feat(iam): fixes

ldecarvalho-doc · ldecarvalho-doc · commit d6b07ba81722 · 2025-03-24T15:45:55.000+01:00
diff --git a/pages/account/how-to/use-2fa.mdx b/pages/account/how-to/use-2fa.mdx
@@ -32,8 +32,10 @@ Download the app of your choice and install it onto your smartphone.
 
 ## How to enable MFA
 
-1. Access the [Security](https://console.scaleway.com/account/security) tab of your **User Account** page.
-  Alternatively, click your Organization name on the top-right corner of the console navigation menu, click **Profile**, then **Security**.
+1. Click your Organization name on the top-right corner of the console navigation menu, click **Profile**, then **Security**.
+    <Message type="important">
+      If you are logged in as an [IAM member](/iam/concepts/#member), Click **Profile**, then **Credentials** and scroll down to the **Multifactor authentication** section.
+    </Message>
 2. Click **Enable MFA**, in the **Multifactor authentication** section. A pop-up displays.
 3. Enter the code shown on the pop-up into your MFA app, or scan the QR code into your app.
   Your app sets up MFA for your Scaleway account and displays a 6-digit code.
diff --git a/pages/iam/how-to/comply-with-sec-requirements-member.mdx b/pages/iam/how-to/comply-with-sec-requirements-member.mdx
@@ -17,15 +17,15 @@ Upon your [first login as a Member](/iam/how-to/log-in-as-a-member), you must co
 
 ## How to check the security requirements
 
-When you log in for the first time, a security checklist displays in your Scaleway console.
-
-<Lightbox src="scaleway-iam-member-sec-req.webp" alt="screenshot of the scaleway console showing a checklist of the few quick steps to follow until you can explore the Scaleway console. 1. Update password - You are required to update your password to stay connected to this Organization. A message box indicated that there is 1 day left to update the password. It warns that once this grace period is up, you will be locked out of the Organization until an administrator unlocks your account. A button prompts to update the password. "/>
-
-Currently, the mandatory security requirements include:
+You Organization administrators may require you to perform two different security actions:
 
 - [Updating your password](#how-to-update-a-password)
 - [Setting up MFA](#how-to-set-up-mfa-as-a-member)
 
+If one of these requirements is enforced in your Organization, a security checklist will display in your Scaleway console when you log in for the first time,
+
+<Lightbox src="scaleway-iam-member-sec-req.webp" alt="screenshot of the scaleway console showing a checklist of the few quick steps to follow until you can explore the Scaleway console. 1. Update password - You are required to update your password to stay connected to this Organization. A message box indicated that there is 1 day left to update the password. It warns that once this grace period is up, you will be locked out of the Organization until an administrator unlocks your account. A button prompts to update the password. "/>
+
 ### Grace period
 
 New IAM Members have a [grace period](/iam/concepts/#grace-period) available to comply with security requirements. The grace period is defined by the Organization's administrator or is set to default (7 days).
@@ -46,7 +46,11 @@ This means that if you fail to login five times, you will be blocked from your O
 
 Passwords are not required for a first Member login.
 
-However, even if your Organization administrator provides you with a password or you log in using a code, you must update your password after your first login.
+However, if password renewal is enforced in your Organization, you must update your password after your first login.
+
+<Message type="note">
+Your Organization's administrator may provide you with a password for your first login. If password renewal is enforced in your Organization, you still need to update your password.
+</Message>
 
 1. Click **Update password** in your security requirements **Checklist** in the Scaleway console. A pop-up appears.
     <Message type="note">
@@ -55,15 +59,15 @@ However, even if your Organization administrator provides you with a password or
 2. Define a new password in the box.
 3. (Optional) Check the box if you want to send the password to your email.
     <Message type="tip">
-    Make sure you copy and securely store the password, as it will only be shown once. If you lose access to your password, you must renew it.
+    Make sure you copy and securely store the password, as it will only be shown once. If you lose access to your password, you must renew it again. Refer to the [How to manage members](/iam/how-to/manage-members#how-to-edit-a-members-information) documentation to learn how to renew your password after first renewal.
     </Message>
 
 If all security requirements are met, you will be redirected to the Organization dashboard. If not, follow the steps of the [next section](#how-to-set-up-mfa-as-a-member) to complete the checklist.
 
 ## How to set up MFA as a Member
 
-
-
-
-
-
+1. Click **Identity and Access Management (IAM)** from the top-right of your [Organization Dashboard](https://console.scaleway.com/organization) in the Scaleway console. The **Users** tab of the [Identity and Access Management dashboard](https://console.scaleway.com/iam/users) displays.
+2. Click your username. Alternatively, click <Icon name="more" /> next to the user, and select **Overview**. Either way, you are taken to the user's **Overview** tab.
+3. Go to the **Credentials** tab.
+4. Scroll down to the **Multifactor authentication** section.
+5. Follow the steps indicated in the [How to use MFA](/account/how-to/use-2fa) documentation page.
diff --git a/pages/iam/how-to/enforce-security-requirements-members.mdx b/pages/iam/how-to/enforce-security-requirements-members.mdx
@@ -37,6 +37,15 @@ If [Multifactor Authentication (MFA) is enabled](/account/how-to/use-2fa) for a
     </Message>
 6. Type **DISABLE** in the box and click **Confirm**.
 
