The AWS Cognito component user pool User Pool has not yet been launched in China. Identity Cloud IDaaS can completely replace the Cognito user pool. It uses the identity cloud to perform user authentication and integrates the Coginto identity pool Identity Pool to achieve seamless and secure access to AWS resources.
Challenges facing businesses
-
AWS Cognito China site does not yet provide user pool User: Because AWS China site does not provide user pool User Pool service, domestic enterprises or foreign institutions in China cannot normally access AWS services, such as Amazon S3, DynamoDB, Lambda, etc.
-
Domestic localization and customized identity authentication needs: AWS is difficult to support domestic customers’ preference for social media such as WeChat and Alipay, as well as the diversified choices of channel carriers such as official accounts and mini programs; enterprises’ personalized needs need to find powerful manufacturers in China Fulfill localization requirements.
-
Data security and compliance requirements: As relevant domestic laws and regulations continue to strengthen the protection of personal data, the data of domestic enterprises or foreign-invested institutions in China continue to be stored overseas, facing relevant data security and compliance risks.
-
Requirements for Global Federation: Domestic Local and international Global business and management relationships require experienced suppliers like Zhuyun to help realize the Federation of domestic business and international business.
solution
Integrate Coginto identity pool to seamlessly access AWS services
Zhuyun IDaaS and Cognito Identity Pool adopt federated authentication, and the application uses any standard protocol to integrate IDaaS. After the user is successfully authenticated through the IDaaS platform, the IDaaS is called to obtain the Token interface. The application exchanges the Token for AWS credentials and uses the AWS credentials to access AWS related services, such as Amazon S3, DynamoDB, Lambda and other services.
Powerful user pool directory to easily build a unified OneID
Amazon Cognito User Pools provide enterprises with a secure identity store directory that can scale to millions of users. Zhuyun IDaaS also provides a user pool that is elastically scalable and has huge capacity to accommodate the continuous growth of business requirements of enterprises. It is pre-integrated with a variety of domestic and international upstream identity sources, and can be easily configured to import organization, employee and other information into the IDaaS user pool based on enterprise business needs.
-Support DingTalk, Enterprise WeChat, and Feishu as identity sources.
-Support AD and LDAP as identity sources.
-Support Beisen, Xinrenxinshi, Mingcai, and SAP SuccessFactors as identity sources.
Diversified authentication methods make identity verification safer and more convenient
Cognito User Pool helps enterprise customers log in through social identity providers such as Apple, Google, Facebook and Amazon, as well as enterprise identity providers such as SAML and OpenID Connect. Zhuyun IDaaS pre-integrates a large number of authentication sources. In addition to supporting overseas social networks such as Facebook and Google, it also supports a large number of social methods such as WeChat, Weibo, QQ, and Alipay that domestic customers are accustomed to, helping corporate customers to quickly empower them.
Make the connection between foreign Global and Local domestic business smoother
For applications that need to access AWS services, IDaaS identity authentication and the Cognito identity pool can be used to achieve seamless access to AWS services. Domestic business applications that do not need to access AWS services can use the IDaaS identity cloud to realize upstream and downstream identity linkage throughout the user life cycle, realize unified authentication and two-factor authentication, and achieve precise control of user access to application systems through unified authorization and access control policies.
Multiple security and full-link defense to easily meet security and compliance
As a cloud-native identity cloud service, Zhuyun IDaaS has always regarded security and compliance as top priorities. We consistently comply with the compliance requirements of different countries and regions, use multiple anti-data leakage measures, and comprehensive Security protection mechanisms ensure the continuous and stable operation of your business, helping enterprises easily meet security and compliance requirements.
A complete application ecosystem makes application integration easier
Pre-integrated 1000+ common applications, ready to use out of the box, with zero implementation cost. Zhuyun IDaaS identity management platform is pre-set with a large number of application templates, which can be quickly implemented and put into production in various enterprise usage scenarios; it supports a variety of open standard protocols, allowing your local self-developed applications to be quickly integrated; it supports OIDC, SAML, OAuth, CAS, WS-Federation, Radius and other international standard protocols. Supports 10+ multi-language SDK development kits to help developers quickly integrate in 5 minutes.
