What is the AWS Security Token Service MCP server?

The AWS Security Token Service MCP server provides an AI agent (Claude, Cursor, VS Code) with direct access to the AWS Security Token Service API. Using the Model Context Protocol, it lets you interact with AWS Security Token Service through natural language commands.

How do I set up the AWS Security Token Service MCP server in Claude Desktop?

Copy the MCP config from this page, paste it into your claude_desktop_config.json file under mcpServers, set the required environment variables (none), and restart Claude Desktop.

What tools does the AWS Security Token Service MCP server expose?

The server exposes 10 operations including GET_AssumeRole, POST_AssumeRole, GET_AssumeRoleWithSAML, and more.

Does the AWS Security Token Service MCP server require an API key?

No, this MCP server requires no authentication.

What are alternatives to the AWS Security Token Service MCP server?

You can also use the built-in MCP converter tool at mcpbridge.org/convert to generate custom configs from any OpenAPI spec, or browse similar APIs in the Cloud Infrastructure category on our directory.

Cloud InfrastructureAuto-generatedScore: 46

AWS Security Token Service MCP Server

<fullname>Security Token Service</fullname> <p>Security Token Service (STS) enables you to request temporary, limited-privilege credentials for Identity and Access Management (IAM) users or for users that you authenticate (federated users). This guide provides descriptions of the STS API. For more i

Quick Answer

1. The AWS Security Token Service MCP server lets Claude, Cursor, and VS Code interact with the AWS Security Token Service API through natural language.
2. Setup: Add the config to claude_desktop_config.json, set your environment variables, and restart.
3. 10 operations available including GET_AssumeRole, POST_AssumeRole, GET_AssumeRoleWithSAML, and more.
4. Quality score: 46/99 — fair source quality and documentation coverage.

Overview

Category: Cloud Infrastructure

Auth: None

Endpoints: 10

Transport: STDIO

Command: npx -y @mcp/amazonaws-com-sts

Spec: v2011-06-15

Setup time: ~30 sec (no auth)

Environment Variables

AWS_SECURITY_TOKEN_SERVICE_API_KEY

Example: your_aws_security_token_service_api_key

One-Click Install

Copy the snippet for your MCP client and paste it in — zero editing required.

Claude Desktop

Add to claude_desktop_config.json

{
  "mcpServers": {
    "amazonaws-com-sts": {
      "command": "npx",
      "args": [
        "-y",
        "@mcp/amazonaws-com-sts"
      ],
      "env": {
        "AWS_SECURITY_TOKEN_SERVICE_API_KEY": "your_aws_security_token_service_api_key"
      }
    }
  }
}

Deep link

Cursor

Settings → MCP Servers → Add

{
  "mcpServers": {
    "amazonaws-com-sts": {
      "url": "https://mcpbridge.org/config/amazonaws-com-sts.json"
    }
  }
}

Saves as .cursor/mcp.json in the download. Move it to your project root.

Deep link install →

VS Code

Use with MCP extension

{
  "mcpServers": {
    "amazonaws-com-sts": {
      "url": "https://mcpbridge.org/config/amazonaws-com-sts.json"
    }
  }
}

MCP Server Configuration

Add this to your claude_desktop_config.json or Cursor MCP settings.

{
  "mcpServers": {
    "amazonaws-com-sts": {
      "command": "npx",
      "args": ["-y","@mcp/amazonaws-com-sts"],
      "env": {
      "AWS_SECURITY_TOKEN_SERVICE_API_KEY": "your_aws_security_token_service_api_key"
}
    }
  }
}

What You Can Build

With the AWS Security Token Service MCP server, your AI assistant can:

Access 10 API operations through natural language
Read, create, and modify cloud infrastructure resources without writing HTTP requests
Chain multiple operations in a single conversation for complex workflows
Combine with other MCP servers for cross-tool automation

Endpoints

GET/#Action=AssumeRole

GET_AssumeRole

POST/#Action=AssumeRole

POST_AssumeRole

GET/#Action=AssumeRoleWithSAML

GET_AssumeRoleWithSAML

POST/#Action=AssumeRoleWithSAML

POST_AssumeRoleWithSAML

GET/#Action=AssumeRoleWithWebIdentity

GET_AssumeRoleWithWebIdentity

POST/#Action=AssumeRoleWithWebIdentity

POST_AssumeRoleWithWebIdentity

GET/#Action=DecodeAuthorizationMessage

GET_DecodeAuthorizationMessage

POST/#Action=DecodeAuthorizationMessage

POST_DecodeAuthorizationMessage

GET/#Action=GetAccessKeyInfo

GET_GetAccessKeyInfo

POST/#Action=GetAccessKeyInfo

POST_GetAccessKeyInfo

Documentation →

Authentication

No authentication required. This MCP server can be used without API keys.

Spec Version

Version: 2011-06-15

Spec version published with the OpenAPI document. Config auto-updates when the spec changes.

Page last updated: June 13, 2026

Quality Score

46/99Fair

+Auto-generated (+12)
+Has documentation (+12)
+OpenAPI spec available (+8)
+10 endpoints (+14)

Own this API?

Claim your listing to update description, links, and category — and get a verified badge.

Claim this listing →

Similar APIs

Other APIs in the Cloud Infrastructure category.

Supabase API

Manage Supabase projects, databases, authentication, and storage through your AI agent.

API Key

Cloudflare API

Manage Cloudflare DNS, CDN, Workers, and security settings through your AI agent.

API Key

Vercel API

Deploy projects, manage domains, and monitor deployments through your AI agent.

Bearer Token

DigitalOcean API

# Introduction The DigitalOcean API allows you to manage Droplets and resources within the DigitalOcean cloud in a simple, programmatic way using conventional HTTP requests. All of the functionality that you are familiar with in the DigitalOcean control panel is also available through the API, all