diff --git a/.github/workflows/deploy-wiab.yml b/.github/workflows/deploy-wiab.yml
deleted file mode 100644
index ad4b0a17f..000000000
--- a/.github/workflows/deploy-wiab.yml
+++ /dev/null
@@ -1,39 +0,0 @@
-# This playbook is not-up-to-date, requires to be updated to match with current developments
-# A new WIAB (wire in a box) dev solution has been created https://docs.wire.com/latest/how-to/install/demo-wiab.html and can be used until this (wiab-staging) gets updated
-name: Deploy on Hetzner WIAB setup
-on:
-  workflow_run:
-    workflows: ["Prepare custom offline package"]
-    types:
-      - completed
-
-jobs:
-  deploy:
-    runs-on: ubuntu-latest
-    concurrency:
-      group: autodeploy-script
-      cancel-in-progress: false
-
-    steps:
-      # Step 1: Checkout the repository code
-      - name: Checkout code
-        uses: actions/checkout@v3
-
-      # Step 2: Set up SSH key for remote access
-      - name: Set up SSH key
-        uses: webfactory/ssh-agent@v0.5.3
-        with:
-          ssh-private-key: ${{ secrets.WIAB_PRIVATE_SSH_KEY }}
-    
-      # Step 3: Get the latest commit SHA, for the artifact
-      - name: Get latest commit SHA
-        id: get_commit_sha
-        run: |
-          COMMIT_SHA=$(git rev-parse HEAD)
-          echo "commit_sha=$COMMIT_SHA" >> $GITHUB_ENV
-
-      # Step 4: Run the autodeploy script
-      - name: Run Auto Deploy Script
-        run: |
-          cd bin
-          ./autodeploy.sh --artifact-hash ${{ env.COMMIT_SHA }} --target-domain wiab-test-box.wire.link --force-redeploy
diff --git a/bin/autodeploy.sh b/bin/autodeploy.sh
deleted file mode 100755
index d7506cf3b..000000000
--- a/bin/autodeploy.sh
+++ /dev/null
@@ -1,450 +0,0 @@
-#!/usr/bin/env bash
-# This script is not-up-to-date, requires to be updated to match with current developments
-# A new WIAB (wire in a box) dev solution has been created https://docs.wire.com/latest/how-to/install/demo-wiab.html and can be used until this (wiab-staging) gets updated
-
-# shellcheck disable=SC2087
-
-# This script can be replaced with a simpler solution of wiab-demo installtion
-# https://docs.wire.com/latest/how-to/install/demo-wiab.html
-
-set -Eeuo pipefail
-
-msg() {
-  echo >&2 -e "${1-}"
-}
-
-trap cleanup SIGINT SIGTERM ERR EXIT
-
-usage() {
-  cat <<EOF
-Usage: $(basename "${BASH_SOURCE[0]}") [-h] [-v] [--force-redeploy] [--artifact-hash string] [--target-domain string]
-
-This script deploys "Wire in a box", a functional, self-contained demo environment of Wire and it's various components.
-Following this Readme: https://github.com/wireapp/wire-server-deploy/blob/master/offline/docs_ubuntu_22.04.md
-
-This script can either be run locally or via CI, always within the context of it's wire-server-deploy repository.
-
-Requirements:
- * A dedicated (root) server running Ubuntu 22.04 Server with at least 16 CPU cores, 64 GiB RAM, 500 GB NVMe SSD and an (unfirewalled) public IP address.
- * DNS setup as required for selfhosting Wire, eg. a domain plus several subdomains (see SUBDOMAINS variable).
- * Access to server via root user using an SSH keypair.
-
-Deployment takes about 90 to 100 minutes on a Hetzner "AX41-NVMe" target system. Longer if RAID is actively syncing disks.
-
-Running the script without any arguments requires one interaction - confirming the removal of any resources left by a previous Wire-in-a-box installation.
-For CI usage, it's recommended to invoke "--force-redeploy".
