Using Amazon Cognito user pools security features

You can add multi-factor authentication (MFA) to a user pool to protect the identity of your users. MFA adds a second authentication factor so that your user pool doesn't rely solely on username and password. You can use either SMS text messages or time-based one-time passwords (TOTP) as second factors to sign in your users. You can also use adaptive authentication with its risk-based model to predict when you might need another authentication factor. User pool advanced security features include adaptive authentication and protections against compromised credentials.

Topics

Adding MFA to a user pool
Adding advanced security to a user pool
Associating an AWS WAF web ACL with a user pool
User pool case sensitivity
User pool deletion protection
Managing user existence error responses

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Accessing AWS resources using an identity pool

Adding MFA