Provides read-only access to AWS DynamoDB databases, enabling natural language interactions for listing tables, scanning data, querying with conditions, and retrieving table schemas without requiring direct database credentials.
Log in to your AWS Management Console
Navigate to IAM (Identity and Access Management)
- In the AWS Console, search for "IAM" and open the IAM dashboard.
Create a New IAM User (Recommended for MCP Server)
- Click on “Users” > “Add users”.
- Enter a username (e.g.,
readonly-dynamodb-mcp).
- Select “Access key - Programmatic access”.
Set Permissions for the User
- Choose “Attach policies directly”.
- Search for and select the
AmazonDynamoDBReadOnlyAccess policy to give read-only access to DynamoDB.
- Click “Next” and complete the creation of the user.
Download or Copy the Access Keys
- After creating the user, you will see an “Access key ID” and a “Secret access key”.
- Download the .csv file or copy these values—you will need them for configuration.
Find Your AWS Region
- In the AWS Console, at the top right, you will see the currently selected AWS Region (e.g.,
us-east-1). Copy this region value. Use the region where your DynamoDB tables are located.
Fill in the FastMCP Connection Interface
- In the FastMCP web interface, click your "Install Now" button for DynamoDB Read-Only MCP.
- When prompted for environment values, fill as follows:
AWS_ACCESS_KEY_ID – The access key ID you copied from the AWS IAM step.AWS_SECRET_ACCESS_KEY – The secret access key copied from the AWS IAM step.AWS_REGION – The region name (e.g., us-east-1) where your DynamoDB instances are.
Finish Installation
- Complete the installation as prompted by FastMCP.
- Your MCP server will now have read-only access to your DynamoDB data.
Security Note:
Ensure you do not share your secret key publicly. Use an IAM user with the minimum required permissions (read-only access). If possible, rotate keys regularly.
You are now ready to use DynamoDB Read-Only MCP with your FastMCP connection!
