AWS Cognito - Prevent Password Reuse

About

Asked 5/4, 2018 at 3:20 Answered 28/8 at 20:28

Solved amazon-web-services amazon-cognito

I am curious if it is possible to prevent a user from re-using their password (or previous n passwords) in AWS Cognito. It seems like this would be a feature, but I don't see it in the documentation (https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-policies.html).

It is possible with IAM (https://docs.amazonaws.cn/en_us/IAM/latest/UserGuide/id_credentials_passwords_account-policy.html).

Balf answered 5/4, 2018 at 3:20 Comment(1)

While not what you're looking for, be aware that Cognito supports a compromised credentials feature: docs.aws.amazon.com/cognito/latest/developerguide/…. You can also require MFA, of course, and configure various adaptive measures such as blocking high risk sign-in. – Kryska 11/9, 2019 at 14:36

First of all AWS Cognito UserPools Password policy and AWS IAM User Password Policy are two things. Although IAM User Password Policy allows configuring password change enforcement, it's not available with AWS Cognito yet.

Currently, you can only configure following attributes for the password.

Minimum password length
Password require numbers
Password require special character
Password require uppercase letters
Password require lowercase letters

In addition, you can configure MFA.

Devisee answered 5/4, 2018 at 7:49 Comment(3)

Thanks Ashan - I appreciate your answer – Balf 6/4, 2018 at 13:9

Is it available now? – Argenteuil 4/8, 2020 at 13:18

@Argenteuil Did a quick check. Cognito UserPools still don't have the support for the password expire. – Devisee 5/8, 2020 at 6:46

For now, Cognito supports the restriction of re-using the old passwords. Password reuse prevention

Lox answered 28/8 at 20:28 Comment(0)

Hot tags

Godot Unity Godot Help Programming Godot 4.X GUI GDScript 3D 2D Physics CSharp Godot 3.X VR XR Projects C++

Recommended topics

Hot tags