OAuth support for the AWS MCP Server
Share
Services
You can now connect AI agents directly to the AWS MCP Server using AWS Sign-In. Agents connect using industry-standard OAuth without requiring additional authentication software. Existing AWS identities, sign-in methods, IAM permissions, and governance controls you have already set up continue to apply. Developers can authorize agents interactively through a browser or programmatically using non-interactive (headless) authorization. Administrators can govern OAuth access using familiar IAM policies together with new OAuth capabilities, including global condition keys, token introspection and revocation APIs, dynamic client registration, and CloudTrail audit events.
To learn more, see the [OAuth Support for the AWS MCP Server blogpost](https://aws.amazon.com/blogs/security/introducing-oauth-support-for-aws-mcp-server/), [Sign-In with OAuth 2.0](https://docs.aws.amazon.com/signin/latest/userguide/oauth-sign-in-overview.html) in the AWS Sign-In User Guide, and [Setting up the AWS MCP Server](https://docs.aws.amazon.com/agent-toolkit/latest/userguide/getting-started-aws-mcp-server.html) in the Agent Toolkit for AWS User Guide.
What else is happening at Amazon Web Services?
Amazon SageMaker Unified Studio adds custom asset types to the catalog in IAM-based domains
about 12 hours ago
Services
Share
Amazon SageMaker Feature Store now supports batch feature writes and record listing
about 12 hours ago
Services
Share
Amazon MSK Replicator now supports replication from external Apache Kafka clusters to MSK Standard brokers
about 13 hours ago
Services
Share