Opal + Google Workspace

Product Overview

Google Workspace, formerly known as Google Suite or GSuite, is a collection of business and productivity applications for organizations. The list of apps includes: Gmail, Calendar, Drive, Meet, Docs, Sheets, Slides, Chat, Forms, Sites, and more.

Integration Overview

Opal’s Google Workspace connector offers a complete access management solution for users, groups, and roles. Opal is tightly integrated with the Google ecosystem - providing native integrations for Google Cloud Platform, Google Groups, and using Google as the identity provider. With the Google Workspace connector specifically, Opal enables you to view who has access to and manage access to default and custom roles.

Use cases

Modern Access Management

Using Opal, customers can:

  • Grant just-in-time access to critical resources that are auto-expiring and fully audited
  • Enable resource owners with the most context to approve access requests and provision access automatically via Slack
  • Ensure that privileged roles have the appropriate identity governance and approval configurations, such as multi-stage approvals, max duration, custom fields, and more
  • Automate user access reviews so compliance teams can snapshot user listings, assign reviewers to self-service reviews, propagate access changes, and generate an auditor-friendly access report

Integration Setup

1. In the Apps sidebar, click on "New App", and select Google Workspace

  1. Create a service account, enable the admin SDK API, and then upload service account credentials

3. Once the Okta app is set up, admins can navigate to Settings and set up your Identity Provider to easily sync users and attributes. Note: Opal will re-use the same API token

Integrate