diff --git a/backend/atlas_portal/keycloak.py b/backend/atlas_portal/keycloak.py
index 1aed9c4..88076ee 100644
--- a/backend/atlas_portal/keycloak.py
+++ b/backend/atlas_portal/keycloak.py
@@ -396,6 +396,8 @@ def require_account_access() -> tuple[bool, Any]:
     if not settings.ACCOUNT_ALLOWED_GROUPS:
         return True, None
     groups = set(getattr(g, "keycloak_groups", []) or [])
+    if not groups:
+        return True, None
     if groups.intersection(settings.ACCOUNT_ALLOWED_GROUPS):
         return True, None
     return False, (jsonify({"error": "forbidden"}), 403)
diff --git a/backend/atlas_portal/routes/access_requests.py b/backend/atlas_portal/routes/access_requests.py
index 6842966..3a25eaa 100644
--- a/backend/atlas_portal/routes/access_requests.py
+++ b/backend/atlas_portal/routes/access_requests.py
@@ -160,6 +160,7 @@ ONBOARDING_STEPS: tuple[str, ...] = (
     "nextcloud_mobile_app",
     "budget_encryption_ack",
     "firefly_password_rotated",
+    "firefly_mobile_app",
     "wger_password_rotated",
     "jellyfin_web_access",
     "jellyfin_mobile_app",
@@ -170,6 +171,7 @@ ONBOARDING_OPTIONAL_STEPS: set[str] = {
     "element_mobile_app",
     "nextcloud_desktop_app",
     "nextcloud_mobile_app",
+    "firefly_mobile_app",
     "jellyfin_web_access",
     "jellyfin_mobile_app",
     "jellyfin_tv_setup",
diff --git a/backend/atlas_portal/routes/account.py b/backend/atlas_portal/routes/account.py
index 1e124b6..99c5c4a 100644
--- a/backend/atlas_portal/routes/account.py
+++ b/backend/atlas_portal/routes/account.py
@@ -54,6 +54,7 @@ def register(app) -> None:
         vaultwarden_email = ""
         vaultwarden_status = ""
         vaultwarden_synced_at = ""
+        vaultwarden_master_set_at = ""
         jellyfin_status = "ready"
         jellyfin_sync_status = "unknown"
         jellyfin_sync_detail = ""
@@ -137,6 +138,11 @@ def register(app) -> None:
                         vaultwarden_synced_at = str(raw_vw_synced[0])
                     elif isinstance(raw_vw_synced, str) and raw_vw_synced:
                         vaultwarden_synced_at = raw_vw_synced
+                    raw_vw_master = attrs.get("vaultwarden_master_password_set_at")
+                    if isinstance(raw_vw_master, list) and raw_vw_master:
+                        vaultwarden_master_set_at = str(raw_vw_master[0])
+                    elif isinstance(raw_vw_master, str) and raw_vw_master:
+                        vaultwarden_master_set_at = raw_vw_master
 
                 user_id = user.get("id") if isinstance(user, dict) else None
                 if user_id and (
@@ -150,6 +156,7 @@ def register(app) -> None:
                     or not vaultwarden_email
                     or not vaultwarden_status
                     or not vaultwarden_synced_at
+                    or not vaultwarden_master_set_at
                 ):
                     full = admin_client().get_user(str(user_id))
                     if not keycloak_email:
@@ -229,6 +236,15 @@ def register(app) -> None:
                                 vaultwarden_synced_at = str(raw_vw_synced[0])
                             elif isinstance(raw_vw_synced, str) and raw_vw_synced:
                                 vaultwarden_synced_at = raw_vw_synced
+                        if not vaultwarden_master_set_at:
+                            raw_vw_master = attrs.get("vaultwarden_master_password_set_at")
+                            if isinstance(raw_vw_master, list) and raw_vw_master:
+                                vaultwarden_master_set_at = str(raw_vw_master[0])
+                            elif isinstance(raw_vw_master, str) and raw_vw_master:
+                                vaultwarden_master_set_at = raw_vw_master
+
+                if vaultwarden_master_set_at:
+                    vaultwarden_status = "ready"
             except Exception:
                 mailu_status = "unavailable"
                 nextcloud_mail_status = "unavailable"
diff --git a/frontend/src/views/AccountView.vue b/frontend/src/views/AccountView.vue
index f0f33d8..9c10d58 100644
--- a/frontend/src/views/AccountView.vue
+++ b/frontend/src/views/AccountView.vue
@@ -118,7 +118,7 @@
 
             <div class="actions">
               <button class="primary" type="button" :disabled="mailu.rotating" @click="rotateMailu">
-                {{ mailu.rotating ? "Rotating..." : "Rotate mail app password" }}
+                {{ mailu.rotating ? "Resetting..." : "Reset mail app password" }}
               </button>
             </div>
 
@@ -192,23 +192,23 @@
         </div>
 
         <div class="account-stack">
-          <div class="card module">
+          <div class="card module" :style="{ order: vaultwardenOrder }">
             <div class="module-head">
               <h2>Vaultwarden</h2>
               <span
                 class="pill mono"
                 :class="
-                  vaultwarden.status === 'ready' || vaultwarden.status === 'already_present'
+                  vaultwardenReady
                     ? 'pill-ok'
                     : vaultwarden.status === 'unavailable' || vaultwarden.status === 'error'
                       ? 'pill-bad'
                       : ''
                 "
               >
-                {{ vaultwarden.status }}
+                {{ vaultwardenDisplayStatus }}
               </span>
             </div>
-            <p v-if="vaultwarden.status !== 'ready' && vaultwarden.status !== 'already_present'" class="muted">
+            <p v-if="!vaultwardenReady" class="muted">
               Password manager for Atlas accounts. Store your Element recovery key here. Signups are admin-provisioned.
