provide mitigation ideas to one account per user limit

nazarewk · nazarewk · commit 01de95b554e6 · 2025-09-03T16:32:28.000+02:00
diff --git a/src/pages/how-to/add-users-to-your-network.mdx b/src/pages/how-to/add-users-to-your-network.mdx
@@ -1,4 +1,3 @@
-
 # Add users to your network
 
 Whether you have a network for personal use or manage your company's corporate network, you'd probably want to invite
@@ -7,12 +6,14 @@ people to your account and join your NetBird network.
 There are three ways of adding users to a NetBird account - indirect, direct, and via IdP (Identity Provider) sync.
 
 ## Indirect user invites
+
 This way of adding users is managed by the NetBird system and doesn't require administrator input.
 It works only for organizations with private domains.
 
 Whenever a new user signs up with a private domain (e.g., @netbird.io),
 NetBird creates a new account and associates it with the netbird.io organization (domain) automatically.
-Every consequent user signup with the same @netbird.io domain in their email address will end up under the same organization.
+Every consequent user signup with the same @netbird.io domain in their email address will end up under the same
+organization.
 
 <Note>
     This feature isn't available in the self-hosted setup. By default, all users are joining the same network instead.
@@ -31,9 +32,12 @@ Public domains are the ones of the public email providers like Gmail.
 </Note>
 
 ## Direct user invites
+
 As the name stands, this way of inviting users is straightforward and works through the web UI.
-To invite a new user, proceed to `Team` then select the `Users` tab and click the <button name="button" className="button-6">Invite User</button> button.
-A window will appear, allowing you to specify the name and email address of the user you want to invite. Optionally, you could select a set of groups with which you want this user to be associated.
+To invite a new user, proceed to `Team` then select the `Users` tab and click
+the <button name="button" className="button-6">Invite User</button> button.
+A window will appear, allowing you to specify the name and email address of the user you want to invite. Optionally, you
+could select a set of groups with which you want this user to be associated.
 
 The invited users will receive an email invitation that they have to confirm.
 After logging in to the system, they will join your network automatically.
@@ -45,6 +49,14 @@ After logging in to the system, they will join your network automatically.
 <Note>
     If a user already has a NetBird account, you can't invite them.
     This is a limitation that is likely to be removed in future versions.
+
+    You can mitigate this issue with those approaches:
+    - invite an aliased email (most email providers support those), 
+      for example invite `me+another@example.com` instead of `me@example.com`,
+    - ask the user to log in and delete his/her organization (if it's the only user in the organization),
+    - ask the user organization's Admin/Owner to delete their user account,
+       - (optionally) transfer the Owner and/or Admin role to somebody else at user's ogranization first,
+
 </Note>
 
 ## Identity Provider (IdP) Sync
@@ -60,30 +72,36 @@ button.
 See the [Provision Users and Groups From Your Identity Provider](/how-to/idp-sync) section for more details.
 
 ## Manage user roles
-NetBird has five user roles - `Owner`, `Admin`, `Network Admin`, `Auditor` and `User`. The roles allow you to control the level of access to the management API of your account. 
 
-- `Owner` role - has full access to the account and can manage all aspects of the account. There can be only one account owner in NetBird. Users with the owner role can delete their organization account. See the [Delete NetBird account](/how-to/delete-account) section for more.
-- `Admin` role - has full access to the account except that administrators can't delete or update the role of the Owner user and delete the organization account.
-- `Network Admin` role - has access to manage network configurations, including access policies, DNS settings, networks, and network routes, but they can only view user and device information and general settings.
-- `Auditor` role - can read all configurations but not modify any of them.
-- `User` role - has limited access to the account, allowing users to view peers they own and others they can connect to. Users can create personal access tokens for programmatic access.
-
-|  | Owner | Admin | Network Admin | User | Auditor |
-| --: | :--: | :--: | :--: | :--: | :--: |
-| Peers | ✅ | ✅ | 📖 | 📖 | 📖 |
-| Setup Keys | ✅ | ✅ | 📖 | ❌ | 📖 |
-| Access Control | ✅ | ✅ | ✅ | ❌ | 📖 |
-| Networks | ✅ | ✅ | ✅ | ❌ | 📖 |
-| Network Routes | ✅ | ✅ | ✅ | ❌ | 📖 |
-| DNS | ✅ | ✅ | ✅ | ❌ | 📖 |
-| Team | ✅ | ✅ | 📖 | ❌ | 📖 |
-| Activity | ✅ | ✅ | 📖 | ❌ | 📖 |
-| Settings | ✅ | ✅ | 📖 | ❌ | 📖 |
-
-| |
-|-:|
-|✅ = Full access \| 📖 = Read only \| ❌ = No access|
+NetBird has five user roles - `Owner`, `Admin`, `Network Admin`, `Auditor` and `User`. The roles allow you to control
+the level of access to the management API of your account.
 
+- `Owner` role - has full access to the account and can manage all aspects of the account. There can be only one account
+  owner in NetBird. Users with the owner role can delete their organization account. See
+  the [Delete NetBird account](/how-to/delete-account) section for more.
+- `Admin` role - has full access to the account except that administrators can't delete or update the role of the Owner
+  user and delete the organization account.
+- `Network Admin` role - has access to manage network configurations, including access policies, DNS settings, networks,
+  and network routes, but they can only view user and device information and general settings.
+- `Auditor` role - can read all configurations but not modify any of them.
+- `User` role - has limited access to the account, allowing users to view peers they own and others they can connect to.
+  Users can create personal access tokens for programmatic access.
+
+|                | Owner | Admin | Network Admin | User | Auditor |
+|---------------:|:-----:|:-----:|:-------------:|:----:|:-------:|
+|          Peers |   ✅   |   ✅   |      📖       |  📖  |   📖    |
+|     Setup Keys |   ✅   |   ✅   |      📖       |  ❌   |   📖    |
+| Access Control |   ✅   |   ✅   |       ✅       |  ❌   |   📖    |
+|       Networks |   ✅   |   ✅   |       ✅       |  ❌   |   📖    |
+| Network Routes |   ✅   |   ✅   |       ✅       |  ❌   |   📖    |
+|            DNS |   ✅   |   ✅   |       ✅       |  ❌   |   📖    |
+|           Team |   ✅   |   ✅   |      📖       |  ❌   |   📖    |
+|       Activity |   ✅   |   ✅   |      📖       |  ❌   |   📖    |
+|       Settings |   ✅   |   ✅   |      📖       |  ❌   |   📖    |
+
+|                                                    |
+|---------------------------------------------------:|
+| ✅ = Full access \| 📖 = Read only \| ❌ = No access |
 
 To manage user roles, proceed to the `Users` tab and click on the user you want to update:
 <p>
@@ -99,6 +117,7 @@ Click the `Save` button to save the changes.
 </Note>
 
 ## Get started
+
 <p float="center" >
     <Button name="button" className="button-5" onClick={() => window.open("https://netbird.io/pricing")}>Use NetBird</Button>
 </p>
