Howto add Azure AD as AWS Cognito Federated IdP


G’day Everyone.

I have a Web application running with AWS S3, RDS, Lambda and API Gateway using an AWS Cognito user pool as login service. This is working good so far. But now i would like to integrate it with Azure ID.

Does someone has a good documentation about it. I can only find documentation for the other way round or for integration Azure AD into the AWS Console.
The reason could be that this feature just went from beta to production a few weeks ago.


The steps are quite long, but I’ve created a tutorial on setting this up.
There is a current bug within the AzureAD web console that prevents changing the App ID to a URN, but it can be worked around by modifying the parameter with AzureAD powershell.

See the following blog post here:

Leave a Reply