Cognito SMS Auth to SNS in a different region

1
votes

I have a Cognito set up in eu-central-1 and now I need SMS MFA to be activated in Cognito. AWS docs tells me that Cognito will send SMS through AWS SNS however, the SNS in region eu-central-1 does not have SMS availability.

I now have an SNS in a different region (us-east-1) with an SMS limit of $1000 but how can I connect the Cognito in eu-central-1 to send sms through SNS in us-east-1? Is it even possible or would I have to move my Cognito to us-east-1?

The Cognito role has the relevant permission to access/publish through SNS.

2
amazon-web-servicesamazon-cognitoamazon-sns

2 Answers

0
votes

According to the Cognito Developer Guide:

SMS messages from Amazon Cognito user pools are routed through Amazon SNS in the same region unless noted in the following table.

Amazon Cognito Region Supported SNS Regions
US East (Ohio) us-east-2 us-east-1
Asia Pacific (Mumbai) ap-south-1 ap-southeast-1
Asia Pacific (Seoul) ap-northeast-2 ap-notheast-1
Canada(Central) ca-central-1 us-east-1
Europe (Frankfurt) eu-central-1 eu-west-1
Europe (London) eu-west-2 eu-west-1

Check the docs for the latest but eu-central-1 gets routed through eu-west-1 at the time I'm writing this. I came across this with my deployment in us-east-2 which gets routed through us-east-1.

-1
votes

There is a screen to configure this for your AWS Cognito.

  1. Navigate to AWS Cognito -> Manage user pool
  2. Select the User Pool where notification has to be configured.
  3. Navigate to the section 'Message Customizations'
  4. Choose the SES Region where it is configured in your account and fill the remaining fields.
  5. In the option 'Do you want to send emails through your Amazon SES Configuration?' choose 'Yes - Use Amazon SES'.
  6. Go to bottom and save the changes (make necessary changes in other fields according to your requirement.)