💼 [Cognito.4] Cognito user pools should have threat protection activated with full function enforcement mode for custom authentication
- ID:
/frameworks/aws-fsbp-v1.0.0/cognito/04
Description​
This control checks whether an Amazon Cognito user pool has threat protection activated with the enforcement mode set to full function for custom authentication. The control fails if the user pool has threat protection disabled or if the enforcement mode isn't set to full function for custom authentication.
Threat protection, formerly called advanced security features, is a set of monitoring tools for unwanted activity in your user pool, and configuration tools to automatically shut down potentially malicious activity. After you create an Amazon Cognito user pool, you can activate threat protection with full function enforcement mode for custom authentication and customize the actions that are taken in response to different risks. Full-function mode includes a set of automatic reactions to detect unwanted activity and compromised passwords.
Similar​
- AWS Security Hub
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|