AWS MCP Server

62 tools. 0 can modify or destroy data without limits.

Read-only server. Low risk, but rate limits prevent runaway API costs.

Last updated:

0 can modify or destroy data
62 read-only
62 tools total

Community server · catalogue entry verified 03/07/2026

How to control AWS MCP Server ↓

What AWS MCP Server exposes to your agents

Read (62) Write / Execute (0) Destructive / Financial (0)

What can go wrong

Even read-only tools carry cost. An agent in a retry loop can make thousands of API calls per minute, exhausting rate limits and running up bills.

How to control AWS MCP Server

PolicyLayer is an MCP gateway — it sits between your AI agents and AWS MCP Server, and nothing reaches the server without passing your rules. These are the rules we recommend:

Cap read operations
{
  "aws_health_check": {
    "limits": [
      {
        "counter": "aws_health_check_per_minute",
        "window": "minute",
        "max": 60,
        "scope": "grant"
      }
    ]
  }
}

Controls API costs and prevents retry loops from exhausting upstream rate limits.

  1. Create a free account and register AWS MCP Server — nothing to install.
  2. Add these rules — paste them, or build them visually. Tune the limits to your setup.
  3. Point your MCP client (Claude, Cursor, anything) at your gateway URL.
ENFORCE POLICY ON AWS →

Instant setup, no code required.

All 62 AWS MCP Server tools

READ 62 tools
Read aws_health_check Verifies AWS credentials and connectivity. Use this first to ensure the MCP server can reach AWS. Read check_ip_in_waf Checks if an IP address exists in any WAF IP Set (Blocklists/Allowlists). Read estimate_cost Rough cost estimate for a service (EC2, Lambda, RDS, S3) in a region. Uses published rates; actual costs may v Read get_aws_caller_identity Returns the AWS IAM caller identity (user/role) to verify credentials. Read get_budget_details Lists all AWS Budgets along with their status, limits, and current spend. Read get_cost_anomalies Retrieves cost anomalies detected by AWS Cost Anomaly Detection. Read get_cost_breakdown Detailed cost analysis. If service_name is provided, breaks down that service by Usage Type. Otherwise, breaks Read get_cost_by_service Retrieves AWS costs broken down by service for the specified date range. Read get_cost_forecast Predicts future costs for a specified time range. Read get_iam_policy_for_tools Generates a least-privilege IAM policy JSON for the specified tools. Pass tool names to get the required permi Read get_instance_details Retrieves detailed information about a specific EC2 instance. Read get_metric_statistics Retrieves statistics for a specific CloudWatch metric. Read get_recent_cost Retrieves daily AWS costs for the specified date range (default: last 7 days). Read get_recent_logs Retrieves recent log events from a CloudWatch Log Group. Read get_reservation_utilization Retrieves Reserved Instance (RI) utilization percentages. Read get_savings_plans_utilization Retrieves Savings Plans utilization percentages. Read get_service_health Lists recent open events from AWS Health Dashboard. Read get_target_health Retrieves the health of targets in a specified Target Group. Read get_waf_sampled_requests Retrieves sampled requests from a Web ACL. Read list_access_denied_events Lists recent Access Denied or Unauthorized events from CloudTrail. Read list_auto_scaling_groups Lists Auto Scaling Groups with their capacity settings. Read list_backup_jobs Lists recent backup jobs, optionally filtering by state (default: FAILED). Read list_cloudformation_stacks Lists CloudFormation stacks and their status. Read list_cloudfront_distributions Lists CloudFront distributions with their domain names and status. Read list_cloudtrail_changes Lists write/mutation events (Create, Update, Delete) for a specific resource or service. Read list_cloudwatch_alarms Lists CloudWatch alarms, optionally filtering by state. Read list_dynamodb_tables Lists DynamoDB tables. Read list_ec2_instances Lists EC2 instances in the current region, showing ID, type, state, and public IP. Read list_ecs_clusters Lists ECS clusters with their status and running task counts. Read list_ecs_services Lists services in a specific ECS cluster. Read list_eks_clusters Lists EKS clusters in the current region. Read list_expiring_certificates Lists ACM certificates expiring within the specified days. Read list_guardduty_findings Lists recent high-severity GuardDuty findings. Read list_hosted_zones Lists all Route53 Hosted Zones. Read list_iam_users Lists IAM users in the AWS account. Read list_internet_gateways Lists Internet Gateways and their attachments. Read list_lambda_functions Lists Lambda functions with runtimes and last modified dates. Read list_listener_rules Lists listeners and routing rules (host, path) for a specified Load Balancer. Read list_load_balancers Lists all Application and Network Load Balancers. Read list_nat_gateways Lists NAT Gateways with their state and public IP. Read list_old_access_keys Lists access keys older than 90 days (or specified days). Read list_open_security_groups Lists security groups that allow ingress from 0.0.0.0/0 on specified ports (default: 22, 3389). Read list_rds_instances Lists RDS instances with engine versions and status. Read list_recent_cloudtrail_events Lists recent CloudTrail events to track console access and changes. Read list_record_sets Lists DNS records for a given hosted zone. Read list_route_tables Lists route tables with their routes and associations. Read list_s3_buckets Lists all S3 buckets in the AWS account. Read list_scaling_activities Describes recent scaling activities for an Auto Scaling Group. Read list_secrets Lists Secrets Manager secrets (names only). Read list_security_groups Lists all security groups. Read list_sns_topics Lists all SNS topics. Read list_ssm_parameters Lists SSM Parameters (names only). Read list_subnets Lists subnets with availability zones and available IP counts. Read list_target_groups Lists all Target Groups. Read list_trusted_advisor_checks Lists Trusted Advisor checks available. Read list_unassociated_eips Lists Elastic IPs that are not associated with any instance. Read list_unused_ebs_volumes Lists EBS volumes that are available (not attached to any instance). Read list_users_without_mfa Lists IAM users who do not have MFA enabled. Read list_vpcs Lists all VPCs in the current or specified region. Read list_web_acls Lists Web ACLs (Global/CloudFront or Regional). Read scan_secrets_risks Lists Secrets Manager secrets that may need attention (e.g., no rotation, old last changed date, names contain Read search_cloudwatch_logs Search CloudWatch logs using a filter pattern (e.g.,

Questions about AWS MCP Server

Is the AWS MCP Server MCP server safe to use without restrictions? +

The AWS MCP Server server is primarily read-only with 62 read tools. While it cannot modify data, an agent in a retry loop can make thousands of API calls per minute, exhausting rate limits and running up costs. Rate limiting is still recommended.

How many tools does the AWS MCP Server MCP server expose? +

62 tools across 1 categories: Read. 62 are read-only. 0 can modify, create, or delete data.

How do I enforce a policy on AWS MCP Server? +

Register the AWS MCP Server MCP server in PolicyLayer, apply the suggested rules above (adjust the limits to your use case), and point your AI client at the PolicyLayer proxy URL instead of the server directly. Your agents keep the same tools; PolicyLayer evaluates every call against policy before it executes. Nothing to install, live in minutes.

Enforce policy on every AWS MCP Server tool call.

Deterministic rules across all 62 AWS MCP Server tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

Instant setup, no code required.

62 AWS MCP Server tools catalogued and risk-classified — across an index of 43,000+ MCP servers.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.