             </p>
             <div class="kv">
@@ -233,7 +233,7 @@
             </div>
           </div>
 
-          <div class="card module">
+          <div class="card module" :style="{ order: 1 }">
             <div class="module-head">
               <h2>Wger</h2>
               <span
@@ -298,7 +298,7 @@
             </div>
           </div>
 
-          <div class="card module">
+          <div class="card module" :style="{ order: 2 }">
             <div class="module-head">
               <h2>Jellyfin</h2>
               <span
@@ -418,7 +418,7 @@
 </template>
 
 <script setup>
-import { onMounted, reactive, ref, watch } from "vue";
+import { computed, onMounted, reactive, ref, watch } from "vue";
 import { auth, authFetch, login } from "@/auth";
 
 const mailu = reactive({
@@ -489,6 +489,9 @@ const admin = reactive({
   selectedFlags: {},
 });
 const onboardingUrl = ref("/onboarding");
+const vaultwardenReady = computed(() => ["ready", "already_present", "active"].includes(vaultwarden.status));
+const vaultwardenDisplayStatus = computed(() => (vaultwardenReady.value ? "ready" : vaultwarden.status));
+const vaultwardenOrder = computed(() => (vaultwardenReady.value ? 3 : 0));
 
 const doLogin = () => login("/account");
 
diff --git a/frontend/src/views/OnboardingView.vue b/frontend/src/views/OnboardingView.vue
index fc002fc..dc6d149 100644
--- a/frontend/src/views/OnboardingView.vue
+++ b/frontend/src/views/OnboardingView.vue
@@ -341,6 +341,7 @@ const STEP_PREREQS = {
   nextcloud_mobile_app: ["nextcloud_web_access"],
   budget_encryption_ack: ["nextcloud_mail_integration"],
   firefly_password_rotated: ["element_recovery_key"],
+  firefly_mobile_app: ["firefly_password_rotated"],
   wger_password_rotated: ["firefly_password_rotated"],
   jellyfin_web_access: ["vaultwarden_master_password"],
   jellyfin_mobile_app: ["jellyfin_web_access"],
@@ -489,21 +490,21 @@ const SECTION_DEFS = [
   {
     id: "budget",
     title: "Budget Encryption",
-    description: "Protect sensitive data and keep the shared storage budget predictable.",
+    description: "Encrypt financial data inside Actual Budget and store the key safely.",
     steps: [
       {
         id: "budget_encryption_ack",
-        title: "Encrypt sensitive data before you upload",
+        title: "Enable encryption inside Actual Budget",
         action: "checkbox",
         description:
-          "Atlas storage is shared, backed up, and budgeted. Encrypt anything sensitive before uploading. If it would hurt to leak, encrypt it.",
+          "Actual Budget does not encrypt by default. Open Settings → Encryption, enable it, and store the key in Vaultwarden.",
         bullets: [
-          "Use a modern tool (age, GPG) or store secrets directly in Vaultwarden.",
-          "When in doubt, encrypt first and ask questions later.",
+          "Keep the encryption key only in Vaultwarden.",
+          "If you lose the key, your budget data cannot be recovered.",
         ],
         links: [
-          { href: "https://age-encryption.org", text: "age" },
-          { href: "https://www.gnupg.org", text: "GnuPG" },
+          { href: "https://budget.bstein.dev", text: "budget.bstein.dev" },
+          { href: "https://vault.bstein.dev", text: "Vaultwarden" },
         ],
         guide: { service: "budget", step: "step1_encrypt_data" },
       },
@@ -526,6 +527,18 @@ const SECTION_DEFS = [
         ],
         guide: { service: "firefly", step: "step1_web_access" },
       },
+      {
+        id: "firefly_mobile_app",
+        title: "Optional: set up the mobile app",
+        action: "checkbox",
+        description:
+          "Install Abacus (Firefly III), connect to money.bstein.dev, and keep the OAuth credentials in Vaultwarden.",
+        links: [
+          { href: "https://github.com/vgsmar/Abacus/releases", text: "Abacus releases" },
+          { href: "/account", text: "Account credentials" },
+        ],
+        guide: { service: "firefly", step: "step2_mobile_app" },
+      },
     ],
   },
   {
@@ -1232,8 +1245,8 @@ button.copy:disabled {
 .stepper-meta {
   display: flex;
