- Newest
- Most votes
- Most comments
Go to the Messaging tab in the pool. In the SMS section click Edit. Under "IAM role" choose "Create a new IAM role" and then "Save changes". Wait until it's done and try again to deactivate deletion protection and delete the pool.
this error message because the trust relationship for the SMS role in your AWS Cognito User Pool is not configured correctly.
To disable the deletion protection and delete the user pool
Update the trust relationship for the SMS role from the AWS console IAM > Roles > Trust relationships > Update the trust relationship policy document to allow Cognito to assume the role Disable deletion protection for the user pool Amazon Cognito > Manage User Pools > MFA and verifications > Which attributes do you want to verify? > Uncheck 'Phone number
Save > Policies Tab > Deletion protection > Enable deletion protection'
This could work, but can you please be more specific about what changes are needed to the Trust Relationship?
Relevant content
- asked 2 years ago
- asked a year ago
- AWS OFFICIALUpdated a month ago
- I tried to delete my ACM certificate but received an error that it's in use with other AWS resourcesAWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 2 years ago
This worked when removing the condition from the existing role's Trust Relationship didn't. This looks like the easiest way to solve the issue.
and you have this? "Statement": [ { "Effect": "Allow", "Principal": { "Service": "cognito-idp.amazonaws.com" }, "Action": "sts:AssumeRole",
Your comment got cut off.
{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Principal": { "Service": "cognito-idp.amazonaws.com" }, "Action": "sts:AssumeRole", } ] }