-
-It is likely desirable to invoke the script with "--artifact-hash" and / or "--target-domain" as well. These are the hardcoded fallback values:
- * artifact-hash = ARTIFACT_HASH
- * target-domain = wiab-autodeploy.wire.link
-
-Available options:
--h, --help          Print this help and exit
--v, --verbose       Print script debug info
---force-redeploy    Force cleanup of previous Wire-in-a-box installation on target host
---artifact-hash     String, specifies artifact ID as created here: https://github.com/wireapp/wire-server-deploy/actions/workflows/offline.yml
---target-domain     String, domain name used to access the target host
-                    Defaults to wiab-autodeploy.wire.link
-EOF
-  exit
-}
-
-cleanup() {
-  trap - SIGINT SIGTERM ERR EXIT
-}
-
-die() {
-  local msg=$1
-  local code=${2-1} # default exit status 1
-  msg "$msg"
-  exit "$code"
-}
-
-parse_params() {
-  ARTIFACT_HASH=""
-  while :; do
-    case "${1-}" in
-    -h | --help) usage ;;
-    -v | --verbose) set -x ;;
-    --force-redeploy) FORCE_REDEPLOY=1 ;;
-    --artifact-hash)
-      ARTIFACT_HASH="${2-}"
-      shift
-      ;;
-    --target-domain)
-      TARGET_SYSTEM="${2-}"
-      shift
-      ;;
-    -?*) die "Unknown option: $1" ;;
-    *) break ;;
-    esac
-    shift
-  done
-
-  # Check if ARTIFACT_HASH is set
-  if [[ -z "$ARTIFACT_HASH" ]]; then
-    usage
-  fi
-  return 0
-}
-
-parse_params "$@"
-
-TARGET_SYSTEM="${TARGET_SYSTEM:-wiab-autodeploy.wire.link}"
-FORCE_REDEPLOY="${FORCE_REDEPLOY:-0}"
-# List of subdomains to check for DNS A records are defined here https://docs.wire.com/how-to/install/helm.html#how-to-set-up-dns-records
-SUBDOMAINS="account assets coturn federator inbucket nginz-https nginz-ssl sftd teams webapp"
-SSH_PORT=22
-SSH_USER=root
-DEMO_USER=demo
-SCRIPT_DIR=/home/"$DEMO_USER"/wire-server-deploy
-DO_SYSTEM_CLEANUP=false
-
-msg ""
-msg "INFO: starting Wire-in-a-box deployment for $TARGET_SYSTEM using artifact ID $ARTIFACT_HASH"
-msg ""
-
-
-for SUBDOMAIN in $SUBDOMAINS; do
-  if host "$SUBDOMAIN"."$TARGET_SYSTEM" >/dev/null 2>&1 ; then
-    msg "INFO: DNS A record exists: $SUBDOMAIN.$TARGET_SYSTEM"
-  else
-    die "ERROR: DNS A record for $SUBDOMAIN.$TARGET_SYSTEM does not exist. Exiting. Please check DNS record set."
-  fi
-done
-
-if ssh -q -o StrictHostKeyChecking=no -o ConnectTimeout=5 -p "$SSH_PORT" "$SSH_USER"@webapp."$TARGET_SYSTEM" id | grep -q "$SSH_USER"; then
-  msg ""
-  msg "INFO: Successfully logged into $TARGET_SYSTEM as $SSH_USER"
-else
-  die "ERROR: Can't log into $TARGET_SYSTEM via SSH, please check SSH connectivity."
-fi
-
-
-if curl --head --silent --fail https://s3-eu-west-1.amazonaws.com/public.wire.com/artifacts/wire-server-deploy-static-"$ARTIFACT_HASH".tgz >/dev/null 2>&1 ; then
-  msg "INFO: Artifact exists https://s3-eu-west-1.amazonaws.com/public.wire.com/artifacts/wire-server-deploy-static-$ARTIFACT_HASH.tgz"
-else
-  die "ERROR: No artifact found via https://s3-eu-west-1.amazonaws.com/public.wire.com/artifacts/wire-server-deploy-static-$ARTIFACT_HASH.tgz"
-fi
-
-system_cleanup_meta() {
-  msg ""
-  msg "INFO: Cleaning up all VMs, docker resources and wire-server-deploy files on $TARGET_SYSTEM."
