Yatri Date Completed: 11/2022
11
commensurate with the necessary authority-level to request a new user, the ticket is
rejected until approval from a resource with the correct authority level is included in the
ticket authorization approval trail.
External users:
U.S. persons and visa applicants only have access to Yatri via the public facing website.
They must create a username and password before they are allowed to enter their
personal information into the system. Once registered, users may view and update their
personal information up until 24 hours prior to their scheduled consular appointment.
Registered users can only see their information. They do not have the ability to view or
modify the data of other users or what is in Yatri.
(d) How is access to data in the system determined for each role identified above?
Access to data by Department of State and GDIT personnel user roles listed in 8(b) is
based on the position, role, and need to perform officially assigned duties as described.
Supervisors and the Project Management Office must approve the employee roles,
permissions, and access to Yatri based on least privilege and separation of duties. Once
government or contractor personnel leave the project, their access to the system is
terminated. Access to data is determined on an approved need-to-access/know basis
with well-defined roles and permissions as described below. .
Public Applicant Users (U.S. persons and non-US citizen): Users of this type/role
only have access to their own information (only their own PII). These users can only
access Yatri from the public-facing websites and can only create an account for their own
purpose to request consular services. Public applicant accounts, also known as self-
service accounts, do not have a need to access Yatri on a regular and/or predictable basis.
For instance, there may be missions with appointment wait times that are 1.5-2 years out.
That means an applicant that makes an appointment today may not need to interact with
Yatri for another year and half. Additionally, once a visa is issued, it might be valid for 1,
2, 3 or more years, and cases can go dormant over multiple years. Therefore, Yatri will
not fully disable self-service user accounts, unless prompted by the applicant.
However, Yatri will invalidate self-service user passwords after one (1) year of inactivity.
Once a password is invalidated, the applicant is required to reset their password following
a reset code sent to their account’s associated email address.
Department of State Consular (overseas) and Washington DC-based Users: Since
the Department (CA/ Office of the Executive Director (EX)) is the owner of the GSS
program and provides oversight to the entirety of the GSS program, these users must be
approved by Department of State supervisors and/or CORs.
GDIT contractor roles: The Yatri GDIT personnel system users gain access through
either primary or secondary access roles. These access roles allow for more granular
management of rights/permissions and ensure that each type of user has only access to