Settings
Settings
The Settings page lets administrators configure authentication, server options, threat intelligence, branding, and other system-wide preferences. Open it from the Admin portal sidebar.
Some sections are hidden when running on Knocknoc Cloud.
License
The Knocknoc license can be set via the support page (previously located on the settings page). To set the license, paste your license key from the license portal into the "License Key" box in the "License & Plan" section. This requires the Knocknoc server to have outbound internet access.
Settings page:
Support page:
The License section displays the current server version. To view full license details (entitlements, expiry, support status), view the Support page.
Authentication
Authentication settings are split into two tabs: SAML and LDAP.
It is recommended to use the Metadata url for SAML integration. Note you will need to generate a keypair unless a pair is uploaded. Follow the SAML documentation for more information.
For information on configuring LDAP, follow the LDAP documentation here.
Public URL
The public URL is the externally-reachable address of your Knocknoc server (e.g. https://knocknoc.example.com). Set this to the URL that users and identity providers use to reach Knocknoc.
Server Configuration
SSL/TLS Certificates
You can manage your Knocknoc server SSL certificates directly via the admin portal.
You may upload new key files and certificate files in this UI. The certificate and key file will be validated against each other, so there is no risk of uploading an invalid pair. If the server has multiple certificates (e.g. from a certificate chain), a dropdown lets you select which certificate to inspect.
Logging & Diagnostics
| Field | Description |
|---|---|
| Debug mode | Enables verbose debug logging on the server. Turn this off after troubleshooting, as it produces a large volume of log output. |
| GELF Listener URL | Sends structured log events in Graylog Extended Log Format (GELF) to an external log collector. Supported protocols: udp://, tcp://, tls://. Example: tcp://log.example.com:12201. Use this to forward logs to a SIEM, Graylog, or any system that accepts GELF input. |
Threat Intelligence
Knocknoc integrates with GreyNoise for IP reputation lookups. When configured, Knocknoc checks connecting IP addresses against GreyNoise's threat intelligence database.
This allows Knocknoc to block access attempts from malicious IPs.
Kiosk Settings
Kiosk mode (also called "Public Computer" mode) sets a shorter session duration for users on shared or public computers. When a user logs in from a kiosk, their session expires after the configured duration regardless of activity.
Branding
You can customize the look of the Knocknoc interface to match your organization's branding.
This includes changing the accent color in Knocknoc, which affects the color of UI elements. Enabling high accessibility mode, which subtly changes UI elements in the User dashboard to increase accessibility. Uploading your organizations logo to display in place of the Knocknoc logo.
