The security measures listed on this page, except enforcing MFA, apply only to IAM members.
How to enforce security requirements for IAM members
For the increased security of your Organization, you can enforce different security measures for your IAM members.
Before you startLink to this anchor
To complete the actions presented below, you must have:
- A Scaleway account logged into the console
- Owner status or IAM permissions allowing you to perform actions in the intended Organization
How to disable a member’s MFALink to this anchor
If Multifactor Authentication (MFA) is enabled for a member you can disable it anytime. Disabling MFA is useful if the member loses access to their authentication app and needs to reset MFA.
- Click Identity and Access Management (IAM) on the top-right corner of your Organization Dashboard in the Scaleway console. The Users tab of the Identity and Access Management dashboard displays.
- Click the name of the member you want to delete. Alternatively, click «See more Icon» next to the member, and select Overview. Either way, you are taken to the user’s Overview tab.
- Click the Credentials tab.
- Scroll to the Disable multifactor authentication section.
- Click Disable MFA. A pop-up appears.
Important
Keep in mind that disabling MFA means a member will no longer be required to sign in with MFA. If MFA is enforced at the Organization level, the member will have a grace period allowing them to enable it again.
- Type DISABLE in the box and click Confirm.
How to enforce MFA for a memberLink to this anchor
You can enforce MFA for all users in your Organization, including members.
Refer to the How to enforce MFA documentation page for more information.
How to enforce password renewalLink to this anchor
- Click the Security tab of the Organization Dashboard.
- Scroll to the Password renewal section.
- Click Enforce renewal. A pop-up displays.
Important
Enforcing password renewal means that all members with a password in the Organization will be requested to reset it upon their first login.
- Type ENFORCE in the box and click Confirm.
How to stop enforcing password renewalLink to this anchor
- Click the Security tab of the Organization Dashboard.
- Scroll to the Password renewal section.
- Click Stop enforcing renewal. A pop-up displays.
- Type STOP in the box and click Confirm.
How to edit the grace period of your OrganizationLink to this anchor
From their first login, Members have a default grace period of 3 days to comply with security requirements before their access to the Organization is automatically locked. You can extend or reduce the grace period in the console.
Locked Members cannot connect to the Organization until they are manually unlocked. Upon regaining access, the grace period resets, giving them another chance to meet security requirements.
- Click the Security tab of the Organization Dashboard.
- Scroll to the Grace period section.
- Click Define grace period. A pop-up displays.
- Define the grace period in hours or days.
- Click Define grace period to confirm.