AWS Certified Cloud Practitioner
Get started today
Ultimate access to all questions.
Deep dive into the quiz with AI chat providers.
We prepare a focused prompt with your quiz and certificate details so each AI can offer a more tailored, in-depth explanation.
A company needs to set up user authentication for an application. Users must be able to sign in directly with a username and password or through a third-party identity provider (IdP). Which AWS service will meet these requirements?
Real Exam
Community
RRitesh
A
Amazon Cognito
B
AWS Directory Service
C
AWS IAM Identity Center
D
AWS Trusted Advisor
Explanation:
Explanation
Amazon Cognito is the correct answer because it provides:
-
User Pools: Allow users to sign in directly with username and password
-
Federation Support: Enables authentication through third-party identity providers (IdP) like Google, Facebook, Amazon, or SAML providers
-
Scalable Authentication: Managed service that scales automatically
-
Mobile and Web Applications: Specifically designed for application authentication
Why other options are incorrect:
-
AWS Directory Service: Primarily for directory services and integration with Microsoft Active Directory, not designed for application authentication with third-party IdPs
-
AWS IAM Identity Center: Focuses on centralized access management for AWS accounts and business applications, not general application authentication
-
AWS Trusted Advisor: A cost optimization and security recommendation service, not an authentication service
Amazon Cognito is specifically designed for application authentication scenarios where you need both direct sign-in and third-party federation capabilities.
Comments
Loading comments...