AWS IAM
Inspect IAM users, roles, policies, access keys, and policy simulations.
Tools
| Name | Description |
|---|---|
list_usersList IAM users with optional path filtering and pagination. | List IAM users with optional path filtering and pagination. |
get_userGet IAM user details. Leave User Name empty to inspect the current IAM user when supported by AWS. | Get IAM user details. Leave User Name empty to inspect the current IAM user when supported by AWS. |
list_rolesList IAM roles with optional path filtering and pagination. | List IAM roles with optional path filtering and pagination. |
get_roleGet IAM role details including the assume-role policy document. | Get IAM role details including the assume-role policy document. |
list_policiesList IAM managed policies with optional scope, attachment, path, and usage filters. | List IAM managed policies with optional scope, attachment, path, and usage filters. |
get_policyGet IAM managed policy metadata, including the default version ID. | Get IAM managed policy metadata, including the default version ID. |
get_policy_versionGet one IAM managed policy version and decode its policy document when it is JSON. | Get one IAM managed policy version and decode its policy document when it is JSON. |
simulate_principal_policyEvaluate effective IAM permissions for one user, group, or role ARN without performing the actions. | Evaluate effective IAM permissions for one user, group, or role ARN without performing the actions. |
list_access_keysList access key metadata for one IAM user without returning secret access keys. | List access key metadata for one IAM user without returning secret access keys. |
create_access_keyCreate an IAM access key and return its secret once. Requires exact confirmation. | Create an IAM access key and return its secret once. Requires exact confirmation. |
delete_access_keyDelete one exact IAM access key ID. Requires exact confirmation. | Delete one exact IAM access key ID. Requires exact confirmation. |
Quick Start
import { WeavzClient } from '@weavz-io/sdk'
const weavz = new WeavzClient({ apiKey: 'wvz_...' })
const result = await weavz.actions.execute('aws-iam', 'list_users', {
workspaceId: '550e8400-e29b-41d4-a716-446655440000',
integrationAlias: 'aws-iam',
input: { /* ... */ },
})Related Integrations
Works well with
Frequently Asked Questions
How do I connect AWS IAM to my app?
Use Weavz Hosted Connect for Custom authentication. Install the SDK, create a connection through the connect portal or API, then execute tools programmatically.
What tools does AWS IAM support?
AWS IAM supports 11 tools including List Users, Get User, List Roles, Get Role, List Policies, and more.
Can I use AWS IAM with AI agents?
Yes. Add AWS IAM to an MCP server in Tool Mode or Code Mode. Code Mode provides 3 meta-tools with on-demand API discovery so agents can compose stateful workflows without loading every action schema up front.
Can AWS IAM be used in stateful agent workflows?
Yes. Agents can combine AWS IAM tools with Filesystem, State KV, Human Gates, input partials, and other workspace integrations while keeping execution scoped to the selected workspace or end user.
What authentication does AWS IAM use?
AWS IAM uses Custom. Weavz stores credentials securely and uses them for authorized action execution.
How much does the AWS IAM integration cost?
The AWS IAM integration is included on all Weavz plans including the free tier with 20,000 actions per month. No credit card required.
Connect AWS IAM in minutes
Get 20,000 free action executions every month. No credit card required.