Practice Test 2 | AWS Certified Solutions Architect Associate | SAA-C03 | Dumps | Mock Test
You have designed an application that uses AWS resources, such as S3, to operate and store users’ documents. You currently use Cognito identity pools and User pools. To increase usage and ease of signing up you decide adding social identity federation is the best path forward. When asked what the difference is between the Cognito identity pool and the federated identity providers (e.g. Google), how do you respond?
A. They are the same and just called different things
B. First you sign-in via Cognito then through a federated site, like Google
C. Federated identity providers and identity pools are used to authorize services
D. Sign-in via AWS Cognito User Pool and sign-in via AWS Cognito Indentity Pool are independent of one another
Explanation:
Answer:D
D. Sign-in through a third party (federation) is available in Amazon Cognito user pools. This feature is independent of federation through Amazon Cognito identity pools (federated identities).
Incorrect:
- A. These are separate, independent authentication methods
- B. Only one log-in event is needed, not two
- C. Identity providers authenticate users, not authorize services
Reference:
- https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-identity-federation.html
- https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_oidc.html
- https://aws.amazon.com/articles/web-identity-federation-with-mobile-applications/
- https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-getting-started.html
Comments are closed, but trackbacks and pingbacks are open.