diff --git a/doc/common/figures/SCH_5002_V00_NUAC-Keystone.png b/doc/common/figures/SCH_5002_V00_NUAC-Keystone.png
index 29678ac185..88702402a7 100644
Binary files a/doc/common/figures/SCH_5002_V00_NUAC-Keystone.png and b/doc/common/figures/SCH_5002_V00_NUAC-Keystone.png differ
diff --git a/doc/common/figures/SCH_5002_V00_NUAC-Keystone.svg b/doc/common/figures/SCH_5002_V00_NUAC-Keystone.svg
index a73d3fcbcc..81fb3f91e6 100644
--- a/doc/common/figures/SCH_5002_V00_NUAC-Keystone.svg
+++ b/doc/common/figures/SCH_5002_V00_NUAC-Keystone.svg
@@ -3,11 +3,13 @@
Schéma RéseauPage-1Status bar item.7KeystoneStatus bar item.7KeystoneKeystoneStatus bar item.19EndpointStatus bar item.19EndpointEndpointStatus bar item.46ServiceStatus bar item.46ServiceServiceStatus bar itemUser/ APIStatus bar itemUser/ APIUser/ APIStatus bar item.89ServiceStatus bar item.89ServiceServiceStatus bar item.22User/ APIStatus bar item.22User/ APIUser/ APIStatus bar item.104User/ APIStatus bar item.104User/ APIUser/ APIStatus bar item.13KeystoneStatus bar item.13KeystoneKeystoneSheet.91Sheet.26Sheet.116Sheet.54Sheet.91Sheet.26Sheet.116Sheet.54Sheet.57The Temporary Token is provided along the requestThe Temporary Token is provided along the request
+ v:mID="57"
+ id="shape57-63">Sheet.57The Temporary Token is provided along the requestThe Temporary Token is provided along the requestKeySheet.70Sheet.71Sheet.72Sheet.73Sheet.74Sheet.75ContactUser.50Add list item permissionsNetworkSheet.67Sheet.3Sheet.38Sheet.173- Keystone provides Alice with a list of services3- Keystone provides Alice with a list of services
-Sheet.79Sheet.86Sheet.494- The service verifies Alice’s token4- The service verifies Alice’s token
-Network.80Sheet.53Sheet.59The Keystone Identity ManagerThe Keystone Identity Manager
-Sheet.515- Keystone provides extra info along with the token5- Keystone provides extra info along with the token
-ConfigureUser.95Sheet.11Sheet.68Sheet.69A Temporary Token is createdA Temporary Token is created
-KeySheet.61Sheet.62Sheet.63Sheet.64Sheet.65Sheet.66Sheet.502- Alice requests all the tenants she has2-Alice requests all the tenants she has
-Contact.102User.105Sheet.6Sheet.43Credentials are sentCredentials are sent
-Sheet.94Sheet.21- Alice wants to launch an instance1- Alice wants to launch an instance
-Contact.106Sheet.109Sheet.32KeySheet.41Is the Token correct ?Is the Token correct ?
-Sheet.25Search.33Sheet.31Sheet.76Sheet.35Sheet.24Does it allow that service usage ?Does it allow that service usage ?
-Sheet.23Search.33Sheet.33Sheet.206- The service executes the request6- The service executes the request
-Sheet.297- The service reports the status back to Alice7- The service reports the status back to Alice
-Sheet.30Sheet.44The instance is reachable hereThe instance is reachable here
-Sheet.112Sheet.12Sheet.70Sheet.55Alice determines the correct endpoint to launch an instanceAlice determines the correct endpoint to launch an instance
-Sheet.71LinkSheet.118Sheet.120Alice’s tenant is authorized to access the serviceAlice’s tenant is authorized to access the service
+ v:mID="72"
+ id="shape72-76">Sheet.72Sheet.73Sheet.74Sheet.75ContactUser.50Add list item permissionsNetworkSheet.67Sheet.3Sheet.38Sheet.173- Keystone provides Alice with a list of services3. Keystone provides user with a list of servicesSheet.117The token matches with the requestThe token matches with the request
+ transform="matrix(-1,0,0,-1,704.02837,972.62458)"
+ v:groupContext="shape"
+ v:mID="79"
+ id="shape79-115">Sheet.79Sheet.86Sheet.494- The service verifies Alice’s token4. The service verifies the user's tokenSheet.81Sheet.99A generic catalog is sentNetwork.80Sheet.53Sheet.59The Keystone Identity ManagerThe Keystone Identity Manager
+Sheet.515- Keystone provides extra info along with the token5. Keystone provides extra information and the token
+ConfigureUser.95Sheet.11Sheet.68Sheet.69A Temporary Token is createdA generic catalog is sent
-Sheet.78Sheet.52DocumentSheet.37A Temporary Token is created
+KeySheet.82Sheet.61Sheet.9Discussion.45Sheet.27Sheet.56The token is provided along the requestThe token is provided along the request
+ v:mID="62"
+ id="shape62-158">Sheet.62Sheet.63Sheet.64Sheet.65Sheet.66Sheet.502- Alice requests all the tenants she has2. User requests all the tenants Sheet.48Sheet.83LockSheet.40Sheet.34The instance has been createdThe instance has been created
+ transform="translate(390.21237,-324.34142)"
+ v:groupContext="shape"
+ v:mID="102"
+ id="shape102-180">Contact.102User.105Sheet.6Sheet.43Credentials are sentCredentials are sentSheet.39Sheet.85NewSheet.94Sheet.21- Alice wants to launch an instance1. User wants to launch an instance
+Contact.106Sheet.109Sheet.32Sheet.87Sheet.88That token belongs to the user AliceSheet.41Is the Token correct ?That token belongs to the user Alice
+ y="591.75"
+ x="4">Is the Token correct ?Sheet.25Search.33Sheet.31Sheet.76Sheet.35Sheet.100Status bar item.96ServiceSheet.24Does it allow that service usage ?Does it allow that service usage ?
