Server Access for Ex Libris
- Product: all
- Relevant for Installation Type: Local
Supported Connection Options
These are the several different levels of access that you can grant to Ex Libris so that Ex Libris can support and upgrade your server. The level of access you grant can affect Ex Libris’ ability to support your server, especially during emergency situations. This list is in increasing level of restriction of access. If your site's security policies preclude any of these options, contact Ex Libris Support.
Total Global Access
Secure Shell (SSH) is available; all ports are open to the world.
Note: This option is convenient but does not meet modern security standards
Through a Firewall SSH, file transfer protocol (FTP), and software ports are open to Ex Libris IP addresses.
Note: This option is the best compromise between security and usability.
Unlimited Access via SSH Port Forwarding
SSH is available to Ex Libris IP addresses; all other ports can be forwarded via the SSH protocol.
Access via VPN
Ex Libris is given an account and access to connect to the your site's Virtual Private Network (VPN).
Note: This option may limit some troubleshooting ability and efficiency
Limited Access Through a Firewall
SSH, FTP, and software ports are open to Ex Libris IP addresses when specifically requested.
Note: This option may delay emergency work until your local IT can grant access.
Desktop Sharing Protocol (Windows Only)
Remote Desktop Protocol (RDP) or Virtual Network Computing (VNC) connection is available to Ex Libris IP addresses.
Note: Either RDP or VNC is required to support Windows servers. These connections can be allowed through a firewall, as above
Ex Libris has access to clone(s) of the production server(s) where changes or troubleshooting happen. The customer then moves upgrades, patches, fixes, and so forth to a secure server without assistance from Ex Libris.
Note: This option makes emergency support impossible and delays regular support
Ports Ex Libris
Support primarily needs SSH access to customer servers, but opening other ports to Ex Libris IP addresses helps Support troubleshoot more effectively.
Check with the Support team for each of your Ex Libris products to confirm the specific ports used by that product.
The standard ports regardless of product include:
20 FTP data (outbound)
21 FTP control (outbound)
10022 MFT (outbound)
80 Web / Default OPAC
1521 Oracle Listener
3389 RDP (Windows servers)
5900 VNC (Windows servers
In order to provide application and server support, Ex Libris needs a record of the passwords for each of the following users (if they exist on your system).
If you are unable to provide these via eService or a phone call to the support line, Support is limited in its ability to troubleshoot and may be unable to make fixes.
root (or equivalent, for example, sudo)
Other Operators (as needed)
Any appropriate accounts (as needed)
- Article last edited: 19-September-2022