Package Repository Key expired

Debian distros (Ubuntu etc)

If you are getting the this error:

Failed to fetch https://packages.knocknoc.io/debian/dists/bookworm/InRelease 
The following signatures were invalid: EXPKEYSIG E3AB5DF76BBF701F Knocknoc Support <support@knocknoc.io>

You may have the old knocknoc packages key, which expired 07/10/2025 after two years of hard labour. We have refreshed the key, so you simply need to run:

curl https://packages.knocknoc.io/key/knocknoc_public_key.asc | sudo tee /etc/apt/keyrings/knocknoc-pub.asc

This will refresh the key from our packages repository and your apt update will work again.

Redhat Distros (Centos, Alma, RHEL etc)

If you are getting a similar error with the key on Redhat based distros, please run this command as a one off to get the key repo key:

sudo rpm --import https://packages.knocknoc.io/key/knocknoc_public_key.asc

Then you will be able to install the latest server and agent via yum.

Use cases (overview)

SSH

FortiOS, FortiProxy, Palo Alto, or SSL VPN

VPN and ransomware

High security subnets and JIT network access

Financial services data partner, secure web upload

Web applications (layer-7 filtering)

Remote desktop, simple small business example

Firewall Manager access (IT MSP)

Ivanti Connect Secure

Video

VOIP

AWS infrastructure

Azure Portal

Licensing Knocknoc

SaaS deployment

Server installation (on premise)

Agent installation

Knocker - a cli utility for agents

Create users

Create groups

Admins

Settings

Updates and upgrades

BYO PostgreSQL

Knocknoc client (scriptable login)

Allowlist (EDLs)

IPSet (Linux Netfilter/IPTables)

Palo Alto

Fortigate Address Groups (Fortinet)

FortiManager

Cisco (SFMC/Firepower)

Sophos (UTM)

Sophos (SFOS/XGS)

Juniper SRX

HAProxy

HAProxy + KAT

Microsoft Entra

Microsoft Azure NSG

AWS (EC2) Security Groups

AWS WAF Ipset

IPsets with UFW

IPsets with Shorewall

Mikrotik RouterOS

Nginx

Apache Webserver

Custom Script

Local Authentication (MFA included)

SAML

SAML principles and terms

SAML with EntraID (Azure AD)

SAML with OKTA

SAML with Gsuite as IDP

SAML with Jumpcloud

SAML for the Admin Interface

SAML with Keycloak

SAML with CyberArk

SAML with Authentik

Knocknoc with ADFS

LDAP

Grant and revoke process

Click to grant/revoke

Grant duration (access period override)

Auto-browse Knocs

VPNs, internal addresses and access

Additional client IP addresses

LOOTOTL - Last One Out Turn Off The Lights

User authentication

Manage user sessions

Allowlist/EDL access

Agent registration

Time for NTP

LDAP troubleshooting tips

Knocknoc server behind HAProxy

HAProxy tips and tricks

Debugging & log levels

Package Repository Key expired

Package Repository Key expired

Debian distros (Ubuntu etc)

Redhat Distros (Centos, Alma, RHEL etc)