Create an AWS Read-Only Access Token
During an AWS Penetration Test its common for the team to request an administrative read-only access token. This is used to review AWS assets and identify misconfigurations affecting them.
Below is a set by step guide to create these tokens:
1. Navigate to IAM
2. Click Users
3. Click Add User
4. Create a name and select ‘Access key’
5. Search ReadOnlyAccess
6. Create User
7. Copy Access Token and Secret
Congrats you’re done! Always remember to keep this token in a secure location and remove the user when no longer used.