AWS Launches a New AI Agent Platform for Enterprises: What Actually Changed
On this page
This AWS AI agent platform matters because it names the real production problem clearly. Enterprises are not stuck because models are too weak. They are stuck because agents without identity, memory, approvals, and auditability do not survive contact with production systems.
That is why AgentCore is worth reading closely. AWS did not ship a smarter agent. It shipped infrastructure enterprises have been improvising for two years: governance, policy enforcement, cross-team discovery, and production evaluation. The model was already good enough. The machinery around it was not.
If you are evaluating an AI agent platform, this is the part to study. AgentCore is a strong example of the industry moving from “can we build an agent?” to “can we operate an agent fleet without losing control?”
The Problem Enterprise AI Was Actually Running Into
Picture a large company six months into its AI agent rollout. The data science team built an agent for contract review. Sales ops built one for lead qualification. HR built one for onboarding paperwork. Nobody talked to each other. Three vendors. Three prompt stacks. Overlapping work. No clear owner.
This is agent sprawl. AWS is treating it as a structural failure mode, not a side effect. Teams build agents in silos, rebuild the same capability twice, and lose track of which agent has permission to do what. The issue is not that the AI is dumb. The issue is that nobody built the operating layer to govern it.
The operational problems pile up fast. Teams are blocked by reliability, integration drag, and the time it takes to stitch tools, prompts, and state together. That is where months disappear. It is also where most pilot programs quietly stall.
What Amazon Bedrock AgentCore Actually Shipped
AgentCore was announced at AWS Summit New York and moved to general availability in October 2025. It’s seven integrated services, not a single product. That distinction matters — because the services target different failure modes, and you don’t have to adopt all of them at once.
The general availability release added Virtual Private Cloud support, AWS PrivateLink, CloudFormation integration, and resource tagging. Those aren’t flashy features. They’re the signals that a platform is enterprise-ready — the things security teams require before they’ll let anything near production data.
If you want a simpler way to think about the stack, break it into four jobs: runtime, memory, identity, and governance. The AWS packaging is broader than that, but those four jobs are the parts that decide whether an agent feels dependable in production.
AgentCore Runtime
Managed infrastructure for running agents at scale, supporting any AI framework and model. Framework-agnostic from day one.
AgentCore Memory
Episodic memory that lets agents learn from past interactions over time — improving decision-making and enabling more tailored responses without rebuilding context from scratch on every session.
AgentCore Policy
Real-time, deterministic controls that operate outside the agent code and actively block unauthorized actions. Not prompt-based guardrails — actual enforcement logic.
AgentCore Identity
Authentication and access management for agents operating across systems, so agents carry the right permissions and audit trails.
AgentCore Gateway
Unified interface for connecting agents to tools, APIs, and data sources — reduces the integration overhead that typically eats developer time.
AgentCore Evaluations
Continuous quality inspection based on agent behavior in production. Not a one-time test before launch — ongoing monitoring of what agents actually do.
AWS Agent Registry
Cloud-agnostic discovery and governance hub for agent fleets. Launched in preview, it's the answer to the sprawl problem — a single place to catalog, share, and reuse agents across teams.
Two additions beyond the core seven are worth calling out separately.
Amazon Nova Act is now generally available. It’s a browser automation agent — software that can navigate web interfaces, fill forms, click buttons, and trigger workflows without API access to the underlying system. Powered by a custom Amazon Nova 2 Lite model, it supports browser driving, API calling, and human escalation when it hits something it can’t handle confidently. The reliability benchmark AWS published: over 90% task reliability at scale. That’s the number that matters for production UI automation — below that threshold, the human intervention overhead eats the efficiency gains.
Amazon Connect Health is the vertical play. It’s a HIPAA-eligible AI agent platform for healthcare that automates appointment scheduling, documentation, and patient verification, with direct integration into electronic health record software. Pricing is $99 per month per user for up to 600 encounters per month. Patient verification and ambient documentation are at general availability. Appointment scheduling and patient insights are in preview. That pricing structure will make sense for some healthcare organizations and look expensive to others — it depends entirely on what 600 encounters per month represents in their workflow.
The Piece That Actually Changes How Agents Get Built
Here’s the part most coverage of AgentCore missed.