-  msg ""
-  sleep 5
-  ssh -p "$SSH_PORT" -o StrictHostKeyChecking=no "$SSH_USER"@webapp."$TARGET_SYSTEM" "bash -s" <<EOT
-# Making relevant vars and functions available to remote shell via SSH
-$(declare -p DEMO_USER)
-$(declare -f system_cleanup)
-system_cleanup
-EOT
-}
-
-system_cleanup() {
-  if which virsh > /dev/null; then
-    for VM in $(virsh list --all --name); do virsh destroy "$VM"; virsh undefine "$VM" --remove-all-storage; done
-  fi
-  if which docker > /dev/null; then
-    docker system prune -a -f
-  fi
-  rm -f /home/$DEMO_USER/.ssh/known_hosts
-  rm -rf /home/$DEMO_USER/wire-server-deploy
-  rm -f /home/$DEMO_USER/wire-server-deploy-static-*.tgz
-}
-
-preprovision_hetzner() {
-  msg ""
-  msg "INFO: running local ansible playbook for inital server deployment."
-  msg "INFO: This will setup up the Hetzner system with basic defaults, download and unpack the wire-server-deploy artifact."
-  sleep 5
-  # on Mac devices C.UTF-8 is not available
-  if [[ $(uname) == "Darwin" ]]; then
-    export LC_ALL=en_US.UTF-8
-  else
-    export LC_ALL=C.UTF-8
-  fi
-  ansible-playbook ../ansible/hetzner-single-deploy.yml -e "artifact_hash=$ARTIFACT_HASH" -e "ansible_ssh_common_args='-o ServerAliveInterval=30 -o ServerAliveCountMax=10 -o ControlMaster=auto -o ControlPersist=180m'" -i $SSH_USER@webapp."$TARGET_SYSTEM", --diff
-}
-
-remote_deployment() {
-  msg() {
-    echo >&2 -e "${1-}"
-  }
-  cd $SCRIPT_DIR &>/dev/null || exit 1
-
-  bash bin/offline-vm-setup.sh
-  msg ""
-  while sudo virsh list --all | grep -Fq running; do
-    sleep 20
-    msg "INFO: VM deployment still in progress ..."
-  done
-  sleep 20
-  msg ""
-  msg "INFO: VM deployment done. Starting all VMs:"
-  msg ""
-  for VM in $(sudo virsh list --all --name); do sudo virsh start "$VM"; done
-  sleep 60
-
-  msg ""
-  msg "INFO: Setting up offline environment (this will take a while)."
-  msg ""
-  # Rather than sourcing wire-server-deploy/bin/offline-env.sh, we invoke
-  # the relevant commands below, declaring "d" as a function instead of an alias.
-  ZAUTH_CONTAINER=$(sudo docker load -i "$SCRIPT_DIR"/containers-adminhost/quay.io_wire_zauth_*.tar | awk '{print $3}')
-  export ZAUTH_CONTAINER
-  WSD_CONTAINER=$(sudo docker load -i "$SCRIPT_DIR"/containers-adminhost/container-wire-server-deploy.tgz | awk '{print $3}')
-  d() {
-    sudo docker run --network=host -v "${SSH_AUTH_SOCK:-nonexistent}":/ssh-agent -e SSH_AUTH_SOCK=/ssh-agent -v "$HOME"/.ssh:/root/.ssh -v "$PWD":/wire-server-deploy "$WSD_CONTAINER" "$@"
-  }
-  export -f d
-
-  bash bin/offline-secrets.sh
-
-  HOST_IP=$(dig @resolver4.opendns.com myip.opendns.com +short)
-
-  cat >ansible/inventory/offline/hosts.ini<<EOF
-[all]
-assethost ansible_host=192.168.122.10
-kubenode1 ansible_host=192.168.122.21
-kubenode2 ansible_host=192.168.122.22
-kubenode3 ansible_host=192.168.122.23
-ansnode1 ansible_host=192.168.122.31
-ansnode2 ansible_host=192.168.122.32
-ansnode3 ansible_host=192.168.122.33
-
-[all:vars]