+## How to enforce MFA for a member
+
+You can enforce MFA for all users in your Organization, including members.
+
+<Message type="tip">
+  Refer to the [How to enforce MFA](/organizations-and-projects/how-to/enforce-mfa) documentation page for more information.
+</Message>
+
+
 ## How to enforce password renewal
 
 1. Click the **Security** tab of the [Organization Dashboard](https://console.scaleway.com/organization).
@@ -72,9 +81,4 @@ From their first login, members have a default grace period of seven days to com
 
 Currently, a default number of a maximum 5 login attempts is set up for your Organization automatically.
 
-## How to enforce MFA for a member
-
-You can enforce MFA for all users in your Organization, including members.
-
-Refer to the [How to enforce MFA](/pages/organizations-and-projects/how-to/enforce-mfa) documentation page for more information.
 
diff --git a/pages/iam/how-to/manage-members.mdx b/pages/iam/how-to/manage-members.mdx
@@ -55,7 +55,7 @@ The Member is locked and their name is displayed in red and their status is mark
 If a Member is locked you can unlock them anytime as an Owner or user with IAM Manager permissions. Their name is displayed in red and their status is marked as `Locked` in the IAM users list.
 
 <Message type="important">
-  If a Member fails to [comply with security requirements](/iam/how-to/log-in-as-a-member#how-to-comply-with-security-requirements) by the end of the [grace period](/organizations-and-projects/concepts), they are automatically locked and are not able to connect to the Organization until they are manually unlocked.
+  If a Member fails to [comply with security requirements](/iam/how-to/log-in-as-a-member#how-to-comply-with-security-requirements) by the end of the [grace period](/iam/concepts#grace-period), they are automatically locked and are not able to connect to the Organization until they are manually unlocked.
 </Message>
 
 1. Click **Identity and Access Management (IAM)** on the top-right corner of your [Organization Dashboard](https://console.scaleway.com/organization) in the Scaleway console. The **Users** tab of the [Identity and Access Management dashboard](https://console.scaleway.com/iam/users) displays.
@@ -73,6 +73,10 @@ The Member is unlocked.
 
 You can edit a Member's username, email address, and password.
 
+<Message type="note">
+  Follow the procedure below to edit your own Member information.
+</Message>
+
 1. Click **Identity and Access Management (IAM)** on the top-right corner of your [Organization Dashboard](https://console.scaleway.com/organization) in the Scaleway console. The **Users** tab of the [Identity and Access Management dashboard](https://console.scaleway.com/iam/users) displays.
 2. Click the name of the Member you want to delete. Alternatively, click <Icon name="more" /> next to the Member, and select **Overview**. Either way, you are taken to the user's **Overview** tab.
 3. Click the **Credentials** tab.
@@ -89,18 +93,19 @@ The updated information appears in the credentials tab.
 
 For the increased security of your Organization, you can enforce different security measures for your IAM Members.
 
-Refer to the dedicated [How to enforce security Members for Members](/iam/how-to/enforce-security-requirements-members/) documentation page to find how to:
+Refer to the dedicated [How to enforce security for Members](/iam/how-to/enforce-security-requirements-members/) documentation page to find how to:
 
 - [How to disable a Member's MFA](/iam/how-to/enforce-security-requirements-members/#how-to-disable-a-members-mfa)
 - [How to enforce password renewal](/iam/how-to/enforce-security-requirements-members/#how-to-enforce-password-renewal)
 - [How to stop enforcing password renewal](/iam/how-to/enforce-security-requirements-members/#how-to-stop-enforcing-password-renewal)
 - [How to edit the grace period of your Organization](/iam/how-to/enforce-security-requirements-members/#how-to-edit-the-grace-period-of-your-organization)
 - [How to set a maximum number of login attempts](/iam/how-to/enforce-security-requirements-members/#how-to-set-a-maximum-number-of-login-attempts)
 
+
 ## How to delete a Member
 
 <Message type="important">
-  A Member can delete their own account. The procedure is the same as described below.
+  A Member can delete their own account. The procedure is the same as described below. When a Member deletes themselves, they are automatically disconnected from the Scaleway console.
 </Message>
 
 1. Click **Identity and Access Management (IAM)** on the top-right corner of your [Organization Dashboard](https://console.scaleway.com/organization) in the Scaleway console. The **Users** tab of the [Identity and Access Management dashboard](https://console.scaleway.com/iam/users) displays.
@@ -117,4 +122,3 @@ Refer to the dedicated [How to enforce security Members for Members](/iam/how-to
 
 The Member is deleted. If you wish to check the Member's previous logs from this point on, keep in mind that they will appear as "Deleted user" in the IAM logs. The user ID remains visible.
 