The interesting services aren’t the ones that make agents smarter. They’re the ones that make agents governable. AgentCore Policy enforces rules outside the agent code — meaning no matter what the model decides, the policy layer can block the action before it executes. That’s a fundamentally different architecture than hoping your system prompt catches every edge case. You can’t prompt-engineer your way to zero agent mistakes. AWS built a deterministic fence instead.
AgentCore Evaluations is the other one. Most teams evaluate agents before they ship — run a test suite, check accuracy, launch. What they don’t do is continuously inspect agent behavior after launch. That’s what Evaluations targets. Agents degrade in production. Context changes. Edge cases multiply. Continuous evaluation in production is the difference between an agent that was reliable on day one and an agent that’s reliable on day 90.
And the Agent Registry — still in preview as of April 2026 — addresses something nobody wants to admit is already a problem at scale. In organizations running dozens of agents, the question ‘does an agent that does this already exist somewhere in our infrastructure?’ doesn’t have a clean answer. The Registry is a centralized catalog, cloud-agnostic, designed so teams can discover and reuse agents rather than rebuild them. The compounding cost of duplicate agents isn’t just wasted development time. It’s governance risk — multiple agents making decisions in the same domain with no coordination between them.
AgentCore’s emergence was also enabled by protocol standardization: MCP for tool and data access, and A2A for agent-to-agent communication. Without those standards, every integration was bespoke. With them, AWS can make broader architectural promises about interoperability and control. If you are still sorting out the basics of what makes an agent dependable, start with the broader agentic AI and best AI agents context before you compare vendor checklists.
Where AgentCore Falls Short Right Now
The obvious caveat: several of the most interesting features are still in preview. The Agent Registry — arguably the most critical piece for enterprise governance — isn’t at general availability yet. If you’re evaluating this for production today, you’re buying the roadmap as much as the platform.
There are other friction points worth being direct about.
- Preview gaps mean real deployment delays. Appointment scheduling in Connect Health and the Agent Registry are both in preview. Features in preview on AWS platforms can take months to reach GA with the enterprise SLAs and compliance certifications that make them usable in regulated industries.
- Connect Health pricing needs careful math. $99 per user per month for 600 encounters sounds reasonable until you calculate it across a mid-size practice. A 20-provider clinic is $24,000 per year before any API usage costs. That’s a genuine budget conversation, not a no-brainer.
- AgentCore complexity compounds at scale. Seven integrated services with individual configuration, IAM policies, VPC settings, and CloudFormation templates is not simple to operate. The platform addresses enterprise complexity — but it also introduces operational complexity of its own. Small teams should be realistic about the overhead.
- Framework-agnostic has limits in practice. AgentCore claims support for any AI framework and model. In reality, first-class support, documentation quality, and debugging tooling will favor AWS-native patterns. Teams with established LangGraph or AutoGen implementations should test integration depth before committing.
- The $100 million investment signal is ambiguous. AWS committed an additional $100 million to accelerate agentic AI development alongside the AgentCore announcement. That’s a real number. What it funds, how it’s deployed, and what it means for the platform roadmap isn’t public. Treat it as a signal of commitment, not a feature.
Your Monday Morning AgentCore Assessment
If you’re responsible for AI agent infrastructure — or evaluating whether AgentCore belongs in your stack — here’s where to start this week.
Map your current agent inventory
Before evaluating any platform, catalog every agent your organization has in production or development. If you can't do this in under an hour, the Agent Registry problem is already real for you — and that changes your priority order.
Identify your specific failure mode
Is your problem governance and sprawl? Start with the Agent Registry preview. Is it reliability in production? Evaluations and Policy are your entry points. Is it integration overhead? Gateway and Runtime. Don't adopt the full platform before you know which layer is breaking first.
Audit your current policy enforcement
Review how your production agents currently handle unauthorized actions. If the answer is 'the system prompt prevents it,' you're exposed. Test the AgentCore Policy controls against your 3-5 highest-risk agent workflows within the next 30 days.
If you're in healthcare, price Connect Health honestly
Take your provider count × $99/month × 12, add estimated overage if your encounters exceed 600 per user per month, and compare to your current administrative staffing cost. The break-even math is different for every organization. Do it before the demo, not after.
