Reputation: 1243
Impersonating with MFA enabled
If our user has MFA enabled in cognito and they file a support case where we as the admin would have to 'impersonate' their account to see what is going on. How would that work? There doesn't seem to be a temporary disable of MFA in cognito right? Would we have to request that the user disable MFA on their end before we can use our endpoints to impersonate the login?
Upvotes: 0
Views: 336
Answers (1)
Reputation: 4480
There is no way to "impersonate" the user with or without MFA unless the user is willing to give you their credentials! Then you can theoretically also convince them to give you their MFA as soon as they recieve it. But all of this would really bad practice. You should look for alternative like creating a dummy account and trying to recreate the issue that a user is facing. If you could give details about what you are trying to achieve by impersonating the user, maybe we could figure out some alternatives.
Upvotes: 1
Related Questions
- Setup cognito hosted UI with MFA
- How to ignore MFA Authentication in AWS Cognito
- Cognito and MFA
- AWS Cognito Multi-Factor Authentication using the Hosted UI
- Impersonate user in AWS Cognito
- Sign in as someone else in AWS Cognito
- How to setup the "mfa_setup" challenge on amazon cognito's multi factor authentication?
- AWS Cognito - MFA setup
- Cognito & Two Factor Authentication
- Verify user identity using cognito