The development and Tier 3 support group also has SSH shell access to the VPN Gateway. This access can be used for additional problem determination where the SSL access is insufficient. This access requires keys to be installed on the PC attempting to access the VPN Gateway, and access is only granted to SSH requests originating from a special AT&T support subnet. A password is also required before access is granted in addition to a secondary authentication. After entering the password to unlock the SSH public keys, the user will be prompted for an account, user ID, and password which are used to issue a Service Manager authentication request. If the Service Manager authentication fails, or if the user ID does not have VPN Gateway login privileges, the SSH session is terminated and an optional SNMP trap is sent.