As part of the Azure B2B Guest Access service, a number of controls have been put in place to mitigate the risks associated with sharing data with users from external organisations. One of these controls is a guest access attestation process, whereby an external user with a guest account requires an NHSmail user (who is set up as an eligible guest inviter) to approve an extension to their access. External users, will require an approval for an extension after the first 30 days of being granted access and every subsequent 180 days. If an approval is not provided, access will be revoked.
If you are an Eligible Guest Inviter, you will be able to action a guest access extension request via the NHSmail Portal.
Approving or rejecting extension of guest access for external users
To approve or reject an extension request:
Note: If you are already logged in to the NHSmail Portal, go to step 2 after clicking on the secure link.