AWS adds a new Model Context Protocol (MCP) server for AWS CloudTrail in the AWS Labs MCP open-source repository. This server enables AI agents to leverage comprehensive security and compliance capabilities through simple conversational interfaces. The CloudTrail MCP server allows AI assistants to analyze API calls, track user activities, and perform advanced security analysis across your AWS environment through natural language interactions.
The MCP server streamlines security investigation and compliance workflows by offering direct access to CloudTrail events and CloudTrail Lake analytics. AI agents can efficiently search 90-day management event histories and run Trino SQL queries on CloudTrail Lake data spanning up to 10 years. This natural language interface eliminates the need for custom API integrations, allowing AI agents to conduct security analyses and compliance checks seamlessly.
Available in all AWS regions where CloudTrail LookupEvents API or CloudTrail Lake is supported. Refer to documentation to learn more about supported regions.
Download CloudTrail MCP server from AWS Labs MCP open-source repository. To get started, visit:
Categories: general:products/aws-cloudtrail,marketing:marchitecture/management-tools,marketing:marchitecture/management-and-governance
Source: Amazon Web Services
Latest Posts
- (Updated) Microsoft 365 admin center: Prepurchase capacity packs for Microsoft 365 Copilot Chat [MC1155434]
- AWS Marketplace expands Japan consumption tax support for Channel Partner Private Offers
- Amazon EC2 Im4gn instances now available in AWS Asia Pacific (Mumbai) region
- (Updated) Reminder: Update Email Configurations for Viva Engage Email Domain Migration [MC1162950]
The addition of an MCP server for CloudTrail feels like a big stepBlog comment creation forward in making AWS security data more usable. Being able to query API calls and user activity through conversational interfaces could really streamline incident investigations and compliance checks. I’m curious to see how teams balance this accessibility with proper guardrails to avoid exposing sensitive insights too broadly.