Skip to content
By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

Prevent user to use the same password in Cognito

0

Hi !

Is there a way to prevent a user to use the same password as before when using AdminResetUserPassword (https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_AdminResetUserPassword.html) ?

Topics
Security, Identity, & Compliance
Tags
Amazon Cognito
Language
English
asked a year ago320 views
2 Answers
2
Accepted Answer

Hello,

At this point, AWS Cognito doesn't prevent users from setting previously used passwords.

https://repost.aws/questions/QUsFS2KDcSQTKzBGGuwN-7BA/congito-disabling-password-reuse-last-x-passwords

EXPERT
answered a year ago
EXPERT
reviewed a year ago
0

Cognito now supports the restriction of re-using the old passwords. You can configure it in the password policy of the user pools. https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pool-settings-advanced-security-password-reuse.html.

answered a year ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Relevant content