Amazon Cognito

Implement secure, frictionless customer identity and access management that scales

Introduction to Amazon Cognito

Amazon Cognito processes more than 100 billion authentications per month. The service helps you implement customer identity and access management (CIAM) into your web and mobile applications. You can quickly add user authentication and access control to your applications in minutes.

Benefits of Amazon Cognito

Deliver frictionless customer identity and access management with a developer-centric, cost-effective, and customizable service.
Add advanced security features such as risk-based adaptive authentication, compromised credential monitoring, and security metrics to support your compliance and data residency requirements.
Scale to millions of users with a fully managed, high-performance, and reliable user directory.
Federate sign-in by using OpenID Connect or SAML 2.0 and connect to a broad group of AWS services and products.

How it works

With Amazon Cognito, you can add user sign-up and sign-in features and control access to your web and mobile applications. Amazon Cognito provides an identity store that scales to millions of users, supports social and enterprise identity federation, and offers advanced security features to protect your consumers and business. Built on open identity standards, Amazon Cognito supports various compliance regulations and integrates with frontend and backend development resources.

Diagram showing how Amazon Cognito allows you to add sign-up and sign-in features, manage access, and connect resources to AWS products and services.

Use cases

Allow customers to sign in directly, or through social or enterprise identity providers, to a hosted UI with your branding.

Learn more about user authentication

Use a variety of multi-tenancy options that provide different levels of policy and tenant isolation for your business.

Learn more about multi-tenant applications

Develop modern, secure, microservice-based applications, and more easily connect your application to backend resources and web services.

Learn more about connecting to server-side resources

Gain secure, role-based access to AWS services, such as Amazon S3, Amazon DynamoDB, and AWS Lambda.

Learn more about brokered access


Explore more of AWS