INTERNET ACCESS FOR eligible family members (EFM)s
(CT:IM-342; 06-05-2025)
(Office of Origin: DT/E-CISO)
5 FAM 781 SUMMARY
(CT:IM-342; 06-05-2025)
This subchapter outlines policies regarding network access, security requirements, and the provision of OpenNet and internet access to eligible family members (EFM) and members of household (MOH) at posts abroad. A MOH, as defined in 3 FAM 4180, is an individual who accompanies or joins a sponsoring employee, i.e., a direct hire employee under chief-of-mission authority, either Foreign Service, Civil Service, or uniformed service member, who is permanently assigned to or stationed abroad at a U.S. mission, or at an office of the American Institute in Taiwan.
5 FAM 782 GENERAL USE POLICIES
(CT:IM-342; 06-05-2025)
Standard network access control, network use policies, and security requirements are found in 12 FAM 632, Administrative Security, and 12 FAM 633, Systems Implementation.
5 FAM 783 STANDALONE WORKSTATIONS
(CT:IM-342; 06-05-2025)
Offices must not install internet connectivity without DS or DT prior approval. Local system administrators and/or Information System Security Officers (ISSOs) may keep a log of such connections, at their discretion.
5 FAM 784 INDEPENDENT INTERNET ACCESSIBLE LANs
(CT:IM-342; 06-05-2025)
Non-Enterprise Networks (NEN) in bureaus or at posts must adhere to Department network use policies.
5 FAM 785 PROVIDING OPENNET AND INTERNET ACCESS TO ELIGIBLE FAMILY MEMBERS AT POSTS ABROAD
(CT:IM-342; 06-05-2025)
a. Individual access to OpenNet, which includes internet, may be granted to EFMs of U.S. Direct Hire (USDH) employees assigned to posts. This is an optional benefit as determined by the post ICASS council, not a requirement.
(1) EFMs for this purpose are those individuals who are included on the assignment orders of an employee;
(2) The term "employees" applies to USDH employees of all U.S. Government agencies that participate in International Cooperative Administrative Support Services (ICASS) at post;
(3) Eligibility for access under this provision does not extend to an individual who is a family member of a contractor, whether U.S. or other nationality, or locally employed staff (LE Staff).
b. RSO approval is required prior to granting access to EFMs for access to OpenNet:
(1) EFM access to OpenNet without an RSO check is strictly prohibited; and
(2) EFMs must submit an exception request to gain access to OpenNet.
c. OpenNet operations, installation, and security regulations apply to the users and workstations used for EFM OpenNet/internet access. EFM users must abide by all policies set forth in 5 FAM 720, General Policies. The following additional rules also apply:
(1) EFMs must abide by all Department of State computer security policies;
(2) OpenNet and/or internet access may be provided to eligible members of an USDH employee’s family as described in 5 FAM 784.a (1), above;
(3) If the post ICASS council agrees to fund this benefit, the infrastructure, maintenance, and support costs must come from post ICASS funds;
(4) EFMs may access any appropriate intranet site for official purposes only, e.g., Foreign Service Institute (FSI) for distance learning, Global Community Liaison Office (GCLO) for job information. EFMs may access internet for research, commercial e-mail services, and other sites in accordance with 5 FAM 723, Personal Use of U.S. Government Equipment;
(5) EFMs are prohibited from storing any data, files, or documents on workstations, local drives, or any segment of the network unless explicitly authorized;
(6) All data must be stored in designated, secure cloud storage solutions or enterprise-approved systems that comply with our data protection standards;
(7) Workstations authorized for EFM use must be located where EFMs are less vulnerable to unintentional exposure to classified information and where classified material is not accessible. In addition, these workstations are to be installed to meet OpenNet security and installations standards and conform to security requirements for physical and network access by EFMs;
(8) Using Instant Messaging (e.g., Facebook Messenger, Signal, Discord) is not allowed;
(9) Workstations, peripheral equipment, and any other Government property utilized by an EFM is property on loan to the sponsoring USDH employee for purposes of 14 FAM 416.5-3, Employee Liability, and related provisions governing employee liability for damaged or missing property. The extent of the sponsoring USDH employee’s liability for any damage to or loss of property caused by the EFM user is determined by the property management officer or a Property Survey Board in accordance with 14 FAM 416.5, Reporting Lost or Damaged Property. Substantiated allegations or occurrences of improper or misuse of U.S. Government equipment by an EFM may result in suspension of the privilege to use U.S. Government equipment, and in some circumstances, may subject the EFM’s sponsor to disciplinary action;
(10) Each EFM user must attend an Operations and Security Training session provided by the ICASS-funded systems administrator, ISSO, and the regional security officer (RSO). During the training session, the ISSO reviews the terms under which computer access is provided and addresses computer security awareness. The RSO addresses such matters as facility access during both business hours and after-hours, signing after-hours logs, and notifying Post One if on the mission grounds after-hours; and
(11) The sponsoring employee must acknowledge in writing that the employee’s EFM has completed the training session required in 5 FAM 784 c(9), and that both the employee and the EFM agree to the terms under which access is provided. The sponsoring employee must specifically accept responsibility for the equipment used for this service by his or her EFM for purposes of 14 FAM 416 and related provisions governing employee liability for damaged or missing property as described above.
5 FAM 786 PROVIDING OPENNET AND INTERNET ACCESS TO MEMBERS OF HOUSEHOLD AT POSTS ABROAD
(CT:IM-342; 06-05-2025)
a. Individual access to OpenNet, which includes the Internet, may be granted to members of household (MOHs) of USDH employees assigned to the post. OpenNet access is a privilege, not a right.
