Grant duration (access period override)
ForUsers additionalare security and temporal access control, Knoc's supportassigned a "click to grant" anddefault "clickgrant toperiod" revoke"(in option.
Thiseither requireswithin theKnocknoc userfor tolocal clickusers, or passed as a buttonSAML afterattribute loggingthrough in,"sessionDuration". prior to each grant being processed. This offers an additional layer of security and interactive workflow.
These arecan alsobe loggedoverridden per-Knoc, allowing certain access oaths to have shorter periods if so desired. For example, the default user-level period could be 8 hours (480 minutes), whereas access to a specific environment could be limited to 60 minutes.
These can be configured per-Knoc, as specificshown eventsbelow.
If during the users session their IP address changes, the expiry date/time will be retained - seemeaning logging.their session is not extended should the IP address change.