-ansible_user = $DEMO_USER
-
-[cassandra:vars]
-cassandra_network_interface = enp1s0
-cassandra_backup_enabled = False
-cassandra_incremental_backup_enabled = False
-
-[elasticsearch:vars]
-elasticsearch_network_interface = enp1s0
-
-[minio:vars]
-minio_network_interface = enp1s0
-prefix = ""
-domain = "$TARGET_SYSTEM"
-deeplink_title = "wire demo environment, $TARGET_SYSTEM"
-
-[rmq-cluster:vars]
-rabbitmq_network_interface = enp1s0
-
-[kube-master]
-kubenode1
-kubenode2
-kubenode3
-
-[etcd]
-kubenode1 etcd_member_name=etcd1
-kubenode2 etcd_member_name=etcd2
-kubenode3 etcd_member_name=etcd3
-
-[kube-node]
-kubenode1
-kubenode2
-kubenode3
-
-[k8s-cluster:children]
-kube-master
-kube-node
-
-[cassandra]
-ansnode1
-ansnode2
-ansnode3
-
-[cassandra_seed]
-ansnode1
-
-[elasticsearch]
-ansnode1
-ansnode2
-ansnode3
-
-[elasticsearch_master:children]
-elasticsearch
-
-[minio]
-ansnode1
-ansnode2
-ansnode3
-
-[rmq-cluster]
-ansnode1
-ansnode2
-ansnode3
-EOF
-
-  d ./bin/offline-cluster.sh
-  d kubectl get nodes -owide
-  ANSNODES="ansnode1 ansnode2 ansnode3"
-  for ANSNODE in $ANSNODES; do ssh -o StrictHostKeyChecking=no "$ANSNODE" "sudo bash -c '
-set -eo pipefail;
-
-#cassandra
-ufw allow 9042/tcp;
-ufw allow 9160/tcp;
-ufw allow 7000/tcp;
-ufw allow 7199/tcp;
-
-#elasticsearch
-ufw allow 9300/tcp;
-ufw allow 9200/tcp;
-
-#minio
-ufw allow 9000/tcp;
-ufw allow 9092/tcp;
-
-#rabbitmq
-ufw allow 5671/tcp;
-ufw allow 5672/tcp;
-ufw allow 4369/tcp;
-ufw allow 25672/tcp;
-'"; done
-
-  d helm install cassandra-external ./charts/cassandra-external --values ./values/cassandra-external/values.yaml
-  d helm install elasticsearch-external ./charts/elasticsearch-external --values ./values/elasticsearch-external/values.yaml
-  d helm install minio-external ./charts/minio-external --values ./values/minio-external/values.yaml
-
-  cp values/databases-ephemeral/prod-values.example.yaml values/databases-ephemeral/values.yaml
-  d helm install databases-ephemeral ./charts/databases-ephemeral/ --values ./values/databases-ephemeral/values.yaml
-
-  d helm install fake-aws ./charts/fake-aws --values ./values/fake-aws/prod-values.example.yaml
-
-  # ensure that the RELAY_NETWORKS value is set to the podCIDR
-  SMTP_VALUES_FILE="./values/smtp/prod-values.example.yaml"
-  podCIDR=$(d kubectl get configmap -n kube-system kubeadm-config -o yaml | grep -i 'podSubnet' | awk '{print $2}' 2>/dev/null)
-  if [[ $? -eq 0 && -n "$podCIDR" ]]; then
-    sed -i "s|RELAY_NETWORKS: \".*\"|RELAY_NETWORKS: \":${podCIDR}\"|" $SMTP_VALUES_FILE
-  else
-      echo "Failed to fetch podSubnet. Attention using the default value: $(grep -i RELAY_NETWORKS $SMTP_VALUES_FILE)"
-  fi
-  d helm install smtp ./charts/smtp --values $SMTP_VALUES_FILE
-
-  d helm install reaper ./charts/reaper
-
-  cp values/wire-server/prod-values.example.yaml values/wire-server/values.yaml
-  sed -i "s/example.com/$TARGET_SYSTEM/g" values/wire-server/values.yaml
-  sed -i "s/# - \"turn:<IP of coturn1>:3478\"/- \"turn:$HOST_IP:3478\"/g" values/wire-server/values.yaml
