Recorded Future only supports the SP-Initiated (Service Provider) SSO. This requires users to first visit the Recorded Future platform to initiate a login for both OIDC and SAML.
Users are required to enter the SSO_KEY during their login in order to be directed to their organization's Identity Provider. Recorded Future uses the SSO_Key to identify a user's organization. This is used to prevent IdP and credential Spoofing during the IdP-Discovery process.
Depending on a user's browser settings, once a successful SSO login has completed, a cookie will be set and the browser may remember the SSO_KEY for future use. Should the browser's cache be cleared, the user may need to re-enter the SSO_KEY. The SSO_Key should be retained for potential future use.
The SSO_KEY can be sent to a user via the platform after SSO has been initiated. Once initiated, if a user elects to use the Forgot Password option, the SSO_KEY will then be sent from the system to the user. This option is only available on existing active accounts in the system. Should a user not receive the message generated by the system, users should reach out to our Support team at support@recordedfuture.com.
End-User Login Procedure:
- Visit https://app.recordedfuture.com
- Once there, you can click the 'Sign In With SSO' button
- On their initial login, you will need to your enter the SSO_KEY
- You’ll then be redirected to your organization's authentication service
- Once authenticated, you’ll then be redirected to the Recorded Future platform and logged in
Additional Information: