Skip to main content
  • Subscribe by RSS
  • Ex Libris Knowledge Center

    Server Access for Ex Libris

    • Product: all
    • Relevant for Installation Type: Local

    Supported Connection Options

    These are the several different levels of access that you can grant to Ex Libris so that Ex Libris can support and upgrade your server. The level of access you grant can affect Ex Libris’ ability to support your server, especially during emergency situations. This list is in increasing level of restriction of access. If your site's security policies preclude any of these options, contact Ex Libris Support.

    Total Global Access

    Secure Shell (SSH) is available; all ports are open to the world.

    Note: This option is convenient but does not meet modern security standards

    Unlimited Access

    Through a Firewall SSH, file transfer protocol (FTP), and software ports are open to Ex Libris IP addresses.

    Note: This option is the best compromise between security and usability.

    Unlimited Access via SSH Port Forwarding

    SSH is available to Ex Libris IP addresses; all other ports can be forwarded via the SSH protocol.

    Access via VPN

    Ex Libris is given an account and access to connect to the your site's Virtual Private Network (VPN).

    Note: This option may limit some troubleshooting ability and efficiency

    Limited Access Through a Firewall

    SSH, FTP, and software ports are open to Ex Libris IP addresses when specifically requested.

    Note: This option may delay emergency work until your local IT can grant access.

    Desktop Sharing Protocol (Windows Only)

    Remote Desktop Protocol (RDP) or Virtual Network Computing (VNC) connection is available to Ex Libris IP addresses.

    Note: Either RDP or VNC is required to support Windows servers. These connections can be allowed through a firewall, as above

    Duplicated System

    Ex Libris has access to clone(s) of the production server(s) where changes or troubleshooting happen. The customer then moves upgrades, patches, fixes, and so forth to a secure server without assistance from Ex Libris.

    Note: This option makes emergency support impossible and delays regular support

    Ports Ex Libris

    Support primarily needs SSH access to customer servers, but opening other ports to Ex Libris IP addresses helps Support troubleshoot more effectively.

    Check with the Support team for each of your Ex Libris products to confirm the specific ports used by that product.

    The standard ports regardless of product include:

    20        FTP data (outbound)

    21        FTP control (outbound)

    22        SSH

    10022     MFT (outbound)

    80        Web / Default OPAC

    1521      Oracle Listener

    3389      RDP (Windows servers)

    5900      VNC (Windows servers


    In order to provide application and server support, Ex Libris needs a record of the passwords for each of the following users (if they exist on your system).
    If you are unable to provide these via eService or a phone call to the support line, Support is limited in its ability to troubleshoot and may be unable to make fixes.


    root (or equivalent, for example, sudo)




    Other Operators (as needed)

    Administrative Interfaces

    Any appropriate accounts (as needed)

    • Article last edited: 19-September-2022
    • Was this article helpful?