AWS Certified Security – Specialty — Question 17
The Security Engineer for a mobile game has to implement a method to authenticate users so that they can save their progress. Because most of the users are part of the same OpenID-Connect compatible social media website, the Security Engineer would like to use that as the identity provider.
Which solution is the SIMPLEST way to allow the authentication of users using their social media identities?
Answer options
- A. Amazon Cognito
- B. AssumeRoleWithWebIdentity API
- C. Amazon Cloud Directory
- D. Active Directory (AD) Connector
Correct answer: A
Explanation
The correct choice, Amazon Cognito, simplifies user authentication by integrating directly with social media identities and managing user sessions effectively. The AssumeRoleWithWebIdentity API, while useful, requires more configuration and is not as straightforward for this scenario. Amazon Cloud Directory and Active Directory (AD) Connector are not designed specifically for social media identity integration, making them less suitable for this requirement.