Using Amazon Cognito user pools security features

You can add multi-factor authentication (MFA) to a user pool to protect the identity of your users. MFA adds a second authentication factor so that your user pool doesn't rely solely on username and password. You can use either SMS text messages or time-based one-time passwords (TOTP) as second factors to sign in your users. You can also use adaptive authentication with its risk-based model to predict when you might need another authentication factor. User pool advanced security features include adaptive authentication and protections against compromised credentials.

Topics

Adding MFA to a user pool
Adding advanced security to a user pool
Associating an Amazon WAF web ACL with a user pool
User pool case sensitivity
User pool deletion protection
Managing user existence error responses

Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Accessing Amazon resources using an identity pool

Adding MFA