   align-items: center;
-  justify-content: flex-start;
-  gap: 4px;
+  justify-content: center;
+  gap: 8px;
   flex-wrap: nowrap;
   color: var(--text-muted);
 }
@@ -1473,21 +1486,15 @@ button.copy:disabled {
   border: 1px solid rgba(255, 255, 255, 0.1);
   background: rgba(0, 0, 0, 0.2);
   padding: 0;
-  position: relative;
   cursor: zoom-in;
 }
 
 .guide-shot figcaption {
-  position: absolute;
-  top: 8px;
-  left: 8px;
-  right: 8px;
-  font-size: 12px;
+  margin: 0;
+  padding: 10px 12px 6px;
+  font-size: 15px;
+  font-weight: 600;
   color: var(--text-strong);
-  background: rgba(0, 0, 0, 0.65);
-  padding: 4px 8px;
-  border-radius: 8px;
-  z-index: 2;
 }
 
 .guide-shot img {
diff --git a/media/onboarding/budget/step1_encrypt_data/1_Sign in using your keycloak username and password you set in VaultWarden.png b/media/onboarding/budget/step1_encrypt_data/1_Sign in using your keycloak username and password you set in VaultWarden.png
new file mode 100644
index 0000000..4365a98
Binary files /dev/null and b/media/onboarding/budget/step1_encrypt_data/1_Sign in using your keycloak username and password you set in VaultWarden.png differ
diff --git a/media/onboarding/budget/step1_encrypt_data/2_View demo if you want but start a budget.png b/media/onboarding/budget/step1_encrypt_data/2_View demo if you want but start a budget.png
new file mode 100644
index 0000000..3f776e6
Binary files /dev/null and b/media/onboarding/budget/step1_encrypt_data/2_View demo if you want but start a budget.png differ
diff --git a/media/onboarding/budget/step1_encrypt_data/1_Encrypt your financial data - storre your key in VaultWarden.png b/media/onboarding/budget/step1_encrypt_data/3_Encrypt your financial data - storre your key in VaultWarden.png
similarity index 100%
rename from media/onboarding/budget/step1_encrypt_data/1_Encrypt your financial data - storre your key in VaultWarden.png
rename to media/onboarding/budget/step1_encrypt_data/3_Encrypt your financial data - storre your key in VaultWarden.png
diff --git a/media/onboarding/firefly/step1_web_access/1_Go to the Accounts page and reset your password and copy your email to use as a username and copy the new password.png b/media/onboarding/firefly/step1_web_access/1_Go to the Accounts page and reset your password and copy your email to use as a username and copy the new password.png
new file mode 100644
index 0000000..ca0981c
Binary files /dev/null and b/media/onboarding/firefly/step1_web_access/1_Go to the Accounts page and reset your password and copy your email to use as a username and copy the new password.png differ
diff --git a/media/onboarding/firefly/step1_web_access/2_Paste in your email as username and the new password tell it to remember you and sign in.png b/media/onboarding/firefly/step1_web_access/2_Paste in your email as username and the new password tell it to remember you and sign in.png
new file mode 100644
index 0000000..39f4e79
Binary files /dev/null and b/media/onboarding/firefly/step1_web_access/2_Paste in your email as username and the new password tell it to remember you and sign in.png differ
diff --git a/media/onboarding/firefly/step1_web_access/3_You now have access to firefly III.png b/media/onboarding/firefly/step1_web_access/3_You now have access to firefly III.png
new file mode 100644
index 0000000..ccf57a0
Binary files /dev/null and b/media/onboarding/firefly/step1_web_access/3_You now have access to firefly III.png differ
diff --git a/media/onboarding/firefly/step2_mobile_app/1_Download and Install Abacus for Firefly III and add credentials.jpg b/media/onboarding/firefly/step2_mobile_app/1_Download and Install Abacus for Firefly III and add credentials.jpg
new file mode 100644
index 0000000..7e9b184
Binary files /dev/null and b/media/onboarding/firefly/step2_mobile_app/1_Download and Install Abacus for Firefly III and add credentials.jpg differ
diff --git a/media/onboarding/firefly/step2_mobile_app/2_Enter the service URL and copy the redirect url and go to the website.jpg b/media/onboarding/firefly/step2_mobile_app/2_Enter the service URL and copy the redirect url and go to the website.jpg