NOTE: Eligibility for access under this provision does not extend to an individual who is a family member of a contractor, whether U.S. or other nationality, or of a Foreign Service National (FSN) employee.
b. To be eligible for access, MOHs must first meet the requirements set forth in 12 FAM 442.
c. OpenNet operations, installation, and security regulations apply to the users and workstations used for MOH OpenNet/Internet access. MOH users must abide by all policies set forth in 5 FAM 720, General Policies. The following additional rules also apply:
(1) MOHs must abide by all Department of State computer security policies;
(2) OpenNet and/or Internet access may be provided to members of household of an USDH employee’s family as described in 5 FAM 785 a.(1), above;
(3) No United States Government funding must be used to provide or support OpenNet and/or Internet access for MOHs;
(4) MOHs may access any appropriate intranet site for official purposes only, e.g., family liaison office (FLO) for job information. MOHs are not listed in or have access to the Department's global e-mail system. MOHs may access the Internet for research, commercial e-mail services, and other sites in accordance with 5 FAM 723, Personal Use of U.S. Government Equipment;
(5) MOHs are prohibited from storing any data, files, or documents on workstations, local drives, or any segment of the network unless explicitly authorized;
(6) MOHs must follow established procedures for data transfer and access, ensuring that sensitive information is handled appropriately and securely;
(7) Workstations authorized for MOH use must not be located where MOHs are vulnerable to unintentional exposure to classified information and where classified material is not accessible. In addition, these workstations are to be installed to meet OpenNet security and installations standards and conform to security requirements for physical and network access by MOHs;
(8) Using Instant Messaging (e.g., Facebook Messenger, Signal, Discord) is not allowed;
(9) Workstations, peripheral equipment, and any other Government property utilized by an MOH is property on loan to the sponsoring USDH employee for purposes of 14 FAM 416.5-3, Employee Liability, and related provisions governing employee liability for damaged or missing property. The extent of the sponsoring USDH employee’s liability for any damage to or loss of property caused by the MOH user is determined by the property management officer or a Property Survey Board in accordance with 14 FAM 416, Reporting Lost, Stolen, or Damaged Property. Substantiated allegations or occurrences of improper or misuse of U.S. Government equipment by a Member of Household may result in suspension of the privilege to use U.S. Government equipment, and in some circumstances, may subject the MOH’s sponsor to disciplinary action;
(10) Each MOH user must attend an Operations and Security Training session provided by the ICASS-funded systems administrator, ISSO, and the RSO. During the training session, the ISSO reviews the terms under which computer access is provided and addresses computer security awareness. The RSO addresses such matters as facility access during both business hours and after-hours, signing after-hours logs, and notifying Post One if on the mission grounds after-hours; and
(11) The sponsoring employee must acknowledge in writing that the employee’s MOH has completed the training session required in 5 FAM 724 c(9), and that both the employee and the MOH agree to the terms under which access is provided. The sponsoring employee must specifically accept responsibility for the equipment used for this service by his or her MOH for purposes of 14 FAM 416 and related provisions governing employee liability for damaged or missing property as described above.
5 FAM 787 REFERENCES
(CT:IM-342; 06-05-2025)
5 FAM 787.1 Acronyms
(CT:IM-342; 06-05-2025)
COM - Chief of Mission
DS - Diplomatic Security
DT - Diplomatic Technology
EFM - Eligible Family Member
FSI - Foreign Service Institute
ICASS - International Cooperative Administrative Support Services
ISSO - Information Systems Security Officer
MOH - Member of Household
NEN - Non-Enterprise Network
RSO - Regional Security Officer
USDH - United States Direct Hire
5 FAM 787.2 Definitions
(CT:IM-342; 06-05-2025)
Employees: The term "employees" applies to USDH employees of U.S. Government agencies that subscribe to Information Management and Technical Support Services through ICASS at post.
Intranet: A private computer network that uses Internet protocols and network connectivity to securely share part of an organization's information or operations with its employees.
MOH: For the purpose of this subsection, MOHs are persons who have accompanied or joined an employee assigned abroad and who the employee has declared to the chief of mission (COM) as part of his or her household, who will reside at post with the employee, and who are other than legitimate domestic staff, as defined in 3 FAM 4180.
OpenNet: The Department of State's Sensitive But Unclassified internal network or intranet, providing access to State-specific web pages, email, and other resources.
Property Survey Board: A Post elected group of people that has the authority to determine financial liability, and to determine the extent of liability, for property that is missing, damaged, or destroyed as a result of negligence, improper use, or willful action on the employee's part, and to establish the amount of financial liability.
5 FAM 787.3 Authorities
(CT:IM-342; 06-05-2025)
(1) Federal Information Security Modernization Act of 2014 (FISMA), Public Law 113-283, (44 U.S.C. 3551);
(2) E.O. 13403 (Federal Information Technology); and
(3) OMB Memorandum (M-15-14); Management and Oversight of Federal Information Technology.
5 FAM 787.4 Related FAM/FAH
(CT:IM-342; 06-05-2025)
(1) 3 FAM 4180, Members of Household (MOHS);
(2) 5 FAM 720, General Policies;
(3) 5 FAM 723, Personal Use of U.S. Government Equipment;
(4) 5 FAM 724, Monitoring and Auditing Policies;
(5) 5 FAM 784, Providing OpenNet Plus and Internet Access to Eligible Family Members at Posts Abroad;
(6) 5 FAM 785, Providing OpenNet Plus and Internet Access to Members of Household at Posts Abroad;
(7) 12 FAM 442, Post Security Functions;
(8) 12 FAM 642, Administrative Security;
(9) 12 FAM 643, Systems Implementation;
(10) 14 FAM 416, Physical Inventory and Reconciliation;
(11) 14 FAM 416.5, Reported Damaged, Missing, or Destroyed Property;
5 FAM 788 THROUGH 789 UNASSIGNED