We only ever need read-only access. Here's exactly how to set it up in AWS or Azure — takes less than 5 minutes.
Go to console.aws.amazon.com → Services → IAM → Users → Add User
Call it something like nubolabs-readonly so it's easy to identify and revoke later.
Select "Attach policies directly" and search for and attach:
Go to the user → Security credentials → Create access key → Select "Third-party service"
Email your Access Key ID and Secret Access Key to:
kenziebollon@nubolabs.co.uk
We recommend using a secure method like 1Password Share. Never send via Slack or WhatsApp.
Go to portal.azure.com and click the Cloud Shell icon (top right) or use the Azure CLI locally.
Run this command:
The command returns a JSON object with appId, password, and tenant. Copy all of it.
Email the JSON output to:
kenziebollon@nubolabs.co.uk
Use a secure sharing method. We recommend 1Password Share or similar.
Once the audit is complete, delete the service principal:
Your credentials are used solely for the agreed audit. They are stored encrypted, never shared with any third party, and we request you revoke them within 30 days of audit completion unless on an active retainer. We have never and will never make changes to a client's infrastructure without explicit written approval. Read our full Privacy Policy and Terms of Service.
Ready to go? Send your credentials and we'll get started.
Email credentials →