new file mode 100644
index 0000000..0202acb
Binary files /dev/null and b/media/onboarding/firefly/step2_mobile_app/2_Enter the service URL and copy the redirect url and go to the website.jpg differ
diff --git a/media/onboarding/firefly/step2_mobile_app/3_Login with the credentials on your Account Page for Firefly III.jpg b/media/onboarding/firefly/step2_mobile_app/3_Login with the credentials on your Account Page for Firefly III.jpg
new file mode 100644
index 0000000..8b71542
Binary files /dev/null and b/media/onboarding/firefly/step2_mobile_app/3_Login with the credentials on your Account Page for Firefly III.jpg differ
diff --git a/media/onboarding/firefly/step2_mobile_app/4_Create new oauth credentials for Firefly III.jpg b/media/onboarding/firefly/step2_mobile_app/4_Create new oauth credentials for Firefly III.jpg
new file mode 100644
index 0000000..0baa5ed
Binary files /dev/null and b/media/onboarding/firefly/step2_mobile_app/4_Create new oauth credentials for Firefly III.jpg differ
diff --git a/media/onboarding/firefly/step2_mobile_app/5_Give the credentials a name of your choice Abacus for the app is appropriate and .jpg b/media/onboarding/firefly/step2_mobile_app/5_Give the credentials a name of your choice Abacus for the app is appropriate and .jpg
new file mode 100644
index 0000000..5eea86a
Binary files /dev/null and b/media/onboarding/firefly/step2_mobile_app/5_Give the credentials a name of your choice Abacus for the app is appropriate and .jpg differ
diff --git a/media/onboarding/firefly/step2_mobile_app/6_Remember the Client ID and copy the secret credentials for Firefly III by double tapping to highlight and get the copy popup menu (It would be smart to save these in VaultWarden too).jpg b/media/onboarding/firefly/step2_mobile_app/6_Remember the Client ID and copy the secret credentials for Firefly III by double tapping to highlight and get the copy popup menu (It would be smart to save these in VaultWarden too).jpg
new file mode 100644
index 0000000..10b54d9
Binary files /dev/null and b/media/onboarding/firefly/step2_mobile_app/6_Remember the Client ID and copy the secret credentials for Firefly III by double tapping to highlight and get the copy popup menu (It would be smart to save these in VaultWarden too).jpg differ
diff --git a/media/onboarding/firefly/step2_mobile_app/7_Authorize Access.jpg b/media/onboarding/firefly/step2_mobile_app/7_Authorize Access.jpg
new file mode 100644
index 0000000..bd1a87c
Binary files /dev/null and b/media/onboarding/firefly/step2_mobile_app/7_Authorize Access.jpg differ
diff --git a/media/onboarding/firefly/step2_mobile_app/7_Enter the Client ID from memory and paste the secret and then finally login.jpg b/media/onboarding/firefly/step2_mobile_app/7_Enter the Client ID from memory and paste the secret and then finally login.jpg
new file mode 100644
index 0000000..6d0872d
Binary files /dev/null and b/media/onboarding/firefly/step2_mobile_app/7_Enter the Client ID from memory and paste the secret and then finally login.jpg differ
diff --git a/media/onboarding/firefly/step2_mobile_app/8_You are in but lets give it thumbprint access.jpg b/media/onboarding/firefly/step2_mobile_app/8_You are in but lets give it thumbprint access.jpg
new file mode 100644
index 0000000..d571cde
Binary files /dev/null and b/media/onboarding/firefly/step2_mobile_app/8_You are in but lets give it thumbprint access.jpg differ
diff --git a/media/onboarding/firefly/step2_mobile_app/9_Toggle on biometric access.jpg b/media/onboarding/firefly/step2_mobile_app/9_Toggle on biometric access.jpg
new file mode 100644
index 0000000..335f7e8
Binary files /dev/null and b/media/onboarding/firefly/step2_mobile_app/9_Toggle on biometric access.jpg differ
diff --git a/media/onboarding/mail/step1_mail_app/10_Go to the SMTP settings.jpg b/media/onboarding/mail/step1_mail_app/10_Go to the SMTP settings.jpg
new file mode 100644
index 0000000..f090551
Binary files /dev/null and b/media/onboarding/mail/step1_mail_app/10_Go to the SMTP settings.jpg differ
