Amazon Cognito now supports importing users with password hashes

Amazon Cognito now supports importing users with password hashes in CSV user imports. Previously, users imported from a CSV file had to reset their passwords on first sign-in. Now, you can include password hashes in your CSV file so that imported users can sign in immediately with their existing credentials.

When creating a CSV import, you specify the password hashing algorithm used by your source system. Amazon Cognito imports these users and verifies their password against the imported hash on first sign-in. Supported algorithms include bcrypt, scrypt, Argon2id, and PBKDF2 with SHA-256. All imported hashes receive an additional layer of cryptographic protection before storage.

Password hash import is available in all AWS Regions where Amazon Cognito is available. To get started, create a user import using the AWS Management Console, AWS Command Line Interface (CLI), or AWS Software Development Kits (SDKs). See the developer guide for instructions.

Categories: general:products/amazon-cognito,marketing:marchitecture/security-identity-and-compliance

Source: Amazon Web Services



Latest Posts

Pass It On
Leave a Comment

Comments

No comments yet. Why don’t you start the discussion?

Leave a Reply