-  sed -i "s/# - \"turn:<IP of coturn1>:3478?transport=tcp\"/- \"turn:$HOST_IP:3478?transport=tcp\"/g" values/wire-server/values.yaml
-
-  d helm install wire-server ./charts/wire-server --timeout=15m0s --values ./values/wire-server/values.yaml --values ./values/wire-server/secrets.yaml
-
-  sed -i "s/example.com/$TARGET_SYSTEM/g" values/webapp/prod-values.example.yaml
-  d helm install webapp ./charts/webapp --values ./values/webapp/prod-values.example.yaml
-
-  sed -i "s/example.com/$TARGET_SYSTEM/g" values/team-settings/prod-values.example.yaml
-  d helm install team-settings ./charts/team-settings --values ./values/team-settings/prod-values.example.yaml --values ./values/team-settings/prod-secrets.example.yaml
-
-  sed -i "s/example.com/$TARGET_SYSTEM/g" values/account-pages/prod-values.example.yaml
-  d helm install account-pages ./charts/account-pages --values ./values/account-pages/prod-values.example.yaml
-
-  cp values/ingress-nginx-controller/prod-values.example.yaml ./values/ingress-nginx-controller/values.yaml
-  d helm install ingress-nginx-controller ./charts/ingress-nginx-controller --values ./values/ingress-nginx-controller/values.yaml
-
-  KUBENODEIP=$(d kubectl get pods -l app.kubernetes.io/name=ingress-nginx -o=custom-columns=IP:.status.hostIP --no-headers)
-  sudo sed -i "s/define KUBENODEIP.*/define KUBENODEIP = $KUBENODEIP/" /etc/nftables.conf
-  sudo systemctl restart nftables
-
-  INGRESSNODE=$(d kubectl get pods -l app.kubernetes.io/name=ingress-nginx -o=custom-columns=NODE:.spec.nodeName --no-headers)
-  d kubectl cordon "$INGRESSNODE"
-
-  cp ./values/nginx-ingress-services/prod-values.example.yaml ./values/nginx-ingress-services/values.yaml
-  cp ./values/nginx-ingress-services/prod-secrets.example.yaml ./values/nginx-ingress-services/secrets.yaml
-  sed -i 's/useCertManager: false/useCertManager: true/g' values/nginx-ingress-services/values.yaml
-  sed -i 's/certmasterEmail:/certmasterEmail: backend+wiabautodeploy@wire.com/g' values/nginx-ingress-services/values.yaml
-  sed -i "s/example.com/$TARGET_SYSTEM/" values/nginx-ingress-services/values.yaml
-
-  d kubectl create namespace cert-manager-ns
-  d helm upgrade --install -n cert-manager-ns --set 'installCRDs=true' cert-manager charts/cert-manager --values values/cert-manager/prod-values.example.yaml
-
-  d kubectl uncordon "$INGRESSNODE"
-
-  d helm upgrade --install nginx-ingress-services charts/nginx-ingress-services -f values/nginx-ingress-services/values.yaml
-
-  d kubectl get certificate
-
-  cp values/sftd/prod-values.example.yaml values/sftd/values.yaml
-  sed -i "s/webapp.example.com/webapp.$TARGET_SYSTEM/" values/sftd/values.yaml
-  sed -i "s/sftd.example.com/sftd.$TARGET_SYSTEM/" values/sftd/values.yaml
-  sed -i 's/name: letsencrypt-prod/name: letsencrypt-http01/' values/sftd/values.yaml
-  sed -i "s/replicaCount: 3/replicaCount: 1/" values/sftd/values.yaml
-  d kubectl label node kubenode1 wire.com/role=sftd
