AWS Security ChangesHomeSearch

AWS cognito documentation change

Service: cognito · 2025-03-02 · Documentation low

File: cognito/latest/developerguide/cognito-user-pool-settings-compromised-credentials.md

Summary

Updated link reference for viewing threat protection metrics

Security assessment

The change only updates a link reference without modifying the security-related content about compromised credentials.

Diff

diff --git a/cognito/latest/developerguide/cognito-user-pool-settings-compromised-credentials.md
index 74e28c2cd..56c8441b5 100644
--- a/cognito/latest/developerguide/cognito-user-pool-settings-compromised-credentials.md
+++ b/cognito/latest/developerguide/cognito-user-pool-settings-compromised-credentials.md
@@ -11 +11 @@ From the **Threat protection** menu of the Amazon Cognito console, you can confi
-When you choose **Allow sign-in** , you can review Amazon CloudWatch Logs to monitor the evaluations that Amazon Cognito makes on user events. For more information, see [Viewing threat protection metrics](./user-pool-settings-viewing-threat-protection-metrics.html). When you choose **Block sign-in** , Amazon Cognito prevents sign-in by users who use compromised credentials. When Amazon Cognito blocks sign-in for a user, it sets the user's [`UserStatus`](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UserType.html) to `RESET_REQUIRED`. A user with a `RESET_REQUIRED` status must change their password before they can sign in again.
+When you choose **Allow sign-in** , you can review Amazon CloudWatch Logs to monitor the evaluations that Amazon Cognito makes on user events. For more information, see [Viewing threat protection metrics](./metrics-for-cognito-user-pools.html#user-pool-settings-viewing-threat-protection-metrics). When you choose **Block sign-in** , Amazon Cognito prevents sign-in by users who use compromised credentials. When Amazon Cognito blocks sign-in for a user, it sets the user's [`UserStatus`](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UserType.html) to `RESET_REQUIRED`. A user with a `RESET_REQUIRED` status must change their password before they can sign in again.