Authsignal secures millions of passkey transactions out of our hosted Sydney region.

Authsignal secures millions of passkey transactions out of our hosted Sydney region.

Join us today!
Blog
/
Current article

Amazon Cognito Introduces Passwordless Authentication – but its built-in flows come with limitations

Last Updated:
May 14, 2025
Ashutosh Bhadauriya
Amazon Cognito Introduces Passwordless Authentication – but its built-in flows come with limitations
AWS Partner
Authsignal is an AWS-certified partner and has passed the Well-Architected Review Framework (WAFR) for its Cognito integration.
AWS Marketplace

The Passwordless Update: What’s New

On November 22, 2024, Amazon Cognito announced support for passwordless authentication, enabling users to sign in with passkeys, email one-time passwords (OTPs), or SMS OTPs through Cognito’s Managed Login UI.

This is a significant update, bringing passwordless options directly into Cognito's ecosystem without requiring custom workarounds. It's ideal for businesses already using AWS services that want to stay within the AWS ecosystem while adopting passwordless authentication for their login screen without major engineering effort.

Beyond Login Protection

While Cognito handles basic login security, businesses often need protection beyond just the front door. This is where Authsignal comes in.

When someone's already logged in but tries to transfer money, change account details, or access sensitive data, Authsignal provides the extra security checks you need without the heavy engineering lift.

Building these advanced protections in AWS requires significant engineering work. You'd need to create systems for:

  • Extra verification when someone attempts risky actions
  • Re-authentication for sensitive transactions
  • Advanced fraud detection and observability
  • Flexible security flows that match your specific business needs

Instead of your engineering team spending months building complex authentication systems, you can simply extend AWS Cognito’s functionality with Authsignal - unlocking enterprise-grade security features without the headaches.

How Authsignal Elevates Cognito

Authsignal enhances Cognito by adding the advanced authentication capabilities you need without burdening your engineering team:

  • Secure the Entire Journey - Add checks for sensitive actions, not just logins.
  • Step-Up Authentication - Verify identities before high-stakes moves like payments or data changes.
  • More Ways to Authenticate - Go beyond SMS and email with WhatsApp OTP, biometrics, push notifications, and magic links.
  • Cut Costs - Swap expensive SMS OTPs for alternatives like WhatsApp, leveraging its 3 billion+ users.
  • No-Code Flexibility - Use our no-code rules engine to configure policies.
  • Native Mobile App Support - Mobile SDKs to make it easy to integrate passkeys and other passwordless authentication methods into your mobile apps for a fully native experience.

Quick Integration

Authsignal works seamlessly with both Cognito's Managed Login UI and custom Lambda-triggered workflows.

  • Pre-Built UI: Drop Authsignal’s low-code flows into Cognito’s hosted UI for instant passwordless options like passkeys or WhatsApp OTP.
  • Client SDKs: For full control, use Authsignal’s SDKs (web, iOS, Android, React Native, Flutter) to craft custom UIs. Add features like biometric sign-in to native apps with just a few lines of code.

Cognito + Authsignal: Better Together

AWS Cognito’s passwordless authentication is a great step toward modern authentication, enhancing both security and user experience. Authsignal makes it exceptional by adding flexibility, advanced security features, and deeper user insights.

Ready to enhance your authentication strategy? Explore Authsignal’s Cognito integration or schedule a demo to see Authsignal in action.

Try out our passkey demo
Passkey Demo
Have a question?
Talk to an expert
Related Resources
Authsignal docs on using passkeys in a web apparrow right
Authsignal docs on AWS Cognitoarrow right
NewsletterDemo PasskeysView docs
AWS Cognito
Passkeys
Passkeys implementation
Passwordless authentication
Multi-factor authentication
AWS
Cognito
You might also like
How Authsignal’s passkey uplift flow solves the password problem
September 12, 2025
Passwords are broken, but passkeys offer a secure, phishing-resistant future. See how Authsignal's passkey uplift flow helps apps drive adoption, reduce friction, and guide users toward a passwordless experience.
Passkeys
Step up authentication
Passkey uplift flows
Authsignal recognized as a KuppingerCole Rising Star in CIAM and passwordless authentication
September 4, 2025
Authsignal recognized by KuppingerCole as a Rising Star in CIAM and passwordless authentication for its API-driven, modular approach that integrates with existing IDPs.
Awards
KuppingerCole
Passwordless authentication
CIAM
What issuing and verifying millions of passkeys has taught us at Authsignal
August 14, 2025
Discover key lessons from issuing and verifying millions of passkeys at Authsignal. Explore adoption trends, real-world enterprise results, and why the passwordless future is arriving faster than expected.
Passkeys
Authsignal
Passwordless authentication
Analysis

Secure your customers’ accounts today with Authsignal

Passkey demoCreate free account

Authsignal is multi-factor authentication (passwordless authentication) as a service. Focused on powering mid-market and enterprise businesses to rapidly deploy optimized good customer flows that enable a flexible and risk-based approach to authentication.

AICPA SOCFido Certified
LinkedInTwitter
Passwordless / multi-factor authentication (MFA)
Pre-built UI (low code)UI components (customizable)Custom UI (flexible)
Why Authsignal?
Drop-in authentication
PasskeysBiometric authenticationWhatsApp OTPSMS OTPEmail OTPMagic linksAuthenticator apps (TOTP)Push authenticationPalm biometrics
Rules and policies engine
User observability
Industries
Financial services
Marketplace
e-Commerce
FinTech
Crypto
View all industries
Teams
Engineers
Use cases
Account takeovers (ATO)
Go passwordless
Call center
SMS cost optimization
Existing apps
View all use cases
Identity providers (IDPs)
Amazon Cognito
Auth0
Azure AD B2C
Custom identity provider
Duende IdentityServer
Keycloak
NextAuth.js
Integrations
C#
Java
Node.js
Open ID Connect (OIDC)
PHP
Python
React
Ruby
Ruby on Rails
Compare
Twilio Verify vs AuthsignalAuth0 vs AuthsignalAWS Cognito vs Authsignal + AWS Cognito
Resources
BlogDeveloper docsFree Figma mobile passkeys templateFree Figma desktop passkeys templateFree Figma webapp passkeys templatePress releasesAboutContact
What is
Passwordless Authentication
What is MFA (Multi-Factor Authentication)?
United States
+1 214 974-4877
Ireland
+353 12 676529
Australia
+61 387 715 810
New Zealand
+64 275 491 983
© 2024 Authsignal - All Rights Reserved
Terms of servicePrivacy policySecuritySystem statusCookies