AWS Certified Cloud Practitioner

Get started today

Ultimate access to all questions.

Deep dive into the quiz with AI chat providers.

We prepare a focused prompt with your quiz and certificate details so each AI can offer a more tailored, in-depth explanation.

A company needs to set up user authentication for an application. Users must be able to sign in directly with a username and password or through a third-party identity provider (IdP). Which AWS service will meet these requirements?

Real Exam

Community

RRitesh

Amazon Cognito

AWS Directory Service

AWS IAM Identity Center

AWS Trusted Advisor

Explanation:

Explanation

Amazon Cognito is the correct answer because it provides:

User Pools: Allow users to sign in directly with username and password
Federation Support: Enables authentication through third-party identity providers (IdP) like Google, Facebook, Amazon, or SAML providers
Scalable Authentication: Managed service that scales automatically
Mobile and Web Applications: Specifically designed for application authentication

Why other options are incorrect:

AWS Directory Service: Primarily for directory services and integration with Microsoft Active Directory, not designed for application authentication with third-party IdPs
AWS IAM Identity Center: Focuses on centralized access management for AWS accounts and business applications, not general application authentication
AWS Trusted Advisor: A cost optimization and security recommendation service, not an authentication service

Amazon Cognito is specifically designed for application authentication scenarios where you need both direct sign-in and third-party federation capabilities.

Powered ByGemini-3 Flash

Comments

Loading comments...