AI is mid.AI is mid.
AI is Mid

News

AWS Bridges Bedrock AI Agents to Cross-Account Data for Enterprises

Source: aws.amazon.com

Published on November 8, 2025

Updated on November 8, 2025

AWS Bedrock AI agents accessing cross-account data in a secure cloud environment

AWS Enhances Bedrock AI Agents with Cross-Account Data Access

Amazon Web Services (AWS) has introduced a groundbreaking solution to address a long-standing challenge for large enterprises: securely connecting advanced generative AI agents to data stored in separate AWS accounts. This new capability, which integrates Amazon Bedrock AI agents with Amazon Redshift Serverless, aims to streamline data access across multi-account cloud environments, enhancing AI-driven applications.

Previously, Amazon Bedrock Knowledge Bases lacked built-in support for integrating with Redshift data warehouses across different accounts. This limitation created significant security and access hurdles for organizations managing complex cloud infrastructures. The new architecture solves this issue by using AWS Lambda as an intermediary, enabling AI agents in one account to securely query structured data stored in a knowledge base located in another account.

The Importance of Cross-Account Data Integration

For enterprises operating in multi-account cloud environments, data segmentation is a common practice to enhance security and governance. However, this approach often leads to data silos, making it difficult for AI tools like Bedrock agents to access comprehensive information. The new solution addresses this problem by facilitating secure, cross-account data access, allowing AI agents to perform more intelligent and holistic queries without compromising security.

This development is particularly significant for businesses aiming to maximize their AI investments. By simplifying cross-account integration, AWS enables companies to extract greater value from their existing data infrastructure, reducing the need for complex, custom solutions that often introduce unnecessary operational overhead.

Technical Details of the Solution

The solution involves two distinct AWS accounts: an 'agent account' housing the Amazon Bedrock agent and an 'agent-kb account' containing the knowledge base and Redshift Serverless data. The Bedrock agent in the agent account uses an action group to invoke a Lambda function, which securely assumes an Identity and Access Management (IAM) role in the knowledge base account. This grants temporary, granular access to query the Redshift Serverless data warehouse.

The process is carefully orchestrated with IAM roles and policies, ensuring secure access without exposing the underlying database. Models like Amazon's Nova Pro for the agent and Meta's Llama3-1-70b-instruct for the knowledge base are employed, ensuring compatibility and performance. AWS CloudFormation and command-line scripts automate the setup, creating necessary roles, policies, and the Bedrock agent itself.

Expert Perspective

"This solution is a game-changer for enterprises struggling to integrate AI with their complex cloud environments," said a cloud infrastructure expert. "By using AWS Lambda as a secure intermediary, AWS has struck a balance between security and functionality, allowing AI agents to access critical data without compromising governance."

However, implementing this solution requires a deep understanding of AWS IAM and networking, which may pose a challenge for smaller teams or those new to multi-account governance. While the solution promises long-term simplicity, the initial setup involves numerous granular steps, suggesting that the configuration process is complex.

Future Implications

This development marks a significant advancement for enterprises committed to cloud-native AI. By enabling faster deployment of AI applications, improved data governance, and enhanced security practices, AWS is empowering companies to build sophisticated AI assistants that can query a wide range of data, from customer transaction histories to supply chain logistics, while respecting data residency and access controls.

As AI agents become more prevalent, the demand for seamless and secure access to diverse data sources will only grow. Solutions like this from AWS are essential for unlocking the full potential of generative AI, transforming it into an indispensable enterprise asset that works harmoniously within existing, complex IT architectures.