Ezproxy Not Working
Rosette Allaband
Note: The options presented and how effectively they work depend on your customization of config.txt. As you make additional changes to config.txt, stop and restart EZproxy to make the changes take effect.
When EZproxy is working, go to the User authentication page to learn how to create URLs that link to specific databases on the EZproxy server and how to set up user authentication for your environment.
Taking a look at our notes, it appears it was an issues with Port 2048 (not sure if it was TCP or UDP). In our scenario the end-user had an ISP that was blocking specific traffic on that port due to P2P networking.
EZproxy gives off-campus access to many of our subscription resources without needing VPN (GlobalProtect) or multiple logins. Click through to a resource from the library webpages (subject pages, A-Z list of e-resources, our catalogue Library Search) and use your University login for full access.
We want to provide you with a seamless experience when accessing e-content. EZproxy provides off-campus users with a similar experience to on-campus users, using your University log in without needing VPN (GlobalProtect). The Library has been working with 200 of our main suppliers of e-content, ranging in size and complexity from multi-national publishers to scholarly societies to implement EZproxy to improve remote access to e-content.
These are still in use as some e-content suppliers are currently unable to offer EZproxy authentication. So far we have worked with over 200 of our main suppliers to enable EZproxy, and we are continuing to work with others.
Typically, an EZproxy session will remain valid for 2 hours once logged in. The session will automatically time out after 2 hours of inactivity or ends when you close/quit your browser.
When in doubt, check your URL address to see if it contains the University library's proxy prepend =. If it's there, you are still connected and should have access.
Your browser's cache stores snapshots of webpages you visit on your computer. Occasionally, your cache can prevent you from seeing updated content or cause problems. Clearing the cache can sometimes help.
NHS resources will not be added to EZproxy.
Students on short courses from NHS Trusts, and NHS staff, should continue to use OpenAthens. If you are accessing University resources on an NHS placement, EZproxy will not work with NHS firewalls so please use your institutional login.
Students on NHS courses, and NHS staff, will require a OpenAthens login to access some of their resources. Details of how to register for an account can be found on our OpenAthens page.
From off-campus, when you use the library web site to access our subscribed services (e.g. databases, journals, articles), you should be prompted for a UT EID and password, and DUO multi-factor authentication. After signing in, you should have full access to the range of our subscription.
If none of these solutions work, please report the problem to the Ask A Librarian email. When filling out the form, list the name of the database, the name of the article (if applicable), and a description of the error. We will contact you when the issue has been resolved.
Your local network may be rejecting traffic from the proxy server, which helps off-campus users to connect to databases and online journals. If you administer your own personal firewall, then you will have to make an exception for www.lib.utexas.edu.
The system that we use for off-campus access uses encoded links. You can add a prefix to the article or journal links (that don't already have them) and that should allow you to access them from off-campus. The prefix is:
Virtual private networking (VPN) is a campus IT service that provides secure remote access to university network resources. However, VPN does not make your off-campus computer or device appear to be on campus. To access the libraries' electronic resources, you will still need to go through the UT Libraries site and authenticate as always with your EID.
EZproxy is the method of authentication which the University of Lincoln uses to provide remote access to the library's databases and resources that are restricted to our staff and students. EZproxy detects when you are accessing our resources and prompts you to login with your University credentials allowing both on- and off-campus users to access the same subscribed content.
URLs with the EZproxy prefix work both on and off site and connect the users' network through the University's EZProxy server. Links to licensed library resources need to pass through this EZproxy server in order to show the resource providers and publisher platforms that users are coming from a University of Lincoln internet address. The server is configured with a list of our subscribed e-resources.
You don't have to do anything except click on the link to one of our online resources (databases, online article, ebook, etc.) from inside the Library website, and EZproxy kicks in automatically by showing you a login screen when you are off-campus. You only have to log in once as long as you keep your browser open and you access resources via the Library website, or subscribed databases. However, if you close your browser and open it again, you will have to log in again.
If you notice any resources (journals, databases or articles) which are not working as they should, or you are having trouble accessing e-resources off-campus, please report this to the E-resources Team by filling in the E-resources Feedback form here.
I run a proxy server called EZproxy and the sys-admin that ran the servers left, so trying to understand the cert setup.
EZproxy is a webserver, analogous to Apache, but certs are created and managed within the application: _Management/EZproxy/Secure_your_EZproxy_server/010SSL_configuration
Furthermore, EZproxy is a SAML service provider so I need to send cert metadata to the IDP identity provider. See steps 5-6:
If you can confirm that the cert in use is expired, then I can only think that the service using that cert is not checking the validity dates on the cert - it only uses it for encryption.
Which, if that is the case, you could easily use any cert for that purpose [even a self-signed cert].
Looking at your cert history (crt.sh ezproxy.gc.cuny.edu), it seems like your LE cert was automatically renewing just fine every 2 months (which is the advice from LE), until now. It should have renewed around 2023-08-21, but didn't. Unless crt.sh has a backlog of almost 2 weeks
Selected resources support authentication via Open Athens but do not then land on specific content pages. Instead, after authentication they will land on the resource home page. One way of managing this in Canvas is to have one link dedicated for authenticating. This link should have an instruction to authenticate first. Then have the subsequent content links. Example:
All links containing '.ezproxy.lib.rmit.edu.au' in the URL will no longer work. If you have any links in your documents or bookmarks that include 'ezproxy.lib', you will need to update them once we switch to the OpenAthens system.
The citation details such as author and title will remain the same, but there is no automated way to change link authentication from EZproxy to OpenAthens. You will need to update all links containing '.ezproxy.lib.rmit.edu.au' manually.
Not all databases have the technical capacity to support OpenAthens direct login. There will be cases where you will still need to log in to LibrarySearch to access your resources. However, direct login access will be available on most larger databases and e-journal platforms. Look for one of the following options in the top right corner of the database web page:
I remembered an article I read a while back about how to turn EZProxy into a single sign-on system. Written in 2009 by Brice Stacey, it was more of a proof-of-concept article than a documentation of working code, but the snippets he provided were enough to get me started.
Since all of our internal login systems require a session variable for the username, I figured we could use EZProxy to generate the user session variable we could replace our existing login system with EZProxy3.
To access your account, click on the Log In link in the upper right corner of PubMed opening page. Select NCBI Account from the list of account options. You will be able to log in using your university domain username/password or by creating a new account.
This is caused by the reCAPTCHA that is now required to send e-mails from PubMed not working nicely with our EZproxy system. Unfortunately, there are no plans for PubMed to make changes that will allow this functionality to work correctly when using a link to PubMed that goes through EZproxy. To resolve this issue is to log into your NCBI account before the selecting the email option.
EZproxy is a web proxy server used to facilitate access to the databases, e-journals and other electronic resources subscribed to by the library. No computer or browser set up is needed, nor any software to install or configure.
EZproxy is only used to access BC Cancer online library resources. When you try to access certain databases, eJournals, eBooks or articles in our online collections, EZproxy will automatically activate and prompt you to log in and authenticate with your BC Cancer username and password.
EZproxy uses cookies during your session so that you don't have to log in again to access new resources, and will not work if your browser does not accept cookies. The cookies contain your session key that will expire when you close your browser. Once you have logged in with your BC Cancer ID, you can access any of the library's restricted resources without having to log in again.
Staff have access to a number of online resources that are licensed by PHSA and accessed equally across all PHSA programs, including BC Cancer. However, some resources are separately subscribed to by BC Cancer, and restricted to BC Cancer staff use only due to licensing agreements with vendors and publishers.
c80f0f1006