Answer-first summary for fast verification
Answer: Amazon Cognito
## Explanation **Amazon Cognito** is the correct answer because it provides: - **User Pools**: Allow users to sign in directly with username and password - **Federation Support**: Enables authentication through third-party identity providers (IdP) like Google, Facebook, Amazon, or SAML providers - **Scalable Authentication**: Managed service that scales automatically - **Mobile and Web Applications**: Specifically designed for application authentication **Why other options are incorrect:** - **AWS Directory Service**: Primarily for directory services and integration with Microsoft Active Directory, not designed for application authentication with third-party IdPs - **AWS IAM Identity Center**: Focuses on centralized access management for AWS accounts and business applications, not general application authentication - **AWS Trusted Advisor**: A cost optimization and security recommendation service, not an authentication service Amazon Cognito is specifically designed for application authentication scenarios where you need both direct sign-in and third-party federation capabilities.
Author: Ritesh Yadav
Ultimate access to all questions.
A company needs to set up user authentication for an application. Users must be able to sign in directly with a username and password or through a third-party identity provider (IdP). Which AWS service will meet these requirements?
A
Amazon Cognito
B
AWS Directory Service
C
AWS IAM Identity Center
D
AWS Trusted Advisor
No comments yet.