Skip to main content


About 2 min

This session shows how to create an app client on the Cognito console. When registering the application, we are getting the following values that are needed for later configuration in Datawiza Cloud Management Console (DCMC):

  • Client ID
  • Client Secret
  • Issuer
  • Domain

Create a User Pool

  1. Log in to the AWS Consoleopen in new window account. Search Cognito in search bar: Cognito AWS MC

  2. Click Create a user pool: Cognito User Pool

  3. Check username and email, and then click Next: Cognito User Pool

  4. To proceed, verify that Authentication Apps is selected as your MFA method. If you are only testing, you may choose No MFA. Ensure that all settings are left as their defaults, and then click Next: MFA method

  5. If you want the Datawiza Access Proxy can pass more attributes, you can select the additional attributes here, and then click Next: Additional Attribute

  6. Choose Send email with Cognito and then click Next: Send Email

  7. Input the User pool name: Cognito User Pool

  8. Choose app type as Confidential client, and input the App client name, then click Next: Cognito User Pool

  9. Review all your settings and click the Create user pool: Finish Settings

Now, you have successfully created the app client. Note down the Pool ID: Cognito App Client

The Issuer we required is in the form of https://cognito-idp.${AWS-REGION}${Pool_ID}. For example, it should be for our test app client.

Click the App Integrated tab and scroll down to the bottom of the page. Click the client app you just created: Cognito App Client

Note down the App client id and App client secret: Cognito App Client

Click the Edit Hosted UI. Input Callback URL(s), which should be http://localhost:9772/datawiza/authorization-code/callback and choose Cognito user pool for Identity Providers. For OAuth 2.0 grant types, select Authorization code grant. For OpenID Conenct scopes, select Email, openid, and Profile. Then click Save changes. Cognito App ClientCognito App Client

Select Domain, input the Domain prefix and note down the whole domain. It is the Domain we required: Cognito App Client

User and Groups


  1. Select Users and Groups, click Create User. Input the basic information, then click Create User: Cognito Users and Groups

Groups (Optional)

  1. Select Groups tab and click Create group, Input the basic information, then click Create group: Cognito Users and Groups

  2. Click the group we just created, then click Add user to group: Cognito Users and Groups Add the user: Cognito Users and Groups


We have shown how to register an app client on Cognito. Please make sure to save the following values for later setting in Datawiza Cloud Management Console.

  • Client ID
  • Client Secret
  • Issuer
  • Domain


Getting Started with Amazon Cognitoopen in new window