Authentic User Verification Offering(s)

Configuring Identity Providers and Custom Mappings in Amazon Cognito User Pools

Verification Offerings

• Option 1: Set up a SAML provider in Cognito User Pool

  • [Set up Auth0 as a SAML identity provider with an Amazon Cognito user pool | AWS re:Post](https://repost.aws/knowledge-center/auth0-saml-cognito-user-pool)

  • [Troubleshoot invalid SAML response errors in Amazon Cognito | AWS re:Post](https://repost.aws/knowledge-center/cognito-invalid-saml-response-errors) - Add the SAML metadata XML as an IDP in Cognito

  • Enable the new idP for each client

  • For XML attribute mapping, the attribute needs to be mapped to the fully qualified URL in the XML metadata document for the attribute you want

  • In order to use alarm.com's JWT as the authentication mechanism to their API, we will need them to pass the JWT token as a mapping in their XML metadata

• Option 2: Set up an OIDC provider in Cognito User Pool - [Set up Auth0 as an OIDC provider for Amazon Cognito | AWS re:Post](https://repost.aws/knowledge-center/auth0-oidc-cognito) -

• Option 3: Get custom identity mappings by providing JWT to idpool