Cognito identity pools should only allow authenticated identities

cognito
이 페이지는 아직 한국어로 제공되지 않습니다. 번역 작업 중입니다.
현재 번역 프로젝트에 대한 질문이나 피드백이 있으신 경우 언제든지 연락주시기 바랍니다.

Description

Cognito identity pools should not allow unauthenticated identities to assume IAM roles. When this parameter is enabled, it allows anonymous users to access AWS resources through the identity pool, which can introduce security risks by providing unauthorized access to your AWS environment.

Remediation

Set the AllowUnauthenticatedIdentities parameter to false when creating or updating Cognito identity pools. For guidance on managing identity pool authentication settings, refer to the Amazon Cognito Identity Pools documentation.