How to get/set Bedrock Granular Cost controls/limits for Anthropic model usage for 100 -1000 employees

Thanks Florian for guiding me here, creating 1000 AIPs is indeed an admin nightmare. The tiered approach (AIPs at division level, requestMetaData for per-developer tracking) sounds like the pragmatic answer here. I was hoping for a ready-made-here-you-are solution, but Lambda proxy + DynamoDB for real-time enforcement is exactly the pattern I probably need here.

What are still an open questions for me:

• Claude Code use specific solution -- your answer assumes generic Bedrock API calls. Claude Code's traffic pattern (many small requests, tool use loops, context window stuffing) means token budgets matter more than request counts.
• Caching -- Bedrock prompt caching can dramatically change cost profiles. My cost tracking needs to account for cached vs. uncached tokens.
• Model routing -- if I enforce Sonnet-by-default and gate Opus access per team, that's most likely a cheaper lever than per-user token limits.

What do you think?

You are right to focus on Real-Time Enforcement - it’s the hardest part because Bedrock doesn't do it natively. To solve this for 1,000 users without an "admin disaster", I think the following is a pragmatic approach:

• Circuit Breaker: Use an API Gateway + Lambda Proxy. The Lambda performs a "Pre-Flight" check against DynamoDB before forwarding to Bedrock. If the limit is reached, it returns 429 Too Many Requests immediately. This hopefully provides the real-time (near to real-time) gate you need.
• Claude Code & Caching: A raw 'Token Limit' is too blunt for Claude Code's context-heavy loops. Your Proxy must be 'Cache-Aware': parse the cacheReadTokenCount from the response and update the budget based on Actual Cost ($). This ensures developers aren't penalized for using efficient cached contexts.
• Loop Protection: Since Claude Code can get stuck in tool-use loops, implement a 'Request Rate Limit' (e.g., 20 calls/min) in the Proxy. This prevents a runaway loop from burning a daily budget in seconds.
• Model Gating: Use IAM to restrict Opus access to specific roles. For everyone else, Sonnet 3.5 via the Proxy-enforced limits is the most pragmatic lever.

So, native Bedrock only provides visibility. For Enforcement, the Proxy pattern is unavoidable. Tracking USD instead of raw tokens is the only way to fairly account for Caching discounts.

Perhaps you could try it with Kinesis Data Streams to handle the log-streaming for 1,000 users to avoid latency, but remember: Kinesis is asynchronous. It’s great for near real-time dashboards, but for a hard circuit breaker that stops a request before it costs money, you still need that synchronous check.