Authsignal secures millions of passkey transactions out of our hosted Sydney region.

Authsignal secures millions of passkey transactions out of our hosted Sydney region.

Join us today!
Blog
/
Current article

Amazon Cognito Introduces Passwordless Authentication – but its built-in flows come with limitations

Last Updated:
May 14, 2025
Ashutosh Bhadauriya
Amazon Cognito Introduces Passwordless Authentication – but its built-in flows come with limitations
AWS Partner
Authsignal is an AWS-certified partner and has passed the Well-Architected Review Framework (WAFR) for its Cognito integration.
AWS Marketplace

The Passwordless Update: What’s New

On November 22, 2024, Amazon Cognito announced support for passwordless authentication, enabling users to sign in with passkeys, email one-time passwords (OTPs), or SMS OTPs through Cognito’s Managed Login UI.

This is a significant update, bringing passwordless options directly into Cognito's ecosystem without requiring custom workarounds. It's ideal for businesses already using AWS services that want to stay within the AWS ecosystem while adopting passwordless authentication for their login screen without major engineering effort.

Beyond Login Protection

While Cognito handles basic login security, businesses often need protection beyond just the front door. This is where Authsignal comes in.

When someone's already logged in but tries to transfer money, change account details, or access sensitive data, Authsignal provides the extra security checks you need without the heavy engineering lift.

Building these advanced protections in AWS requires significant engineering work. You'd need to create systems for:

  • Extra verification when someone attempts risky actions
  • Re-authentication for sensitive transactions
  • Advanced fraud detection and observability
  • Flexible security flows that match your specific business needs

Instead of your engineering team spending months building complex authentication systems, you can simply extend AWS Cognito’s functionality with Authsignal - unlocking enterprise-grade security features without the headaches.

How Authsignal Elevates Cognito

Authsignal enhances Cognito by adding the advanced authentication capabilities you need without burdening your engineering team:

  • Secure the Entire Journey - Add checks for sensitive actions, not just logins.
  • Step-Up Authentication - Verify identities before high-stakes moves like payments or data changes.
  • More Ways to Authenticate - Go beyond SMS and email with WhatsApp OTP, biometrics, push notifications, and magic links.
  • Cut Costs - Swap expensive SMS OTPs for alternatives like WhatsApp, leveraging its 3 billion+ users.
  • No-Code Flexibility - Use our no-code rules engine to configure policies.
  • Native Mobile App Support - Mobile SDKs to make it easy to integrate passkeys and other passwordless authentication methods into your mobile apps for a fully native experience.

Quick Integration

Authsignal works seamlessly with both Cognito's Managed Login UI and custom Lambda-triggered workflows.

  • Pre-Built UI: Drop Authsignal’s low-code flows into Cognito’s hosted UI for instant passwordless options like passkeys or WhatsApp OTP.
  • Client SDKs: For full control, use Authsignal’s SDKs (web, iOS, Android, React Native, Flutter) to craft custom UIs. Add features like biometric sign-in to native apps with just a few lines of code.

Cognito + Authsignal: Better Together

AWS Cognito’s passwordless authentication is a great step toward modern authentication, enhancing both security and user experience. Authsignal makes it exceptional by adding flexibility, advanced security features, and deeper user insights.

Ready to enhance your authentication strategy? Explore Authsignal’s Cognito integration or schedule a demo to see Authsignal in action.

Try out our passkey demo
Passkey Demo
Have a question?
Talk to an expert
Related Resources
Authsignal docs on using passkeys in a web apparrow right
Authsignal docs on AWS Cognitoarrow right
NewsletterDemo PasskeysView docs
AWS Cognito
Passkeys
Passkeys implementation
Passwordless authentication
Multi-factor authentication
AWS
Cognito
You might also like
What happens when your passkey device is lost? Understanding recovery and device sync
July 25, 2025
Losing a device with your passkeys isn’t as catastrophic as many fear. Thanks to cloud sync, cross-device authentication, and advanced recovery methods, your access and security remain intact. Learn how Apple, Google, and others handle device loss, and the best practices to keep users safe in a passwordless world.
Passkeys
Synced passkeys
Passkey recovery
Passkeys implementation
How modern authentication is fixing call center security and customer experience
July 18, 2025
Discover how modern authentication is transforming call center security and customer experience. Learn about passkeys, biometrics, and phishing-resistant solutions that reduce call times while preventing fraud.
Call center authentication
Passkeys
Biometric authentication
How to implement adaptive MFA with passkeys for smarter, risk-based authentication
July 9, 2025
Learn how to build a secure, seamless money transfer experience with passkeys for adaptive MFA. Discover how Authsignal intelligently applies passkey authentication based on real-time risk, like anonymous IPs, high-value transfers, and unusual behavior.
Passkeys
Multi-factor authentication
Adaptive MFA
Implementation

Secure your customers’ accounts today with Authsignal.

Passkey demoCreate free account

Authsignal is multi-factor authentication (passwordless authentication) as a service. Focused on powering mid-market and enterprise businesses to rapidly deploy optimized good customer flows that enable a flexible and risk-based approach to authentication.

AICPA SOCFido Certified
LinkedInTwitter
Passwordless / multi-factor authentication (MFA)
Pre-built UI (low code)UI components (customizable)Custom UI (flexible)
Why Authsignal?
Drop-in authentication
PasskeysBiometric authenticationWhatsApp OTPSMS OTPEmail OTPMagic linksAuthenticator apps (TOTP)Push authenticationPalm biometrics
Rules and policies engine
User observability
Industries
Financial services
Marketplace
e-Commerce
FinTech
Crypto
View all industries
Teams
Engineers
Use cases
Account takeovers (ATO)
Go passwordless
Call center
SMS cost optimization
Existing apps
View all use cases
Identity providers (IDPs)
Amazon Cognito
Auth0
Azure AD B2C
Duende IdentityServer
Keycloak
NextAuth.js
Integrations
C#
Java
Node.js
Open ID Connect (OIDC)
PHP
Python
React
Ruby
Ruby on Rails
Compare
Twilio Verify vs AuthsignalAuth0 vs AuthsignalAWS Cognito vs Authsignal + AWS Cognito
Resources
BlogDeveloper docsFree Figma mobile passkeys templateFree Figma desktop passkeys templateFree Figma webapp passkeys templatePress releasesAboutContact
What is
Passwordless Authentication
What is MFA (Multi-Factor Authentication)?
United States
+1 214 974-4877
Ireland
+353 12 676529
Australia
+61 387 715 810
New Zealand
+64 275 491 983
© 2024 Authsignal - All Rights Reserved
Terms of servicePrivacy policySecuritySystem statusCookies