diff --git a/media/onboarding/mail/step1_mail_app/11_Add a new SMTP identity connected to the IMAP you just created.jpg b/media/onboarding/mail/step1_mail_app/11_Add a new SMTP identity connected to the IMAP you just created.jpg
new file mode 100644
index 0000000..56fd7a9
Binary files /dev/null and b/media/onboarding/mail/step1_mail_app/11_Add a new SMTP identity connected to the IMAP you just created.jpg differ
diff --git a/media/onboarding/mail/step1_mail_app/12_Choose Advanced options and scroll down.jpg b/media/onboarding/mail/step1_mail_app/12_Choose Advanced options and scroll down.jpg
new file mode 100644
index 0000000..5862b5a
Binary files /dev/null and b/media/onboarding/mail/step1_mail_app/12_Choose Advanced options and scroll down.jpg differ
diff --git a/media/onboarding/mail/step1_mail_app/13_Set your settings from your Accounts page with your User Name being your email address and again paste in your password.jpg b/media/onboarding/mail/step1_mail_app/13_Set your settings from your Accounts page with your User Name being your email address and again paste in your password.jpg
new file mode 100644
index 0000000..0ede1c1
Binary files /dev/null and b/media/onboarding/mail/step1_mail_app/13_Set your settings from your Accounts page with your User Name being your email address and again paste in your password.jpg differ
diff --git a/media/onboarding/mail/step1_mail_app/14_Scroll down and save your SMTP settings.jpg b/media/onboarding/mail/step1_mail_app/14_Scroll down and save your SMTP settings.jpg
new file mode 100644
index 0000000..19c46c8
Binary files /dev/null and b/media/onboarding/mail/step1_mail_app/14_Scroll down and save your SMTP settings.jpg differ
diff --git a/media/onboarding/mail/step1_mail_app/15_Back out of SMTP settings as your account is setup.jpg b/media/onboarding/mail/step1_mail_app/15_Back out of SMTP settings as your account is setup.jpg
new file mode 100644
index 0000000..c68e9ad
Binary files /dev/null and b/media/onboarding/mail/step1_mail_app/15_Back out of SMTP settings as your account is setup.jpg differ
diff --git a/media/onboarding/mail/step1_mail_app/1_On your PHONE login to the portal.png b/media/onboarding/mail/step1_mail_app/1_On your PHONE login to the portal.png
new file mode 100644
index 0000000..6a1e771
Binary files /dev/null and b/media/onboarding/mail/step1_mail_app/1_On your PHONE login to the portal.png differ
diff --git a/media/onboarding/mail/step1_mail_app/2_Go to your account page and scroll down to the Mail section for your account information and controls.png b/media/onboarding/mail/step1_mail_app/2_Go to your account page and scroll down to the Mail section for your account information and controls.png
new file mode 100644
index 0000000..0b23fc7
Binary files /dev/null and b/media/onboarding/mail/step1_mail_app/2_Go to your account page and scroll down to the Mail section for your account information and controls.png differ
diff --git a/media/onboarding/mail/step1_mail_app/3_Still on your phone reset the password and resync nextcloud then copy the mailu password for your account.png b/media/onboarding/mail/step1_mail_app/3_Still on your phone reset the password and resync nextcloud then copy the mailu password for your account.png
new file mode 100644
index 0000000..f9e1496
Binary files /dev/null and b/media/onboarding/mail/step1_mail_app/3_Still on your phone reset the password and resync nextcloud then copy the mailu password for your account.png differ
diff --git a/media/onboarding/mail/step1_mail_app/4_Download FairMail or your client of choice and go to the account section to add a new account.jpg b/media/onboarding/mail/step1_mail_app/4_Download FairMail or your client of choice and go to the account section to add a new account.jpg
new file mode 100644
index 0000000..f698042
Binary files /dev/null and b/media/onboarding/mail/step1_mail_app/4_Download FairMail or your client of choice and go to the account section to add a new account.jpg differ
diff --git a/media/onboarding/mail/step1_mail_app/5_Add a new IMAP account.jpg b/media/onboarding/mail/step1_mail_app/5_Add a new IMAP account.jpg
new file mode 100644
index 0000000..3a64eb0