-  d helm upgrade --install sftd ./charts/sftd --set 'nodeSelector.wire\.com/role=sftd' --set 'node_annotations="{'wire\.com/external-ip': '"$HOST_IP"'}"' --values values/sftd/values.yaml
-
-  ZREST_SECRET=$(grep -A1 turn values/wire-server/secrets.yaml | grep secret | tr -d '"' | awk '{print $NF}')
-
-  cat >values/coturn/values.yaml<<EOF
-nodeSelector:
-  wire.com/role: coturn
-
-coturnTurnListenIP: '192.168.122.23'
-coturnTurnRelayIP: '192.168.122.23'
-coturnTurnExternalIP: '$HOST_IP'
-EOF
-
-  cat >values/coturn/secrets.yaml<<EOF
-secrets:
-  zrestSecrets:
-    - "$ZREST_SECRET"
-EOF
-
-  d kubectl label node kubenode3 wire.com/role=coturn
-  d kubectl annotate node kubenode3 wire.com/external-ip="$HOST_IP"
-  d helm upgrade --install coturn ./charts/coturn --values values/coturn/values.yaml --values values/coturn/secrets.yaml
-}
-
-EXISTING_INSTALL=$(ssh -p "$SSH_PORT" -o StrictHostKeyChecking=no "$SSH_USER"@webapp."$TARGET_SYSTEM" "ls /home/$DEMO_USER/wire-server-deploy-static-*.tgz 2>/dev/null" || echo "false")
-EXISTING_VMS=$(ssh -p "$SSH_PORT" -o StrictHostKeyChecking=no "$SSH_USER"@webapp."$TARGET_SYSTEM" "virsh list --all --name" || echo "false")
-EXISTING_CONTAINERS=$(ssh -p "$SSH_PORT" -o StrictHostKeyChecking=no "$SSH_USER"@webapp."$TARGET_SYSTEM" "docker ps -q --all" || echo "false")
-
-if [[ "$EXISTING_INSTALL" != "false" && -n "$EXISTING_INSTALL" ]]; then
-  msg ""
-  msg "WARNING: existing wire-server-deploy installation found: $EXISTING_INSTALL"
-  DO_SYSTEM_CLEANUP=true
-fi
-if [[ "$EXISTING_VMS" != "false" && -n "$EXISTING_VMS" ]]; then
-  msg ""
-  msg "WARNING: existing libvirt VMs found: $EXISTING_VMS"
-  DO_SYSTEM_CLEANUP=true
-fi
-if [[ "$EXISTING_CONTAINERS" != "false" && -n "$EXISTING_CONTAINERS"  ]]; then
-  echo "$EXISTING_CONTAINERS"
-  msg ""
-  msg "WARNING: existing Docker containers found."
-  DO_SYSTEM_CLEANUP=true
-fi
-
-if [ "$DO_SYSTEM_CLEANUP" = false ]; then
-  msg ""
-  msg "INFO: Target system clean, no previous wire-server-deploy installation found."
-fi
-if [ "$DO_SYSTEM_CLEANUP" = true ] && [ "$FORCE_REDEPLOY" = 0 ]; then
-  msg ""
-  IFS= read -r -p "Do you want to wipe all wire-server-deploy components from $TARGET_SYSTEM? (y/n) " PROMPT_CLEANUP
-  if [[ $PROMPT_CLEANUP == "n" || $PROMPT_CLEANUP == "N" ]]; then
-    msg ""
-    die "Aborting, not cleaning up $TARGET_SYSTEM"
-  fi
-  system_cleanup_meta
-fi
-if [ "$DO_SYSTEM_CLEANUP" = true ] && [ "$FORCE_REDEPLOY" = 1 ]; then
-  system_cleanup_meta
-fi
-
-msg "INFO: Commencing Wire-in-a-box deployment on $TARGET_SYSTEM."
-preprovision_hetzner
-ssh -p "$SSH_PORT" -o StrictHostKeyChecking=no -o ServerAliveInterval=30 -o ServerAliveCountMax=10 "$DEMO_USER"@webapp."$TARGET_SYSTEM" "bash -s" <<EOT
-# Making relevant vars and functions available to remote shell via SSH
-$(declare -p DEMO_USER TARGET_SYSTEM SCRIPT_DIR)
-$(declare -f remote_deployment)
-remote_deployment
-EOT
-
-msg ""
-msg "INFO: Wire-in-a-box has been deployed successfully!"