+Sheet.23Search.33Sheet.33Sheet.206- The service executes the request6. The service executes the request
+Sheet.297- The service reports the status back to Alice7. The service reports the status back to the user
+Sheet.30Sheet.44The instance is reachable hereThe instance is reachable here
+Sheet.112Sheet.12Sheet.55Alice determines the correct endpoint to launch an instanceAlice determines the correct endpoint to launch an instance
+LinkSheet.118Sheet.120Alice’s tenant is authorized to access the serviceAlice’s tenant is authorized to access the service
+Sheet.117The token matches with the requestThe token matches with the request
+Sheet.81Sheet.99A generic catalog is sentA generic catalog is sent
+Sheet.78Sheet.52DocumentSheet.37Sheet.82Sheet.9Discussion.45Sheet.27Sheet.56The token is provided along the requestThe token is provided along the request
+Sheet.48Sheet.83LockSheet.40Sheet.34The instance has been createdThe instance has been created
+Sheet.39Sheet.85NewSheet.87Sheet.88That token belongs to the user AliceThat token belongs to the user Alice
+Sheet.100Status bar item.96ServiceServiceSheet.98The service validates the request against its own policyThe service validates the request against its own policy
+ transform="translate(14.409006,-144.19142)"
+ v:groupContext="shape"
+ v:mID="98"
+ id="shape98-327">Sheet.98The service validates the request against its own policyThe service validates the request against its own policySheet.101Sheet.110Sheet.101Sheet.110Sheet.111Keystone provides a list of services for the tenantKeystone sends a list of
+ v:mID="111"
+ id="shape111-336">Sheet.111Keystone provides a list of services for the tenantKeystone sends a list ofavailable services
-Sheet.128Sheet.124DocumentSheet.90Sheet.92The tenant token is providedThe tenant token is provided
-Sheet.122Sheet.121LockNetwork.123Sheet.4Sheet.93The service creates a new instanceThe service creates a new instance
-Sheet.129Sheet.130A list of tenants is sentA list of tenants is sent
-Sheet.131Sheet.132DocumentSheet.134Sheet.135Sheet.136Credentials are sent with the desired tenantCredentials are sent
-with desired tenant
+ id="tspan3884-9"
+ style="font-size:8.00001144px">available services
Sheet.137Sheet.128Sheet.138Sheet.124Sheet.139Discussion.45Document
\ No newline at end of file
+ d="m 1.16,592.18 0,-0.44 3.73,0 0,0.44 -3.73,0 z m 0,-1.76 0,-0.45 3.73,0 0,0.45 -3.73,0 z m 0,-1.77 0,-0.44 3.73,0 0,0.44 -3.73,0 z m 0,-1.77 0,-0.44 3.73,0 0,0.44 -3.73,0 z m 0,-1.77 0,-0.44 2.34,0 0,0.44 -2.34,0 z m 4.43,9.28 0,-9.72 -1.4,0 0,-2.65 -3.72,0 0,12.37 5.12,0 z m -0.06,-10.16 -1.1,-2.1 0,2.1 1.1,0 z m -0.93,-3.09 1.46,2.76 0,11.38 -6.06,0 0,-14.14 4.6,0 z" />Sheet.90Sheet.92The tenant token is providedThe tenant token is provided
+Sheet.122Sheet.121LockNetwork.123Sheet.4Sheet.93The service creates a new instanceThe service creates a new instance
+Sheet.129Sheet.130A list of tenants is sentA list of tenants is sent
+Sheet.131Sheet.132DocumentSheet.134Sheet.135Sheet.136Credentials are sent with the desired tenantCredentials are sent
+with desired tenant
+Sheet.137Sheet.138Sheet.139Discussion.45
\ No newline at end of file