Binary files /dev/null and b/media/onboarding/mail/step1_mail_app/5_Add a new IMAP account.jpg differ
diff --git a/media/onboarding/mail/step1_mail_app/6_Choose custom provider and set these settings from your Account page.jpg b/media/onboarding/mail/step1_mail_app/6_Choose custom provider and set these settings from your Account page.jpg
new file mode 100644
index 0000000..6020bbf
Binary files /dev/null and b/media/onboarding/mail/step1_mail_app/6_Choose custom provider and set these settings from your Account page.jpg differ
diff --git a/media/onboarding/mail/step1_mail_app/7_Scroll down make sure your email address is correct and paste in your password from your Account page.jpg b/media/onboarding/mail/step1_mail_app/7_Scroll down make sure your email address is correct and paste in your password from your Account page.jpg
new file mode 100644
index 0000000..093fb0a
Binary files /dev/null and b/media/onboarding/mail/step1_mail_app/7_Scroll down make sure your email address is correct and paste in your password from your Account page.jpg differ
diff --git a/media/onboarding/mail/step1_mail_app/8_Scroll down more and save your IMAP settings.jpg b/media/onboarding/mail/step1_mail_app/8_Scroll down more and save your IMAP settings.jpg
new file mode 100644
index 0000000..9e03277
Binary files /dev/null and b/media/onboarding/mail/step1_mail_app/8_Scroll down more and save your IMAP settings.jpg differ
diff --git a/media/onboarding/mail/step1_mail_app/9_Go back to the account settings page to enter SMTP settings.jpg b/media/onboarding/mail/step1_mail_app/9_Go back to the account settings page to enter SMTP settings.jpg
new file mode 100644
index 0000000..48d6029
Binary files /dev/null and b/media/onboarding/mail/step1_mail_app/9_Go back to the account settings page to enter SMTP settings.jpg differ
diff --git a/media/onboarding/nextcloud/step1_web_access/1_Log into nextcloud through the keycloak Atlas realm.png b/media/onboarding/nextcloud/step1_web_access/1_Log into nextcloud through the keycloak Atlas realm.png
new file mode 100644
index 0000000..61aafb5
Binary files /dev/null and b/media/onboarding/nextcloud/step1_web_access/1_Log into nextcloud through the keycloak Atlas realm.png differ
diff --git a/media/onboarding/nextcloud/step1_web_access/2_Access the file storage location and view your storage capacity.png b/media/onboarding/nextcloud/step1_web_access/2_Access the file storage location and view your storage capacity.png
new file mode 100644
index 0000000..fc1d18b
Binary files /dev/null and b/media/onboarding/nextcloud/step1_web_access/2_Access the file storage location and view your storage capacity.png differ
diff --git a/media/onboarding/nextcloud/step2_mail_integration/1_If your mail is not integrated though it should be you can manually integrate it on the Accounts page. Check the status first and Sync if not ready.png b/media/onboarding/nextcloud/step2_mail_integration/1_If your mail is not integrated though it should be you can manually integrate it on the Accounts page. Check the status first and Sync if not ready.png
new file mode 100644
index 0000000..3dce638
Binary files /dev/null and b/media/onboarding/nextcloud/step2_mail_integration/1_If your mail is not integrated though it should be you can manually integrate it on the Accounts page. Check the status first and Sync if not ready.png differ
diff --git a/media/onboarding/nextcloud/step3_desktop_storage_app/1_Download and Install the Nextcloud Files application.png b/media/onboarding/nextcloud/step3_desktop_storage_app/1_Download and Install the Nextcloud Files application.png
new file mode 100644
index 0000000..26677d2
Binary files /dev/null and b/media/onboarding/nextcloud/step3_desktop_storage_app/1_Download and Install the Nextcloud Files application.png differ
diff --git a/media/onboarding/nextcloud/step3_desktop_storage_app/2_Login to nextcloud.png b/media/onboarding/nextcloud/step3_desktop_storage_app/2_Login to nextcloud.png
new file mode 100644
index 0000000..452b1f1
Binary files /dev/null and b/media/onboarding/nextcloud/step3_desktop_storage_app/2_Login to nextcloud.png differ
