Skip to main content

Recently Updated Pages

v6.0

Changelog and Roadmap

We're excited to announce the release of Knocknoc 6, a major leap forward in attack surface reduc...

Updated 5 months ago by Adam

Grant duration (access period override)

Admin Guide Access

Users are assigned a default "grant period" (in minutes), either within Knocknoc for local users,...

Updated 5 months ago by Adam

Allowlist/EDL access

Admin Guide Knocknoc API

Allowlists or External Dynamic Lists (EDLs) served from Knocknoc require an API key for access, i...

Updated 5 months ago by Adam

Manage user sessions

Admin Guide Knocknoc API

User sessions can be terminated using the API. This is handy for integration with revocation syst...

Updated 5 months ago by Adam

LOOTOTL - Last One Out Turn Off The Lights

Admin Guide Access

Knocknoc keeps a track of the IPs and tries to be kind to users that share IPs. This means that i...

Updated 5 months ago by Adam

Additional client IP addresses

Admin Guide Access

Capturing additional client IP addresses A client may exhibit behaviour where multiple IP addres...

Updated 5 months ago by Adam

AWS WAF Ipset

Admin Guide Knocs (backends)

Below is a concise guide for a sysadmin (or developer) to set up and configure AWS WAF with a cus...

Updated 5 months ago by Dave

Apache Webserver

Admin Guide Knocs (backends)

Apache 2.4 and above have slightly different ACL syntax, so this page covers how you can use Knoc...

Updated 5 months ago by Adam

Nginx

Admin Guide Knocs (backends)

Nginx support via script was added in knocknoc-agent version 1.0.30. This allows for flexible ACL...

Updated 5 months ago by Dylan

Mikrotik RouterOS

Admin Guide Knocs (backends)

The scripting backend can be used for MikroTik RouterOS config updates as well. Here is a sample ...

Updated 5 months ago by Dave

Allowlist (EDLs)

Admin Guide Knocs (backends)

The Allowlist backend makes a list of active IP address grants available via the Knocknoc server ...

Updated 5 months ago by Adam

SAML

Admin Guide Authentication

SAML is an in-depth topic, however it represents the best option for securing users, and providin...

Updated 6 months ago by Adam

SAML with CyberArk

Admin Guide Authentication

CyberArk integrates with Knocknoc via the "Web Apps" component, passing through SAML assertions. ...

Updated 6 months ago by Adam

Debugging & log levels

Admin Guide Troubleshooting

Things go wrong from time to time, the best way to understand more detail is to increase the log ...

Updated 6 months ago by Adam

Cisco (SFMC/Firepower)

Admin Guide Knocs (backends)

The  Cisco Secure Firewall Management Console (formerly known as Firepower) integration allows Kn...

Updated 7 months ago by Adam

Microsoft Entra

Admin Guide Knocs (backends)

Overview This integration is designed to manage named locations in Microsoft Azure Conditional A...

Updated 7 months ago by Adam

FortiOS, FortiProxy, Palo Alto, or SSL VPN

Admin Guide Use cases

Protect your existing Fortigate or Palo assets from direct internet or internal exposure by intro...

Updated 7 months ago by Adam

Juniper SRX

Admin Guide Knocs (backends)

Passive, Active or a combination Passive - Knocknoc's Allowlist features provides a passive inte...

Updated 7 months ago by Adam

SAML with OKTA

Admin Guide Authentication

The following example assumes your Knocknoc instance is located at https://demo.knoc.cloud. Where...

Updated 7 months ago by Adam

Firewall Manager access (IT MSP)

Admin Guide Use cases

An IT managed services provider maintained multiple Fortinet firewalls on behalf of customers, of...

Updated 8 months ago by Adam
Back to top