AWS Certified Developer Associate DVA-C02 Practice Question

To integrate corporate Active Directory with Amazon Cognito and provide authenticated sessions, the team should set up an Amazon Cognito Identity Pool with SAML-based federation. Identity Pools support federating users from external identity providers through SAML 2.0, which is typically used for enterprise identity federation. Additionally, Amazon Cognito User Pools would be necessary if the team requires a user directory to manage user profiles. However, the integration of User Pools alone would not suffice for federating with Active Directory. IAM Identity Center (formerly AWS SSO) is for centralizing user access to AWS accounts and business applications, which is not the requirement here. AWS Directory Service for Microsoft Active Directory, also known as AWS Managed Microsoft AD, is not appropriate in this situation since it is used to run Microsoft Active Directory on AWS, and not for integrating web application sign-in directly.