AWS adds a new Model Context Protocol (MCP) server for AWS CloudTrail in the AWS Labs MCP open-source repository. This server enables AI agents to leverage comprehensive security and compliance capabilities through simple conversational interfaces. The CloudTrail MCP server allows AI assistants to analyze API calls, track user activities, and perform advanced security analysis across your AWS environment through natural language interactions.
The MCP server streamlines security investigation and compliance workflows by offering direct access to CloudTrail events and CloudTrail Lake analytics. AI agents can efficiently search 90-day management event histories and run Trino SQL queries on CloudTrail Lake data spanning up to 10 years. This natural language interface eliminates the need for custom API integrations, allowing AI agents to conduct security analyses and compliance checks seamlessly.
Available in all AWS regions where CloudTrail LookupEvents API or CloudTrail Lake is supported. Refer to documentation to learn more about supported regions.
Download CloudTrail MCP server from AWS Labs MCP open-source repository. To get started, visit:
Categories: general:products/aws-cloudtrail,marketing:marchitecture/management-tools,marketing:marchitecture/management-and-governance
Source: Amazon Web Services
Latest Posts
- (Updated) External workbook links to blocked file types will be disabled by default [MC1125497]
- (Updated) Microsoft Teams Rooms on Android: Recording and transcription controls (Teams Rooms Pro required) [MC1182688]
- Amazon Quick Suite introduces scheduling for Quick Flows
- (Updated) Upcoming Change to Teams Desktop Client on Windows [MC1189656]
The addition of an MCP server for CloudTrail feels like a big stepBlog comment creation forward in making AWS security data more usable. Being able to query API calls and user activity through conversational interfaces could really streamline incident investigations and compliance checks. I’m curious to see how teams balance this accessibility with proper guardrails to avoid exposing sensitive insights too broadly.