Select your cookie preferences

We use essential cookies and similar tools that are necessary to provide our site and services. We use performance cookies to collect anonymous statistics, so we can understand how customers use our site and make improvements. Essential cookies cannot be deactivated, but you can choose “Customize” or “Decline” to decline performance cookies.

If you agree, AWS and approved third parties will also use cookies to provide useful site features, remember your preferences, and display relevant content, including relevant advertising. To accept or decline all non-essential cookies, choose “Accept” or “Decline.” To make more detailed choices, choose “Customize.”

Preferences
Contact Us
Feedback
AWS Documentation
Create an AWS Account
Email one-time password to users created with API - AWS IAM Identity Center

Email one-time password to users created with API

PDFRSS

When you create users with the CreateUser API operation, they don't have passwords.

You can choose to send users created with the CreateUser API an email with a one-time password (OTP) after their first attempt to sign in, if you’ve specified an email for the user when they were created. After receiving the email OTP, when a user signs in, they must set a new password. If you don’t enable this setting, then you must generate a one-time password and share with users that you create using the CreateUser API.

To send an email OTP to users created with the CreateUser API

  1. Open the IAM Identity Center console.

  2. Choose Settings.

  3. On the Settings page, choose the Authentication tab.

  4. In the Standard authentication section, choose Configure.

  5. A dialog box appears. Check the box next to Send email OTP. Then, choose Save. The status updates from Disabled to Enabled.

Need help?

PrivacySite termsCookie preferences
© 2025, Amazon Web Services, Inc. or its affiliates. All rights reserved.