Cognito user pool password policies should have strong configurations
このページは日本語には対応しておりません。随時翻訳に取り組んでいます。
翻訳に関してご質問やご意見ございましたら、
お気軽にご連絡ください。
Description
Password policies for Amazon Cognito user pools should enforce strong configurations to protect user credentials against brute force attacks and unauthorized access. Strong password requirements include minimum length, character complexity requirements, and appropriate temporary password validity periods. These settings help ensure that user passwords meet security standards and comply with organizational security requirements.
Configure your Cognito user pool password policy to require strong passwords with a minimum length of 8 characters, require lowercase letters, uppercase letters, numbers, and symbols, and limit temporary password validity to 7 days or less. For guidance on configuring password policies, refer to the Adding user pool password requirements section of the Amazon Cognito Developer Guide.
