scaleway · crlptl · Oct 16, 2025 · Oct 8, 2025 · Oct 16, 2025 · Oct 16, 2025
@@ -10,7 +10,7 @@ import Requirements from '@macros/iam/requirements.mdx'
 Scaleway supports Identity Federation to provide your teams with secure access to their accounts via Single Sign-On (SSO). Depending on your organization’s requirements, you can use either built-in OAuth2 providers or configure SAML for centralized identity management.
 
 <Message type="important">
-  SAML SSO login is in Early Access. This means that currenttly, only a few Organizations can access and test the feature.
+  SAML SSO login is in Early Access. This means that currently, only a few Organizations can access and test the feature.
 </Message>
 
 | Feature | **OAuth2** | **SAML** |

@@ -19,6 +19,14 @@ Below is a list of the permission sets available at Scaleway.
 | ProjectReadOnly              | Read access to Project management. Does not include access to Project resources      |
 | IAMReadOnly                  | Read access to IAM. This means list and read access to users, groups, applications, policies, and API keys                                                |
 | IAMManager                   | Full access to IAM. This means access to all possible actions for users, groups, applications, policies and API keys and all ProjectManager permissions              |
+| IAMApplicationManager        | Full access to IAM Applications, including management of Applications API keys             |
+| IAMApplicationReadOnly       | Read access to IAM Applications, including listing Applications API keys                   |
+| IAMUserManager               | Full access to IAM Users, including listing Users API keys                                 |
+| IAMUserReadOnly              | Read access to IAM Users, including listing Users API keys                                 |
+| IAMGroupManager              | Full access to IAM groups                                                                  |
+| IAMGroupReadOnly             | Read access to IAM groups                                                                  |
+| IAMPolicyManager             | Full access to IAM policies                                                                |
+| IAMPolicyReadOnly            | Read access to IAM policies                                                                |
 | BillingReadOnly              | List and read access to billing information                                                                                                        |
 | BillingManager               | Full access to billing management. This means access to list, read and edit billing contact information, payment information, billing alerts and invoices |
 | OrganizationManager          | Full access to Organization management. This means access to all possible actions for Projects, IAM, billing and support/abuse tickets. Does not include access to list and create resources                          |
@@ -27,7 +35,12 @@ Below is a list of the permission sets available at Scaleway.
 | SupportTicketReadOnly        | List and read access to support tickets                                                                                                                             |
 | AbuseTicketManager           | Full access to abuse tickets. This means access to create, read and update abuse tickets in the Organization                                                                   |
 | AuditTrailReadOnly           | List and read access to Audit Trail events                                                                   |
-
+| AuditTrailExportRead         | Read access to Audit Trail exports                                                         |
+| AuditTrailExportDelete       | Delete access to Audit Trail exports                                                       |
+| AuditTrailFullAccess         | Full access to Audit Trail                                                                 |
+| EnvironmentalImpactReadOnly  | Read access to Environmental Impact information                                            |
+| NotificationManagerFullAccess | Full access to the notification manager                                                   |
+| NotificationManagerReadOnly  | Read access the notification manager                                                       |
 
 <Message type="important">
   Any user or application benefitting from the `IAMManager` and/or `OrganizationManager` permission sets is able to create policies giving themselves access to any other actions and resources within the Organization.