Secure Service Credential: Obtaining an SSC credential for access

EMC Secure Service Credential (SSC) was introduced with Enginuity 5772 for Symmetrix DMX-3. It is a component of all subsequent releases of SymmWin. Secure Service Credential (SSC) is designed to protect against unauthorized Symmetrix service by authenticating valid identities on the Service Processor. The technology applies exclusively to Service Processor activities and not to host-initiated actions on Symmetrix devices. It covers both onsite and remote login access to a Symmetrix Service Processor. Secure Service Credential (SSC) uses RSA technology to enable strong role-based authentication access. A credential is definable via role and activity (not just via the host level), includes an encrypted credential, and requires confirmation by a service professional password. For each access attempt, the Secure Service Credential (SSC) system tracks and records which service professional is logging in, the role and tasks that individual is authorized to perform, and the validity of the credential time frame. If these credentials are not validated by the Symmetrix, the service professional attempting to access will neither be able to access service tools on the Service Processor nor perform other internal Customer Engineer (CE) functions.

Using Secure Service Credential (SSC) is the only way to connect and login to a Symmetrix DMX-3, Symmetrix DMX-4, and V-MAX to use EMC's maintenance aids. EMC's remote support applications will not permit a remote connection to a system without a valid SSC. To log in, the user must have an active account in the SSC Central Manager application. In the event that the system is maintained by an EMC Authorized Service Provider, the Symmetrix must have a dispatch resource in CSI set to allow this ASP access to the Symmetrix. If this is not set in CSI, access will not be granted. 

The user may also choose to configure their SMS-capable mobile device to send a request to the Central Manager and receive the credential in return. Refer to the user guide on the SSC Central Manager main page for configuration instructions.

Connecting to an SSC-enabled system remotely via Remote Connection Console (RCC) is transparent and does not require the user to obtain a credential directly. The user will need to supply their SSC Central Manager password when prompted by the RCC dialer.