Skip to main content

Recently Updated Pages

Grant duration (access period override)

Admin Guide Access

Users are assigned a default "grant period" (in minutes), either within Knocknoc for local users,...

Updated 3 weeks ago by Adam

Allowlist/EDL access

Admin Guide Knocknoc API

Allowlists or External Dynamic Lists (EDLs) served from Knocknoc require an API key for access, i...

Updated 3 weeks ago by Adam

Manage user sessions

Admin Guide Knocknoc API

User sessions can be terminated using the API. This is handy for integration with revocation syst...

Updated 3 weeks ago by Adam

LOOTOTL - Last One Out Turn Off The Lights

Admin Guide Access

Knocknoc keeps a track of the IPs and tries to be kind to users that share IPs. This means that i...

Updated 3 weeks ago by Adam

Additional client IP addresses

Admin Guide Access

Capturing additional client IP addresses A client may exhibit behaviour where multiple IP addres...

Updated 3 weeks ago by Adam

Logging

Admin Guide

Logging is important - we love logging. Because of this, we have included an easy to find, follo...

Updated 3 weeks ago by Adam

AWS WAF Ipset

Admin Guide Knocs (backends)

Below is a concise guide for a sysadmin (or developer) to set up and configure AWS WAF with a cus...

Updated 3 weeks ago by Dave

Apache Webserver

Admin Guide Knocs (backends)

Apache 2.4 and above have slightly different ACL syntax, so this page covers how you can use Knoc...

Updated 3 weeks ago by Adam

Nginx

Admin Guide Knocs (backends)

Nginx support via script was added in knocknoc-agent version 1.0.30. This allows for flexible ACL...

Updated 3 weeks ago by Dylan

IPsets with Shorewall

Admin Guide Knocs (backends)

This is an example that lets you use Shorewall https://shorewall.org/index.html and IPsets to dyn...

Updated 3 weeks ago by Dave

Mikrotik RouterOS

Admin Guide Knocs (backends)

The scripting backend can be used for MikroTik RouterOS config updates as well. Here is a sample ...

Updated 3 weeks ago by Dave

IPsets with UFW

Admin Guide Knocs (backends)

This is an example that lets you use UFW (https://wiki.ubuntu.com/UncomplicatedFirewall) and IPse...

Updated 3 weeks ago by Adam

Custom Script

Admin Guide Knocs (backends)

The "Custom Script" Knoc type is simply a script the agent can execute that takes a fixed set of ...

Updated 3 weeks ago by Adam

AWS (EC2) Security Groups

Admin Guide Knocs (backends)

Knocknoc can easily connect to AWS using common utilities and IAM credentials, and update the all...

Updated 3 weeks ago by Dylan

Allowlist (EDLs)

Admin Guide Knocs (backends)

The Allowlist backend makes a list of active IP address grants available via the Knocknoc server ...

Updated 4 weeks ago by Adam

SAML

Admin Guide Authentication

SAML is an in-depth topic, however it represents the best option for securing users, and providin...

Updated 1 month ago by Adam

SAML with EntraID (Azure AD)

Admin Guide Authentication

The following example assumes your Knocknoc instance is located at https://demo.knoc.cloud. Where...

Updated 1 month ago by Adam

SAML with CyberArk

Admin Guide Authentication

CyberArk integrates with Knocknoc via the "Web Apps" component, passing through SAML assertions. ...

Updated 1 month ago by Adam

Debugging & log levels

Admin Guide Troubleshooting

Things go wrong from time to time, the best way to understand more detail is to increase the log ...

Updated 1 month ago by Adam

Cisco (SFMC/Firepower)

Admin Guide Knocs (backends)

TheĀ  Cisco Secure Firewall Management Console (formerly known as Firepower) integration allows Kn...

Updated 2 months ago by Adam