aashari/mcp-server-aws-sso

Overview

A Node.js/TypeScript MCP server for AWS Single Sign-On. It initiates device authentication flow, lists accounts and roles, and executes AWS CLI commands using temporary credentials. This enables LLM-based tools to interact with AWS resources through secure SSO sessions.

Best for

Best for
Developers integrating AI agents with AWS SSO-secured environments

Use cases

• Initiate AWS SSO device authentication from an AI agent
• List available AWS accounts and roles for the authenticated session
• Execute AWS CLI commands with temporary credentials via MCP

Notes

A Node.js/TypeScript MCP server for AWS Single Sign-On. It initiates device authentication flow, lists accounts and roles, and executes AWS CLI commands using temporary credentials. This enables LLM-based tools to interact with AWS resources through secure SSO sessions.

13 stars on GitHub. Last updated 2026-03-06.

Use cases

• Initiate AWS SSO device authentication from an AI agent
• List available AWS accounts and roles for the authenticated session
• Execute AWS CLI commands with temporary credentials via MCP

Pros

• Uses temporary credentials for security instead of long-lived keys
• Written in TypeScript with clear types and standard MCP protocol
• Leverages standard AWS SSO device flow for compatibility

Cons

• Requires AWS SSO to be configured and an existing user
• Small community with few contributors (13 stars)
• Limited to AWS CLI commands supported by the MCP server

Indexed from awesome-mcp-servers-punkpeye and enriched against its public facts.