration including channel management, messaging, threads, reactions, and user presence.