Menu
Amazon Cognito
Developer Guide (Version Last Updated: 08/26/2017)

Limits in Amazon Cognito

The following tables provide the soft (default) limits for Amazon Cognito, which are limits that can be changed. For information about these limits and how to change them, see AWS Service Limits.

Soft Limits in Amazon Cognito User Pools

Resource Default Limit
Maximum number of apps per user pool 25
Maximum number of user pools per account 60
Maximum number of user import jobs per user pool 50
Maximum number of groups per user pool 25
Maximum number of identity providers per user pool 25
Maximum number of resource servers per user pool 20
Maximum number of scopes per resource server 20

Soft Limits in Amazon Cognito Federated Identities

Resource Default Limit
Maximum number of identity pools per account 60

Soft Limits in Amazon Cognito Sync

Resource Default Limit
Maximum number of datasets per identity 20
Maximum number of records per dataset 1024
Maximum size of a single dataset 1 MB

The following tables describe Amazon Cognito hard limits, which are limits that cannot be changed.

Hard Limits in Amazon Cognito User Pools

Resource Limit
Maximum number of custom attributes per user pool 25
Maximum characters per attribute 2048 bytes
Maximum character length for custom attribute name 20
Min/max password policy length Between 6 and 99, inclusive
Maximum characters in email subject 140
Maximum character in email message 20,000
Maximum characters in SMS verification message 140
Maximum characters in password 256
Maximum character length for identity provider name 40
Maximum identifiers per identity provider 50
Maximum callback URLs per identity provider 100
Maximum logout URLs per identity provider 100

Hard Limits on Token Validity in Amazon Cognito User Pools

Resource Limit
ID token 1 hour
Refresh token Between 1 day and 3650 days, inclusive

Hard Limits on Code Validity in Amazon Cognito User Pools

Resource Limit
Sign-up confirmation code 24 hours
User attribute verification code validity 24 hours
Multi-factor authentication code 3 minutes
Forgot password code 1 hour

Hard Limits in Amazon Cognito Federated Identities

Resource Limit
Maximum number of identities per identity pool Unlimited
Maximum character length for identity pool name 128 bytes
Maximum character length for login provider name 2048 bytes
Maximum number of results from a single List/Lookup API call 60
Maximum Amazon Cognito user pool providers per identity pool 10

Hard Limits in Amazon Cognito Sync

Resource Limit
Maximum character length for dataset name 128 bytes
Minimum waiting time for a bulk publish after a successful request 24 hours