Email one-time password to users created with API - AWS IAM Identity Center

Email one-time password to users created with API

When you create users with the CreateUser API operation, they don't have passwords.

You can choose to send users created with the CreateUser API an email with a one-time password (OTP) after their first attempt to sign in, if you’ve specified an email for the user when they were created. After receiving the email OTP, when a user signs in, they must set a new password. If you don’t enable this setting, then you must generate a one-time password and share with users that you create using the CreateUser API.

To send an email OTP to users created with the CreateUser API
  1. Open the IAM Identity Center console.

  2. Choose Settings.

  3. On the Settings page, choose the Authentication tab.

  4. In the Standard authentication section, choose Configure.

  5. A dialog box appears. Check the box next to Send email OTP. Then, choose Save. The status updates from Disabled to Enabled.