This article is part three of a series on Amazon Verified Permissions, focusing on integration with Amazon Cognito. It explains how Amazon Cognito serves as an identity platform supporting authentication and authorization for web and mobile applications. The article covers Cognito User Pools, detailing how identity tokens contain user identity claims while access tokens are used for authorizing API operations. It discusses how tokens can be customized using Lambda triggers to enrich them with additional claims. The article also explains how to model Cognito token claims within Amazon Verified Permissions policies, mapping identity token claims as attributes and access token claims as context objects. Finally, it demonstrates how to integrate Cognito as an identity source in a Verified Permissions policy store using Infrastructure as Code. The author notes some current limitations, including lack of support for Cognito group claims and Test Bench testing, and previews a complete example in the next article.