Skip to main content

Create Groups

Groups in Knocknoc map users to ACLsKnocs. and a userUsers can be assigned to multiple groups, to create a group in Knocknoc;

  1. Browse to the Knocknoc admin interface.
  2. Click on Groups on the left.
  3. Click Create Group on the right.
    1. Enter the name of the Group,Group. matchingIf the Group type is Dynamic or SAML and you expect it to match a group the IdP providedprovides, nameit ifmust thismatch isprecisely. aNote SAMLthat group.Entra uses GUID values for Groups, which must be entered in the Name field.
    2. Type a brief description to aid in quick identification.
    3. Check the ACLsKnocs requiredmapped for this group.
    4. If local or LDAP authentication is in use, check the users that need to be allocated to this group. If SAML authentication is in use this is done during user login.

Note:

Group Iftypes:
  • Dynamic Groups: These match group information received as part of the SAML/SSO login flow. They also allow linking local users to the same group.
  • Local Groups: These contain only local users and do not perform any matching against SAML group information received on login.
  • SAML Groups: These match group names or strings received during a user’s SAML authentication isand providedcannot viainclude SAML,local groupusers.
    • membership is set by the IdP. The Group Name in Knocknoc needs to match the Group Name provided by the IdP. 

Create Group.pngScreenshot 2025-04-10 at 13.44.43.png

Note: If authentication is provided via SAML, group membership is set and passed through from the IdP. The Group Name in Knocknoc needs to match the Group Name provided by the IdP. 

Back to top