Network Performance Monitoring is now generally available! Network Monitoring is now available!

Amazon Cognito

Crawler Crawler

Overview

Amazon Cognito is a service that you can use to create unique identities for your users, authenticate these identities with identity providers, and save mobile user data in the AWS Cloud.

Enable this integration to see all your Cognito metrics in Datadog.

Setup

Installation

If you haven’t already, set up the Amazon Web Services integration first.

Metric collection

  1. In the AWS integration tile, ensure that Cognito is checked under metric collection.

  2. Install the Datadog - Amazon Cognito integration.

Log collection

Enable logging

Configure Amazon Cognito to send logs either to a S3 bucket or to Cloudwatch.

Note: If you log to a S3 bucket, make sure that amazon_cognito is set as Target prefix.

Send logs to Datadog

  1. If you haven’t already, set up the Datadog log collection AWS Lambda function.
  2. Once the lambda function is installed, manually add a trigger on the S3 bucket or Cloudwatch log group that contains your Amazon Cognito logs in the AWS console:

Data Collected

Metrics

aws.cognito.compromised_credentials_risk
(count)
Requests where Amazon Cognito detected compromised credentials
aws.cognito.account_take_over_risk
(count)
Requests where Amazon Cognito detected account take-over risk
aws.cognito.override_block
(count)
Requests that Amazon Cognito blocked because of the configuration provided by the developer
aws.cognito.risk
(count)
Requests that Amazon Cognito marked as risky
aws.cognito.no_risk
(count)
Requests where Amazon Cognito did not identify any risk

Events

The Amazon Cognito integration does not include any events.

Service Checks

The Amazon Cognito integration does not include any service checks.

Troubleshooting

Need help? Contact Datadog support.