
Improving Password Security on Amazon Cognito with Password Reuse Prevention
How to prevent use of previous passwords in Amazon Cognito user pool
- By setting password policy:
- Below is the password policy that you can setup with amazon Cognito.
- Password minimum length
- Password complexity rules
- Prevent reuse of previous passwords (New feature).
- Compromised credential database: Advance security feature includes the compromised credential DB. Cognito maintains a proprietary store of usernames and passwords that have been compromised. Every time a user signs up, signs in, and changes their password, Cognito can check if a compromised credential is in use and force the user to change their password.
- Activate advanced security features.
- In the Sign-in experience tab of your user pool, locate Password policy and select Edit.
- Configure other available options and set a value for Prevent use of previous passwords.
- Choose Save changes.
Any opinions in this post are those of the individual author and may not reflect the opinions of AWS.