Recently Updated Pages
Grant duration (access period override)
Users are assigned a default "grant period" (in minutes), either within Knocknoc for local users,...
Allowlist/EDL access
Allowlists or External Dynamic Lists (EDLs) served from Knocknoc require an API key for access, i...
Manage user sessions
User sessions can be terminated using the API. This is handy for integration with revocation syst...
LOOTOTL - Last One Out Turn Off The Lights
Knocknoc keeps a track of the IPs and tries to be kind to users that share IPs. This means that i...
Additional client IP addresses
Capturing additional client IP addresses A client may exhibit behaviour where multiple IP addres...
Logging
Logging is important - we love logging. Because of this, we have included an easy to find, follo...
AWS WAF Ipset
Below is a concise guide for a sysadmin (or developer) to set up and configure AWS WAF with a cus...
Apache Webserver
Apache 2.4 and above have slightly different ACL syntax, so this page covers how you can use Knoc...
Nginx
Nginx support via script was added in knocknoc-agent version 1.0.30. This allows for flexible ACL...
IPsets with Shorewall
This is an example that lets you use Shorewall https://shorewall.org/index.html and IPsets to dyn...
Mikrotik RouterOS
The scripting backend can be used for MikroTik RouterOS config updates as well. Here is a sample ...
IPsets with UFW
This is an example that lets you use UFW (https://wiki.ubuntu.com/UncomplicatedFirewall) and IPse...
Custom Script
The "Custom Script" Knoc type is simply a script the agent can execute that takes a fixed set of ...
AWS (EC2) Security Groups
Knocknoc can easily connect to AWS using common utilities and IAM credentials, and update the all...
Allowlist (EDLs)
The Allowlist backend makes a list of active IP address grants available via the Knocknoc server ...
SAML
SAML is an in-depth topic, however it represents the best option for securing users, and providin...
SAML with EntraID (Azure AD)
The following example assumes your Knocknoc instance is located at https://demo.knoc.cloud. Where...
SAML with CyberArk
CyberArk integrates with Knocknoc via the "Web Apps" component, passing through SAML assertions. ...
Debugging & log levels
Things go wrong from time to time, the best way to understand more detail is to increase the log ...
Cisco (SFMC/Firepower)
TheĀ Cisco Secure Firewall Management Console (formerly known as Firepower) integration allows Kn...