-msg "INFO: Access the web client interface at https://webapp.$TARGET_SYSTEM"
-msg "INFO: To interact with k8s, log into $DEMO_USER@$TARGET_SYSTEM and source ./bin/offline-env.sh"
diff --git a/changelog.d/3-deploy-builds/wiab-staging b/changelog.d/3-deploy-builds/wiab-staging
index 755fbbb89..851e0b678 100644
--- a/changelog.d/3-deploy-builds/wiab-staging
+++ b/changelog.d/3-deploy-builds/wiab-staging
@@ -5,3 +5,4 @@ Added: terraform resources for wiab-staging
 Added: cd_staging script to verify the default build bundle
 Changed: changed the flow of offline.yml - introduced wiab-staging build and split bundle processing with default-build
 Added: wiab-staging documetation to wire-server-deploy and fix coturn port ranges
+Removed: old wiab-staging workflows (deploy-wiab.yml) and scripts (autodeploy.sh)
diff --git a/offline/coturn.md b/offline/coturn.md
index 28210b9ff..dcdf74558 100644
--- a/offline/coturn.md
+++ b/offline/coturn.md
@@ -10,8 +10,8 @@ This document explains how to install Coturn on a newly deployed Wire-Server ins
 
 This presumes you already have:
 
-* Followed the [single Hetzner machine installation](single_hetzner_machine_installation.md) guide or otherwise have a machine ready to accept a Wire-Server deployment.
-* Have followed the [Wire-Server installation](docs_ubuntu_22.04.md) guide and have Wire-Server deployed and working.
+* Followed the [WIAB Staging](wiab-staging.md) guide to setup a Wire in a Box staging solution.
+* OR, Have followed the [Wire-Server installation](docs_ubuntu_22.04.md) guide and have Wire-Server deployed and working.
 
 ## Plan. 
 
diff --git a/offline/docs_ubuntu_22.04.md b/offline/docs_ubuntu_22.04.md
index e72f8cc26..7cb4c68e9 100644
--- a/offline/docs_ubuntu_22.04.md
+++ b/offline/docs_ubuntu_22.04.md
@@ -6,7 +6,7 @@ install Wire.
 
 ## Demo / Testing installation
 
-To install a self-hosted instance of Wire deployed on one Server ("Wire in a box") for testing purposes, we recommend the [autodeploy.sh](../bin/autodeploy.sh) script. See also: [Automated full install](single_hetzner_machine_installation.md#automated-full-install) section in the Single Hetzner Machine installation readme.
+To install a self-hosted instance of Wire deployed on one Server ("Wire in a box") for testing purposes, we recommend the [WIAB Staging](wiab-staging.md) or [WIAB Dev](https://docs.wire.com/latest/how-to/install/demo-wiab.html) solution.
 
 ## Installing docker
 
@@ -58,8 +58,6 @@ If you see the curent docker version and no error, it means that Docker is now c
 
 ## Downloading and extracting the artifact
 
-Note: If you have followed the Ubuntu installation instructions (`single_hetzner_machine_installation.md`) before following this page, you already have a wire-server-deploy folder with an artifact extracted into it, and you can simply use that.
-
 Create a fresh workspace to download the artifacts:
 
 ```
@@ -743,7 +741,6 @@ ufw allow in on $OUTBOUNDINTERFACE proto tcp to any port 80;
 "
 ```
 
-For wire-in-a-box deployments based on single_hetzner_machine_installation.md, an nftables based firewall including a predefined ruleset should already exist.
 By default, the predefined ruleset forwards ingress traffic to kubenode1 (192.168.122.21). To check on which node the ingress controller has been deployed, get the node IP via kubectl:
 ```
 d kubectl get pods -l app.kubernetes.io/name=ingress-nginx -o=custom-columns=NAME:.metadata.name,NODE:.spec.nodeName,IP:.status.hostIP