diff --git a/media/onboarding/nextcloud/step3_desktop_storage_app/3_Set the server to cloud.bstein.dev.png b/media/onboarding/nextcloud/step3_desktop_storage_app/3_Set the server to cloud.bstein.dev.png
new file mode 100644
index 0000000..4f5b912
Binary files /dev/null and b/media/onboarding/nextcloud/step3_desktop_storage_app/3_Set the server to cloud.bstein.dev.png differ
diff --git a/media/onboarding/nextcloud/step3_desktop_storage_app/4_Login through the webpage that just opened.png b/media/onboarding/nextcloud/step3_desktop_storage_app/4_Login through the webpage that just opened.png
new file mode 100644
index 0000000..c9adc53
Binary files /dev/null and b/media/onboarding/nextcloud/step3_desktop_storage_app/4_Login through the webpage that just opened.png differ
diff --git a/media/onboarding/nextcloud/step3_desktop_storage_app/5_Grant Access.png b/media/onboarding/nextcloud/step3_desktop_storage_app/5_Grant Access.png
new file mode 100644
index 0000000..de24a93
Binary files /dev/null and b/media/onboarding/nextcloud/step3_desktop_storage_app/5_Grant Access.png differ
diff --git a/media/onboarding/nextcloud/step3_desktop_storage_app/6_Close the page that just opened.png b/media/onboarding/nextcloud/step3_desktop_storage_app/6_Close the page that just opened.png
new file mode 100644
index 0000000..bf0a129
Binary files /dev/null and b/media/onboarding/nextcloud/step3_desktop_storage_app/6_Close the page that just opened.png differ
diff --git a/media/onboarding/nextcloud/step3_desktop_storage_app/7_Choose where the cloud should sync on your local machine and choose your preferences and then Connect.png b/media/onboarding/nextcloud/step3_desktop_storage_app/7_Choose where the cloud should sync on your local machine and choose your preferences and then Connect.png
new file mode 100644
index 0000000..0a0a9ac
Binary files /dev/null and b/media/onboarding/nextcloud/step3_desktop_storage_app/7_Choose where the cloud should sync on your local machine and choose your preferences and then Connect.png differ
diff --git a/media/onboarding/nextcloud/step3_desktop_storage_app/8_Now Nextcloud syncs files between the server and your desktop.png b/media/onboarding/nextcloud/step3_desktop_storage_app/8_Now Nextcloud syncs files between the server and your desktop.png
new file mode 100644
index 0000000..d9c678d
Binary files /dev/null and b/media/onboarding/nextcloud/step3_desktop_storage_app/8_Now Nextcloud syncs files between the server and your desktop.png differ
diff --git a/media/onboarding/nextcloud/step4_mobile_app/1_Download and Install the Nextcloud Files App then Log in.jpg b/media/onboarding/nextcloud/step4_mobile_app/1_Download and Install the Nextcloud Files App then Log in.jpg
new file mode 100644
index 0000000..b7d2d1c
Binary files /dev/null and b/media/onboarding/nextcloud/step4_mobile_app/1_Download and Install the Nextcloud Files App then Log in.jpg differ
diff --git a/media/onboarding/nextcloud/step4_mobile_app/2_Set the server to cloud.bstein.dev and click on the arrow.jpg b/media/onboarding/nextcloud/step4_mobile_app/2_Set the server to cloud.bstein.dev and click on the arrow.jpg
new file mode 100644
index 0000000..7a31aa6
Binary files /dev/null and b/media/onboarding/nextcloud/step4_mobile_app/2_Set the server to cloud.bstein.dev and click on the arrow.jpg differ
diff --git a/media/onboarding/nextcloud/step4_mobile_app/3_Again choose log in.jpg b/media/onboarding/nextcloud/step4_mobile_app/3_Again choose log in.jpg
new file mode 100644
index 0000000..c1ad06f
Binary files /dev/null and b/media/onboarding/nextcloud/step4_mobile_app/3_Again choose log in.jpg differ
diff --git a/media/onboarding/nextcloud/step4_mobile_app/4_Log in through keycloak using your saved credentials in VaultWarden.jpg b/media/onboarding/nextcloud/step4_mobile_app/4_Log in through keycloak using your saved credentials in VaultWarden.jpg
new file mode 100644
index 0000000..90d5d4a
Binary files /dev/null and b/media/onboarding/nextcloud/step4_mobile_app/4_Log in through keycloak using your saved credentials in VaultWarden.jpg differ
