Opal + GCP GKE

Integration Overview

Opal lets you define fine-grained access controls to Kubernetes clusters on GKE allowing you to set specific permissions to and policies to Google Cloud users . This simplifies and unifies access controls to clusters while enabling developers to connect easily and request new access to many different clusters.

Use cases

  • Implement Least Privilege - With Opal, customers are able to adopt granular and ephemeral access to critical resources
  • Accelerate Access Requests - Customers can delegate approvals to resource owners/managers and accelerate approvals via one-click in Slack
  • Streamline User Onboarding - Integrated with popular identity providers, customers can bind resource level access to native group structures
  • Configure break glass access - Opal enables customers to automate emergency break-glass access via integrations with on-call providers and manual pre-approvals
  • Automate Access Reviews - Opal offers end-to-end automation for user access reviews—snapshotting user lists, notifying reviewers, providing a self-service review workflow, and generating automated reports

How it works

Set up your Google Cloud Platform integration in minutes:

  • Head to Apps, and hit the "New App" button
  • Go to Google Cloud Platform
  • Tag infrastructure in GCP
  • Create a service account for Opal
  • Enable the IAM API in GCP
  • Upload your service account credentials
  • Hit "Create"

Congrats, you're integrated!

Integrate