-
diff --git a/pages/iam/quickstart.mdx b/pages/iam/quickstart.mdx
@@ -26,23 +26,20 @@ Read our dedicated page for a [general overview of IAM](/iam/reference-content/o
 Invite other users to be able to give them access to your Organization. You will be able to define the exact level of access to give by creating a [policy](#how-to-give-permissions-to-users-and-applications-via-policies) for them later.
 
 1. Click **Identity and Access Management (IAM)** from the top-right of your [**Organization Dashboard**](https://console.scaleway.com/organization) in the Scaleway console. The **Users** tab of the [Identity and Access Management dashboard](https://console.scaleway.com/iam/users) displays.
-    <Lightbox src="scaleway-iam-users-dashboard.webp" alt="" />
-2. Click **+ Add user**. The following screen displays:
-    <Lightbox src="scaleway-iam-invite-user.webp" alt="" />
-3. Enter the email address of the person you want to invite. If you want to invite more than one user, enter multiple email addresses separated by commas. Optionally, you can also select a [group](/iam/concepts/#group) to add the user to.
-4. Click **Invite** to send the invitation.
+2. Click **+ Add user**. A pop-up displays prompting you to choose between creating a **Member** or adding a **Guest**.
+3. Select **Guest** and click **Continue**.
+4. Enter the email address of the person you want to invite. If you want to invite more than one user, enter multiple email addresses  separated by commas. Optionally, you can also select a [group](/iam/concepts/#group) to add the user to and add one or more tags.
+5. Click **Invite** to send the invitation.
     The user receives an email inviting them to accept your invitation. If they do not already have a Scaleway account, they will be prompted to [create one](/account/how-to/create-an-account/) first.
-5. The user will appear in the list of your Organization's users once they have accepted the invitation.
+6. The user will appear in the list of your Organization's users once they have accepted the invitation.
 
 ## How to create an application
 
 IAM applications are non-human users in an Organization, enabling you to give programmatic access to resources.
 
 1. Click **Identity and Access Management (IAM)** from the top-right of your [**Organization Dashboard**](https://console.scaleway.com/organization) in the Scaleway console. The **Users** tab of the [Identity and Access Management dashboard](https://console.scaleway.com/iam/users) displays.
 2. Click the **Applications** tab. A list of the Organization's existing IAM applications displays.
-    <Lightbox src="scaleway-iam-applications.webp" alt="" />
 3. Click **Create application**. The creation wizard displays:
-    <Lightbox src="scaleway-iam-create-app.webp" alt="" />
 4. Complete the steps of the creation wizard:
     - Enter a name for the application, or use the auto-generated name suggested for you,
     - Enter a description (optional),
@@ -56,10 +53,8 @@ IAM applications are non-human users in an Organization, enabling you to give pr
 
 Users you have invited to your Organization, and applications you have created, have no rights or permissions until you attach [policies](/iam/reference-content/policy/) to them, as described below.
 1. Click **Identity and Access Management (IAM)** from the top-right of your [**Organization Dashboard**](https://console.scaleway.com/organization) in the Scaleway console. The **Users** tab of the [Identity and Access Management dashboard](https://console.scaleway.com/iam/users) displays.
-2. Click the **Policies** tab. A list of the Organization's existing policies displays:
-    <Lightbox src="scaleway-iam-policies.webp" alt="" />
-3. Click **Create policy**. The creation wizard displays:
-    <Lightbox src="scaleway-iam-create-policy-1.webp" alt="" />
+2. Click the **Policies** tab. A list of the Organization's existing policies displays.
+3. Click **Create policy**. The creation wizard displays.
 4. Complete the steps on the first page of the creation wizard:
     - Enter a **name** for the policy,
     - Enter a **description** (optional),
@@ -68,7 +63,6 @@ Users you have invited to your Organization, and applications you have created,
       You can choose to create a policy without a principal for now, and attach the principal later. Be aware that the policy will have no effect until a principal is attached. A policy can only be attached to one principal at a time.
     </Message>
 5. Click **Add rules** to progress to the next part of the policy creation wizard.
-    <Lightbox src="scaleway-iam-create-policy-2.webp" alt="" />
     <Message type="tip">
       Rules define the actions that the attached principal will be able to carry out within the Organization. When creating a rule, you first set the **scope** of the rule, and then select the **permission sets** to apply within the scope. See our dedicated documentation for more help with [policies, rules, scopes and permission sets](/iam/reference-content/policy/).
     </Message>
