AWS MCP Server adds OAuth support for AI agent connections
The AWS MCP Server now supports OAuth for direct AI agent connections, eliminating the need for extra authentication software and leveraging existing AWS identity and governance controls. This feature allows for both interactive and programmatic authorization, with administrators benefiting from enhanced IAM policy governance and new OAuth-specific controls. Developers can now integrate AI agents more seamlessly with the MCP Server.
- →OAuth support for AI agent connections via AWS Sign-In
- →Flexible authorization methods for AI agents
- →Leverage existing AWS identity and governance controls
- →Expanded governance for OAuth access
Features (2) ›
- OAuth support for AI agent connections via AWS Sign-In
The AWS MCP Server now allows direct connections from AI agents using industry-standard OAuth through AWS Sign-In. This integration removes the requirement for additional authentication software.
- Flexible authorization methods for AI agents
Developers can authorize agents either interactively through a browser or programmatically using non-interactive (headless) authorization methods.
Enhancements (2) ›
- Leverage existing AWS identity and governance controls
Existing AWS identities, sign-in methods, IAM permissions, and governance controls remain applicable with the new OAuth support. This ensures continuity and simplifies integration for administrators and developers.
- Expanded governance for OAuth access
Administrators can govern OAuth access using familiar IAM policies, complemented by new OAuth capabilities such as global condition keys, token introspection and revocation APIs, dynamic client registration, and CloudTrail audit events.
https://aws.amazon.com/about-aws/whats-new/2026/07/oauth-aws-mcp-server/