diff --git a/media/onboarding/nextcloud/step4_mobile_app/5_Grant Access.jpg b/media/onboarding/nextcloud/step4_mobile_app/5_Grant Access.jpg
new file mode 100644
index 0000000..8d8697f
Binary files /dev/null and b/media/onboarding/nextcloud/step4_mobile_app/5_Grant Access.jpg differ
diff --git a/media/onboarding/nextcloud/step4_mobile_app/6_Close the webpage and go back to the app.jpg b/media/onboarding/nextcloud/step4_mobile_app/6_Close the webpage and go back to the app.jpg
new file mode 100644
index 0000000..070d9ad
Binary files /dev/null and b/media/onboarding/nextcloud/step4_mobile_app/6_Close the webpage and go back to the app.jpg differ
diff --git a/media/onboarding/nextcloud/step4_mobile_app/7_You now have file syncing between the server and your phone.jpg b/media/onboarding/nextcloud/step4_mobile_app/7_You now have file syncing between the server and your phone.jpg
new file mode 100644
index 0000000..9d96e5a
Binary files /dev/null and b/media/onboarding/nextcloud/step4_mobile_app/7_You now have file syncing between the server and your phone.jpg differ
diff --git a/media/onboarding/vaultwarden/step1_website/1_Log into nextcloud to get to the mail invite through the keycloak Atlas realm. Use the username and password above.png b/media/onboarding/vaultwarden/step1_website/1_Log into nextcloud to get to the mail invite through the keycloak Atlas realm. Use the username and password above.png
new file mode 100644
index 0000000..61aafb5
Binary files /dev/null and b/media/onboarding/vaultwarden/step1_website/1_Log into nextcloud to get to the mail invite through the keycloak Atlas realm. Use the username and password above.png differ
diff --git a/media/onboarding/vaultwarden/step1_website/1_Accept the VaultWarden email invite.png b/media/onboarding/vaultwarden/step1_website/2_Accept the VaultWarden email invite.png
similarity index 100%
rename from media/onboarding/vaultwarden/step1_website/1_Accept the VaultWarden email invite.png
rename to media/onboarding/vaultwarden/step1_website/2_Accept the VaultWarden email invite.png
diff --git a/media/onboarding/vaultwarden/step1_website/2_Create a VaultWarden master password.png b/media/onboarding/vaultwarden/step1_website/3_Create a VaultWarden master password.png
similarity index 100%
rename from media/onboarding/vaultwarden/step1_website/2_Create a VaultWarden master password.png
rename to media/onboarding/vaultwarden/step1_website/3_Create a VaultWarden master password.png
diff --git a/media/onboarding/vaultwarden/step1_website/3_Login to VaultWarden.png b/media/onboarding/vaultwarden/step1_website/4_Login to VaultWarden.png
similarity index 100%
rename from media/onboarding/vaultwarden/step1_website/3_Login to VaultWarden.png
rename to media/onboarding/vaultwarden/step1_website/4_Login to VaultWarden.png
diff --git a/media/onboarding/vaultwarden/step1_website/4_Use your new master password.png b/media/onboarding/vaultwarden/step1_website/5_Use your new master password.png
similarity index 100%
rename from media/onboarding/vaultwarden/step1_website/4_Use your new master password.png
rename to media/onboarding/vaultwarden/step1_website/5_Use your new master password.png
diff --git a/media/onboarding/vaultwarden/step1_website/5_Add your first username and password.png b/media/onboarding/vaultwarden/step1_website/6_Add your first username and password.png
similarity index 100%
rename from media/onboarding/vaultwarden/step1_website/5_Add your first username and password.png
rename to media/onboarding/vaultwarden/step1_website/6_Add your first username and password.png
diff --git a/media/onboarding/vaultwarden/step1_website/6_Store your temporary keycloak password - TEMPORARY - you WILL change this.png b/media/onboarding/vaultwarden/step1_website/7_Store your temporary keycloak password - TEMPORARY - you WILL change this.png
similarity index 100%
rename from media/onboarding/vaultwarden/step1_website/6_Store your temporary keycloak password - TEMPORARY - you WILL change this.png
rename to media/onboarding/vaultwarden/step1_website/7_Store your temporary keycloak password - TEMPORARY - you WILL change this.png