AWS Certified Developer Associate DVA-C02 Practice Question
An application you are developing requires that end-users authenticate using their existing social media accounts. Once authenticated, the application should grant temporary permissions to utilize certain cloud resources. Which service allows you to create an identity pool that facilitates this scenario, mapping social media identities to predefined roles for navigating and interacting with your cloud environment?
Amazon Cognito with identity pools allows you to grant your users temporary, limited-privilege credentials to access AWS resources. This service can federate with external identity providers like social media platforms and corporate directories, exchanging their authentication tokens for temporary permissions in your environment. While Amazon Cognito user pools handle user management and authentication, they do not support direct federation for resource access. The IAM service is responsible for defining roles and permissions but does not handle direct identity federation. Similarly, STS is used for granting temporary credentials but is not directly responsible for federating with identity providers in the context of your application's users.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is Amazon Cognito and how does it work?
Open an interactive chat with Bash
What are identity pools and how do they differ from user pools in Amazon Cognito?
Open an interactive chat with Bash
How does federated authentication work with Amazon Cognito?
Open an interactive chat with Bash
AWS Certified Developer Associate DVA-C02
Security
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
IT & Cybersecurity Package Join Premium for Full Access