How to Request a New SAN Account

How to Request a New SAN Account:

- Requests for new SAN accounts must be made by a Sponsor on behalf of the New User.

- The Sponsor must already be a SAN user with a current and active SAN account.

- All SAN account holders must:

- Have already met requirements for background investigation for access to U.S. Government computer systems.

- Accomplished Annual Information Assurance Training

- Have an approved POC e-mail address domain. (See Appendix B)

To Request a new SAN account:

1. The Sponsor must do the following:

- Log onto the SAN and click:

- User Information

- Request new SANweb user

- Add User

- Fill out the form.

- Check the statement certifying that the new user, “Requires SAN access. The user has met the required background investigation for access to U.S. government computer systems and has accomplished Annual Information Assurance Training.”

- Click Submit

- Select the appropriate User Group to add the user to. (See Appendix C for additional information.)

- The new user request has now been accomplished.

An e-mail message will automatically be sent to the Administrator(s) of the user group requesting that a new SAN account be created.

2. The SAN User Group Administrator will verify accuracy of the new user’s information and create the new SAN account.

3. The New User will receive automated e-mails with SAN account information.

- One e-mail containing the UserName.

- Another e-mail containing the Password.

- The new User will have 5 calendar days from account creation to log into the SAN and change their password.

(See Appendices on following pages for additional information about SAN Accounts.)

Note: To request an International SAN (I-SAN) account for use by the Host Nation, the SCO for that country must:

- Log into the SAN and click

- User Information

- Request new ISANweb user

- Fill out the form and Submit it.

Appendix A

General SAN Account Rules:

- New SAN Accounts require a Sponsor, on behalf of the new user, to request that a new account be created. Sponsors must be current SAN Account holders.

- A Sponsor’s request is deleted if not acted upon by the Administrator within 14 days of request.

- SAN Account holders must have an approved POC e-mail address domain. (See Appendix B for approved e-mail domains and additional information.)

- If the new user’s POC e-mail address domain IS NOT on the approved e-mail address domain list:

- The Sponsor will continue with the account request.

- The Administrator will create the account, but:

- The new user’s account will be set to Inactive.

- The new user must complete, sign and fax or e-mail a DD Form 2875 to DISAM before the account will be Activated. This is in addition to the Sponsor completing the original SAN request online. (DD Form 2875 must contain justification as to why the user cannot use an approved
e-mail address.)

- The new user will have 21 calendar days to submit a DD Form 2875 to DISAM or the account will be deleted.

- Upon account creation, new users will have 5 calendar days to log into the SAN, update their password and certify the following statement, “I, (User’s Name), have read, acknowledge and agree to the above statements. I have met background investigation requirements for access to U.S. government computer systems and have accomplished Annual Information Assurance Training.” If these actions are not done within 5 calendar days from account creation, the account will be deleted.

- Passwords must be 15 to 20 characters in length, including at least 2 upper case letters, 2 lower case letters, 2 numbers and 2 special characters.

- After initial login and password update by the user, passwords must then be updated every 60 days by the user. An automated e-mail warning will be sent to the user 10 days prior to password expiration. If password is not updated within 60 days, the account is set to Inactive.

- The same password cannot be used within 1 year.

- Users must log in to the SAN at least once every 180 days, if not; the SAN account will be deleted. An automated e-mail warning will be sent to the user 10 days prior to account deletion (i.e. 170 days after last log in).

- All mandatory fields indicated by an asterisk (*) on the New User Request and User Information form must be completed.

- User’s must notify their User Group Administrator once the SAN account is no longer required so that it can be deleted.

Appendix B

Authorized POC E-mail Address Domains

Below are the approved point of contact e-mail address domains SAN account holders should have:

.mil (This includes, but is not limited to: army.mil, navy.mil, af.mil etc.)

.gov (This includes, but is not limited to: state.gov etc.)

ndu.edu

nps.edu

usafa.edu

usnwc.edu

afit.edu

apcss.org

coe-dmha.org

idss.ida.org

ida.org

jid.org

jusmagphil.org

jusmagthai.org

marshallcenter.org

pims.org

usembassy.bg

odc.gr

nama.nato.int

e3a.nato.int

If your organization has a U.S. Government e-mail domain, used for official government business, which you would like added to the list, please send a memorandum of request to .

If the user cannot provide an approved POC e-mail address domain as shown above, the Sponsor should continue with the account request, submitting the current e-mail address of the new user with the request. In addition to the Sponsor’s request, the New User must submit a completed and signed DD Form 2875 to DISAM before account will be activated. DD Form 2875 must include justification why a US Government approved POC e-mail address domain cannot be used.

DD Form 2875 is only required if the user’s e-mail address domain IS NOT on the approved list above.

Fax or E-mail the DD Form 2875 to DISAM, ATTN: DISAM SAN Administrator:

Send Fax to: 937-255-4139 or Send e-mail to:

The DD Form 2875 can be obtained at the following address:

http://www.dtic.mil/whs/directives/infomgt/forms/eforms/dd2875.pdf

Fields highlighted in yellow on the next two pages must be completed on the DD Form 2875.

Appendix C

Selecting the User Group for a New SAN User

Refer to information below when selecting a user group for a new SAN User.

- The Sponsor, during the account request will select the appropriate User Group to assign the new user to.

(Some of the more common user groups are listed below.)

- For SCO Users – Select from the appropriate COCOM UserGroups.

- 1C7 AFRICOM

- 1C2 CENTCOM

- 1C3 EUCOM

- 1C4 PACOM

- 1C5 SOUTHCOM

- 1C6 NORTHCOM

- For IMSO Users – Select from the appropriate MILSVC IMSO UserGroups:

- 1A1B ARMY TRAINING-WEST

- 1A1C ARMY TRAINING-EAST

- 1A2A NAVY TRAINING-WEST

- 1A2B NAVY TRAINING-EAST

- 1A3A AIR FORCE TNG-IMSOs

- 1A4 MARINE CORPS TRAINING

- 1A5 COAST GUARD TRAINING

- For MILDEP Users – Select from the appropriate MILDEP UserGroups:

- 1A1 ARMY TRAINING

- 1A2 NAVY TRAINING

- 1A3 AIR FORCE TRAINING

- 1A4 MARINE CORPS TRAINING

- 1A5 COAST GUARD TRAINING

- For Regional Center Users – Select from the appropriate Regional Center User Groups:

- 1D2A MARSHALL CENTER

- 1D2B ASIA PACIFIC CENTER

- 1D2C AFRICA CENTER

- 1D2D CHDS

- 1D2E NESA

- For SCWD Users (Security Cooperation Workforce Database) select:

- 1H1 SCWD Users

- For Other Users: Select most appropriate group from the remaining selections on the screen for your organization.

1 9 October 2011