aashari/mcp-server-aws-sso
by Various
Node.js/TypeScript MCP server for AWS Single Sign-On (SSO). Enables AI systems (LLMs) with tools to initiate SSO login (device auth flow), list accounts/roles, and securely execute
MCP
aashari/mcp-server-aws-sso
Added 1 June 2026
Overview
A Node.js/TypeScript MCP server for AWS Single Sign-On. It initiates device authentication flow, lists accounts and roles, and executes AWS CLI commands using temporary credentials. This enables LLM-based tools to interact with AWS resources through secure SSO sessions.
Best for
Best for
Developers integrating AI agents with AWS SSO-secured environments
Use cases
- Initiate AWS SSO device authentication from an AI agent
- List available AWS accounts and roles for the authenticated session
- Execute AWS CLI commands with temporary credentials via MCP
How to use
Install
npm install -g @aashari/mcp-server-aws-sso Tools exposed
aws_sso_loginaws_sso_statusaws_sso_ls_accountsaws_sso_exec_commandaws_sso_ec2_exec_command
Tested with
Claude Desktop, Cursor
Example client config
{\n "mcpServers": {\n "aws-sso": {\n "command": "npx",\n "args": ["-y", "@aashari/mcp-server-aws-sso"],\n "env": {\n "AWS_SSO_START_URL": "https://your-company.awsapps.com/start",\n "AWS_REGION": "us-east-1"\n }\n }\n }\n} Notes
A Node.js/TypeScript MCP server for AWS Single Sign-On. It initiates device authentication flow, lists accounts and roles, and executes AWS CLI commands using temporary credentials. This enables LLM-based tools to interact with AWS resources through secure SSO sessions.
13 stars on GitHub. Last updated 2026-03-06.
Use cases
- Initiate AWS SSO device authentication from an AI agent
- List available AWS accounts and roles for the authenticated session
- Execute AWS CLI commands with temporary credentials via MCP
Pros
- Uses temporary credentials for security instead of long-lived keys
- Written in TypeScript with clear types and standard MCP protocol
- Leverages standard AWS SSO device flow for compatibility
Cons
- Requires AWS SSO to be configured and an existing user
- Small community with few contributors (13 stars)
- Limited to AWS CLI commands supported by the MCP server
Indexed from awesome-mcp-servers-punkpeye and enriched against its public facts.
Pros
- Uses temporary credentials for security instead of long-lived keys
- Written in TypeScript with clear types and standard MCP protocol
- Leverages standard AWS SSO device flow for compatibility
Cons
- Requires AWS SSO to be configured and an existing user
- Small community with few contributors (13 stars)
- Limited to AWS CLI commands supported by the MCP server
Pairs with
Other entries in the index that connect to this one. Click through to see the chain.
Get the free Developer’s Field Guide
A 27-page field guide to the AI coding workflow with Claude. Claude Code, MCP servers, the prompt patterns that work, and what to delegate. Free.
Enter your work email. We send it straight over, plus a few short notes worth knowing. Unsubscribe any time.