Documentation - Advisor
RAFIS can also be used by information security consultants. Both the advisor and the client create their own RAFIS account for their own organization. The advisor sends a request to the client via the advisor module to gain access to his risk analyses. If that request is approved by the client, the adviser can temporarily switch to the client's organization via the adviser module. The advisor has access to the BIA, the actors and the risk analyzes of the client. Both the advisor and the client can revoke this permission.
Approving a request for access can only be done by someone with the Administrator role. In the CMS, accessible for an administrator via the CMS link in the bar at the bottom, requests can be approved and denied and permissions given can be revoked via the Advisors module.