Amazon Cognito is the service designed specifically for user authentication and authorization in AWS. It facilitates the process of adding sign-up, sign-in, and access control to web and mobile applications. With Cognito, you can manage user pools that provide a built-in user directory, allowing you to authenticate users either through Cognito itself or through other identity providers such as Google, Facebook, and more.
Cognito offers additional features such as multi-factor authentication and the ability to synchronize user data across devices, enhancing the overall user experience. This service is tailored for managing user identities and controlling access to AWS resources based on those identities, making it a robust solution for user authentication and authorization needs within the AWS ecosystem.
The other options provided do not serve the purpose of user authentication. AWS Config is primarily focused on resource configuration management, Lambda@Edge enables serverless computing at the edge, and CloudFront is a content delivery network. None of these options directly facilitate managing user identities or authentication processes like Amazon Cognito does.