Risky Business

Soap Box: Knocknoc glues your SSO to your firewalls for Just-in-Time network access

Mar 26, 2025

In this engaging conversation, Adam Pointon, CEO of Knocknoc, shares his expertise in innovative network access control solutions. He discusses the importance of securing Single Sign-On services and minimizing exposure by integrating advanced tools like Identity-Aware Proxies. Adam clarifies common misconceptions about SSO vulnerabilities and highlights strategies to isolate critical applications from the internet to enhance security. With a focus on Just-in-Time Network Access Control, he outlines how to streamline access while maintaining robust protection for sensitive environments.

30:46

Creator website

Episode guests

Adam Pointon

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Knocknoc enhances network security by allowing just-in-time access for authenticated users while minimizing exposure of sensitive applications to the internet.

The platform improves user experience through a redesigned, accessible management interface, facilitating easier installation and configuration across diverse organizations.

Deep dives

Understanding Knock Knock's Functionality

Knock Knock provides just-in-time network access control through a streamlined authentication process. By using a single sign-on (SSO) button, users can dynamically open access to specific IP addresses for a limited time, enabling secure interaction with legacy systems. This solution sits outside traditional firewall systems and instead orchestrates existing infrastructure, simplifying the access management process. This flexibility allows Knock Knock to adapt to various infrastructures while ensuring only authenticated users gain entry to sensitive services.

Intro

2min

Innovative Network Access Control Solutions

11min

Understanding SSO Vulnerabilities and Innovative Security Solutions

2min

Rethinking Network Access: Identity-Aware Proxies

5min

Enhancing Security Through Remote Access Solutions

4min

Enhancing Access Control with JITNAC

7min

In this Soap Box edition of Risky Business host Patrick Gray talks to Knocknoc CEO Adam Pointon about how to easily rein in attack surface by glueing your single sign-on service to your network controls.

Do your Palo Alto and Fortinet devices really need to be discoverable by ransomware crews? Does your file transfer appliance need to be open to the whole world? What about your SSH and RDP? Your Citrix? Your (gasp) Exchange Online servers??

You can do a lot with IP allowlisting and simple Identity Aware Proxies (IAPs) to minimise your exposure.

Knocknoc is a bit of a “Risky Business special”, too. Pat helped Knocknoc to raise a seed round through Decibel Partners where he’s a founder advisor. He also serves on Knocknoc’s board of directors.

This episode is also available on Youtube.

Show notes

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

Risky Business

Soap Box: Knocknoc glues your SSO to your firewalls for Just-in-Time network access

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Understanding Knock Knock's Functionality

Protecting Vulnerable Applications

Layered Security Approach for Enterprise Applications

Innovative Development and User Experience

Show notes

Remember Everything You Learn from Podcasts