Skip to main content

v26.05

Knocknoc 26.05

Knocknoc 26.05 brings threat intelligence blocking integration, expanded cloud and platform support, live configuration validation, and streamlined authentication workflow for a more seamless end-user access experience and more.

🚀 GreyNoise real-time blocking

  • Knocknoc can now check grant requests against GreyNoise's leading threat intelligence platform, blocking IPs flagged as scanners or known-malicious. This gives you a pre-grant layer of protection verified at time of access.
  • Block the entire internet, move to just-in-time allow-listing, but still enjoy the benefit of block-listing on a per-user basis - via real-time, verifiable intelligence powered by the world's largest and most advanced deception network.
  • Use your existing GreyNoise subscription, no additional costs or components required.

✨ User login experience

  • SAML-only login for users, remove the local-user option and automatically forward users to your IDP to streamline access and avoid confusion during major rollouts. Enable in settings, disable anytime if local-users are required, click here for more information.required. 
  • Instant referrer redirect is a new per-Knoc option that skips the grant countdown page and redirects users straight to the service they were trying to access. Goes hand-in-glove with the SAML-only login feature mentioned above, resulting in a fast but secure redirect experience, granting just in time network access without friction.

🛡️ Configuration validator

  • Fortinet validation verifies configurations live from the Knoc editor, before change deployment. The chosen orchestration agent checks connectivity, permissions, address group existence, and policy references, surfacing clear resolution guidance when something is not quite right.

🔌 Orchestrated systems uplift

  • Native nginx backend management is now native and simpler to deploy. The  Knocker CLI helper simplifies permissions during initial setup.

🛠️ Admin features

  • Manual grant durations can now be set by Admins during manually-issued or break-glass/test grants, rather than using a fixed default. Configured per-Knoc. You can also revoke these via the Admin UI.
  • Deleting a Knoc is now easier directly from the edit view instead of navigating back to the list.
  • Knocknoc Access Token details are now directly visible in the admin UI, making it easier to adjust identity-aware proxy configurations and complicated/shared reverse proxy environments.
  • Top ACLS has been removed, use the favorites instead.

🔐 Security & logging additions

  • SBOM  baked in, know precisely what the software bill of materials is within the deployed Server and Agents you are actually running. Not an outdated website link, but the raw contents within the binary you are running. For supply-chain compliance, security, and an increased ability to precisely understand the risks within the software you utilize.
  • User-agents are now stored for end-user accesses, improving audit trail, control and incident investigation. More is coming in this space...

🧹 Housekeeping

  • Async agent processing is faster for different backend types. A slow Azure NSG API call no longer blocks a fast IPSet grant from completing.
  • Allow-list processing has been improved for in-flight access revokes.

🐛 Bug fixes

  • A couple but nothing major.

Release date: 15th May 2026

How do I upgrade?

We intentionally require you to update Knocknoc and any orchestration Agents through your operating system, e.g., Linux package management. Ensuring you have complete control on the timing of upgrades and state of your machine, and intentionally avoid automatically updating.

Follow this guide to upgrade when you're ready.

Back to top