Amazon Cognito is a mobile identity product that allows users to add user sign-up and sign-in to mobile and web apps, and authenticate users through social identity providers.
One thing we really like is getting OTPs and payment alerts through messaging bots. Unlike SMS, it’s free for us, secure, and users like it. It’s a way to send codes and notifications without extra costs. These messages are always right there for the user, easy to access on their phone.
Amazon Cognito has a bit of a learning curve. You need to learn its concepts and terminology. The documentation does not describe some topics comprehensively.
Some Console screens would benefit from improved search and filtering options.
When another AWS product (e.g., SageMaker) configures Cognito on your behalf, it is not clear what you're getting. For example, the expiration of a temporary password was configured but never communicated.
We’ll keep using Protectimus. Been using it for years, no real issues, it just works. Covers what we need, different setups, mgmt, logs, all that. OTP via bots is really handy and saves us money. Support’s fine, they reply when needed. Overall, it does the job, so we’ll keep it.
Amazon Cognito is easy to use and implement if you don't need to implement custom policies. But if your security team requires something outside the box, then implementation becomes complicated and you risk wasting time. There is no option for customizable regex for passwords, which is a major deficiency. The standard password policy, allow to choose the length of the password, if it should contains at least one number, one special character, one uppercase letter and one lowercase letter.
I gave 10 points for their solution because the GUI got a fresh update and it’s really easy to use now. The old one had some annoying limitations, but the new layout is much more intuitive. On mobile it works good too. Managing relations between tokens, users, and resources is way smoother now.
Community support is excellent, many times even better and quicker then the offical AWS support. I really cannot recommend community support enough! Apart from that the service is relativily easy to use and does not have a huge learning curve. Examples are easy to follow and will help you start using the service.
They are ideal tools to create a secure and unique login experience for our applications. Thanks to its API authorization, Amazon Cognito ensures connections to applications that are secure.It is easy to use and provides easy access to files and applications that you need to complete your goal.
We checked a few options before picking Protectimus. We looked at SafeNet Auth Management, Duo, and using Google Authenticator with our own backend. SafeNet felt really old-school — UI looks dated and the system’s kinda tricky to run & maintain. Duo’s solid, but it’s pricey and, more importantly, doesn’t offer full on-prem deployment. We need on-prem to handle auth for our employees on our own infra, so that was a dealbreaker. Google Authenticator is popular & free, but it’s just a client for generating OTPs — all the user mgmt, token handling, and policies would be on us.Protectimus gives all that out of the box. We can manage users & tokens centrally, set auth policies, and support multiple channels. That flexibility made it the best fit for our setup.
