Opal + GCP Folder
Opal + GCP Folder Use cases
Protect against breaches with least privilege
- Grant just-in-time access to GCP projects that is auto-expiring and fully audited using Slack
- Ensure that privileged roles have the appropriate identity governance and approval configurations, such as multi-stage approvals, max duration, custom fields, and more
Accelerate employee access on paved roads
- Enable resource owners with the most context to approve access requests and provision access automatically via Slack
- Accelerate employee onboarding by enabling managers to request on behalf of their reports or enabling self-service discovery of resource bundles
- Automate on-call access by provisioning and deprovisioning access via on-call schedules
Simplify compliance without manual overhead
- Automate user access reviews so compliance teams can snapshot user listings, assign reviewers to self-service reviews, propagate access changes, and generate an auditor-friendly access report
- Review access of employees who have recently transferred roles or departments

GCP Folder Overview
Folders are nodes in the Cloud Platform Resource Hierarchy. A folder can contain projects, other folders, or a combination of both. Organization resources can use folders to group projects under the organization resource node in a hierarchy. For example, your organization resource might contain multiple departments, each with its own set of Google Cloud resources.
GCP Folder Integration Setup
Set up your GCP integration in minutes
- Head to Apps, and hit the "New App" button
- Go to Google Cloud Platform
- Tag infrastructure in GCP
- Create a service account for Opal
- Enable the IAM API in GCP
- Upload your service account credentials
- Hit "Create"
Congrats, you're integrated!