Request preview access for Agent Registry
If you're running more than 10 agents across teams, get on the Agent Registry preview list now. Preview slots on AWS enterprise services go to organizations that engage early. By the time it reaches GA, early adopters will have influenced the feature set.
Run a Nova Act pilot on your ugliest UI workflow
Pick one browser-based workflow your team does manually that has no API — something where the only path is clicking through a web interface. Nova Act's 90%+ task reliability claim is meaningful, but test it against your actual UI, not a clean demo environment. Two weeks of pilot data tells you more than any benchmark.
What AgentCore Means for Your Agent Roadmap
- Amazon Bedrock AgentCore is seven services addressing the operational failures — sprawl, unreliable execution, lack of governance — that kill enterprise AI agent initiatives before they scale.
- The most important services aren’t the AI-facing ones. AgentCore Policy (deterministic enforcement outside agent code) and AgentCore Evaluations (continuous production monitoring) are the capabilities that change production reliability.
- Nova Act delivers over 90% task reliability for browser automation workflows and is now generally available — this is the number to validate against your actual use case.
- Amazon Connect Health prices at $99 per user per month for up to 600 encounters. Healthcare organizations should run the full cost model before piloting.
- The Agent Registry, which addresses agent sprawl at enterprise scale, is still in preview as of April 2026. If governance is your primary need, plan for a timeline gap.
- The underlying shift: enterprise AI is moving from ‘can we build an agent’ to ‘can we operate a fleet of agents reliably.’ AgentCore is AWS’s answer to the second question. Teams that solve operations now will compound that advantage for the next several years.
The teams that figure out agentic operations first do more than avoid sprawl. They build operating knowledge that compounds. The teams still debugging duplicate agents and prompt-only safety in 2027 will be doing it while competitors run agents with durable identity, persistent memory, and clearer approval paths. The hard part is no longer raw model capability. The hard part is treating operations as a first-class system.
If you’re exploring the broader landscape of AI agent platforms and trying to decide what to evaluate, we’ve broken that down at the AI agent platform level — including what to look for beyond the feature checklist.
Frequently Asked Questions
Is Amazon Bedrock AgentCore only for large enterprises?
AgentCore is designed for enterprise-scale deployment, but smaller organizations can use individual services without adopting the full platform. The complexity overhead is real — seven integrated services with VPC configuration, IAM, and CloudFormation isn’t a weekend project. If you’re running fewer than 5 agents and don’t have a dedicated platform team, the full AgentCore stack is probably more infrastructure than you need right now. The Agent Registry and Evaluations services are the ones to watch for teams at earlier stages.
How does AgentCore Policy differ from prompt-based safety controls?
Prompt-based controls tell the model what not to do — they’re instructions, not enforcement. AgentCore Policy operates as a deterministic layer outside the agent code, which means it blocks unauthorized actions regardless of what the model decides. This is a fundamentally different safety architecture. If a model goes off-script in an unexpected way, a carefully written system prompt may not catch it. A policy rule that says ‘never write to this database’ executes as a hard block, not a suggestion.
What is the AWS Agent Registry and when will it be generally available?
The AWS Agent Registry is a cloud-agnostic catalog for discovering, sharing, and governing AI agents across an organization. It’s designed to solve agent sprawl — the problem where different teams build duplicate agents without knowing the other exists. As of April 2026, the Agent Registry is in preview. AWS hasn’t published a GA date publicly. Organizations with urgent governance needs should request preview access now rather than waiting for general availability.
Does AgentCore work with non-AWS AI frameworks?
AWS says AgentCore supports any AI framework and model, and the platform’s emergence was enabled by open protocol standards like MCP and A2A. In practice, deep integrations, documentation quality, and debugging tooling will favor AWS-native patterns. Teams with existing investments in frameworks like LangGraph, AutoGen, or similar should test integration depth in a sandbox environment before committing. ‘Supported’ and ‘production-ready with your existing stack’ aren’t always the same thing.
Sources
- AWS News Blog — Introducing Amazon Bedrock AgentCore
- AWS News Blog — Amazon Nova Act, now generally available
- About Amazon — New AgentCore capabilities
- AWS Machine Learning Blog — Production-ready AI agents at scale
- SiliconANGLE — AWS Agent Registry preview
- PureAI — AWS Launches Enterprise AI Agent Platform
- Yahoo Tech — AWS launches AI agent platform for healthcare
