Search Results

The Knocknoc orchestration Agent - which is deployed alongside managed infrastructure (not on desktops) - can be converted to an in-line reverse proxy, providing access control at layer-7 (HTTP/HTTPs) or layer-3 for TCP, linked to Knocknoc. This allows the cen...

The Knocknoc Server can be deployed in various ways to match your high-availability needs and deployment models. Ultimately the Knocknoc solution comprises these three components: Server Database Orchestration Agent(s) The Server (web-app) can be deployed: ...

If you installed Knocknoc Server before version 8.5 (September 2025), your instance is likely using a local SQLite database. The Knocknoc Server now uses PostgreSQL as its primary database. This guide explains how to use the "knocker convertdb" tool, which is ...

The SonicWall can be orchestrated in three ways, Actively (API call from an Orchestration Agent to the Firewall), Passively via SonicWalls DEAG polling capability, or a combination known as Passive+, where a DEAG is used with an active force-download-now call ...

Microsoft Windows comes equipped with a built-in native firewall which Knocknoc orchestrates to provide just-in-time network access control, effectively removing always-on attack surface for your Windows Servers. Ports and services like RDP become invisible, p...

Windows Servers and RDP/WinRM - removing pre-auth attack surface A mid-sized business uses RDP and WinRM to manage a Windows fleet of servers, however wasn't comfortable with always-on network exposure of these ports/protocols - even to internal management net...

On a Linux host as Root, execute the below command to setup and install a Knocknoc Agent. You will be stepped through the process. curl -sSL https://packages.knocknoc.io/setup/setup_knocknoc_agent.sh | bash The installer runs on Debian, Ubuntu, Redhat, Oracle,...

On a Windows machine as an Admin, download and install the Orchestration Agent. It will install as a service by default. You then provide token information to connect to your Knocknoc Server for centralized management.  This is not installed by end users for a...

Default deny is a wonderful thing, the best place to be - except when you lock yourself out. Thankfully Knocknoc has a break-glass control if you need. Follow these steps to add a 20 minute access path, it requires Admin access. Log in to your Admin cons...

Default deny is the best way to live. However sometimes you need to manually grant access for a new IP you don't control, or otherwise lock yourself out. Knocknoc lets Administrators safely create a short-lived manual access when needed. This is a good way to ...

Knocknoc can orchestrate Cloudflare IP lists to provide dynamic IP network allowlisting inbound to Cloudflare, should you use this to protect web or other assets. These IP lists are managed at the Account level, allowing use across the Cloudflare filtering ser...

Knocknoc 26.01 Knocknoc 26.01  sharpens the Palo Alto experience for both administrators and end-users, introducing a much simpler configuration option and stronger safeguards. It also adds Cloudflare support, improves multi-node deployments, and delivers broa...

Passive+, Passive or Active? Knocknoc orchestrates Palo Alto and Panorama devices in a number of ways; actively, passively or a combination known as Passive+. This allows Administrators to configure the appropriate level of trust, network access and orchestrat...

If you're after the very latest features or changes, and you know what you're doing - below is how to change from the main release channel, to the Beta channel. This does mean you're running Beta code, YMMV, and whilst you can move from Beta back to Main, it's...

Like all technology, backing up configuration files and data is paramount, in the case of Knocknoc the Server and Agent locations to capture are found below. Server Data resides in two locations; disk and database. For Linux, the default installation locati...

For additional security and identity verification, Knocs support a "Require TOTP code when accessing grant" option. Note that this TOTP is within the Knocknoc product, and is in addition to any MFA provided during an SSO session. For example if you have Entra...

Agent error code #298000 indicates that the agent failed to refresh an External Dynamic List (EDL) or dynamic external object on a firewall, for reasons that don't fall into more specific error categories. This error typically occurs when: The configured EDL ...

Agent error code #298002 indicates that the agent encountered a TLS/SSL certificate error when attempting to connect to a firewall. The secure connection could not be established because the certificate presented by the firewall failed validation. This error o...