Skip to content
By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

What is the validity period for email-based MFA OTPs in AWS Cognito?

0

I am using email-based Multi-Factor Authentication (MFA) using AWS Cognito and would like to know the exact validity period for the One-Time Passwords (OTPs) sent via email. Specifically:

How long is the email-based MFA OTP valid before it expires? How long is the session valid before it expires? Is the validity period configurable, or is it fixed by AWS? Are there any AWS official documents or references that specify this duration?

I couldn’t find this information in the AWS Cognito documentation, so I would appreciate any clarification or links to official AWS resources.

Topics
Security, Identity, & Compliance
Tags
Amazon CognitoAmazon Cognito User Pools
Language
English
asked 9 months ago415 views
1 Answer
1
Accepted Answer

Hello, I found the following description in this document, I think it may can help you:

The MFA code is valid for the Authentication flow session duration that you set for you app client.

Set the duration of an authentication flow session in the Amazon Cognito console in the App clients menu when you Edit your app client. You can also set the authentication flow session duration in a CreateUserPoolClient or UpdateUserPoolClient API request. For more information, see An example authentication session.

answered 9 months ago
AWS
EXPERT
reviewed 8 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Relevant content