Which AWS service will meet these requirements?
AWS Audit Manager
Amazon Cognito
AWS Security Hub
AWS IAM Identity Center (AWS Single Sign-On)
Explanations:
AWS Audit Manager is primarily used for auditing and compliance purposes. It helps organizations assess their compliance with regulatory standards and best practices but does not provide user management or access control functionalities for workforce users.
Amazon Cognito is mainly used for adding user sign-up, sign-in, and access control to web and mobile apps. While it provides user management features, it is not designed specifically for centrally managing access across AWS accounts and applications for workforce users.
AWS Security Hub is a security service that provides a comprehensive view of security alerts and security posture across AWS accounts. It does not focus on user management or access control, making it unsuitable for managing sign-in security for workforce users.
AWS IAM Identity Center (AWS Single Sign-On) is designed specifically for managing user identities and access across multiple AWS accounts and applications. It allows organizations to create workforce users and centrally manage their access, aligning perfectly with the company’s requirement for sign-in security management.