TrustRadius: an HG Insights company

Opal.dev Reviews & Insights

Score1 out of 10

1 Reviews and Ratings

Get a Demo

Community insights

TrustRadius Insights for Opal.dev are summaries of user sentiment data from TrustRadius reviews and, when necessary, third party data sources.

Pros

Effective Tool for Access Onboarding: Users have consistently found Opal.dev to be an effective tool for onboarding various access patterns, such as Okta groups, AWS IAM roles, and SSH access. It caters to both technical and non-technical users, making it easy for them to smoothly access resources.

Efficient Access Request Process: Many reviewers appreciate the ability to quickly request access to resources within Opal.dev. This feature eliminates the need to reach out to specific individuals, saving time and streamlining the process.

Transparent Access Request Progress Tracking: Opal.dev's feature that enables users to view the progress of their access requests and see who is required to grant access has received high praise. This functionality is highly valued by users as it allows them to track the status of their requests and know exactly who needs to approve them.

Reviews

1 Review

Horrible developer experience

Rating: 1 out of 10
Incentivized

Use Cases and Deployment Scope

Our organization uses Opal for permissions requests into production environments and for access management.

When users need access to a tool, they are typically directed to request it through Opal and then the appropriate reviewers are configured to approve.

Pros

  • Pretty UI

Cons

  • Inability to modify an IAM role after creation
  • Inability to use templated IAM roles
  • Inability to see existing IAM roles
  • Inability for users to clean up existing Opal roles
  • Poor ability to search for existing Opal roles
  • Repeated reliability issues - IAM role creation breaks far too often
  • Cryptic error messages when IAM JSON is incorrect

Likelihood to Recommend

I am frustrated that my organization chose to adopt Opal for our access management tool. It is extremely difficult to use, due to bugs and basic functionality missing. Engineers are not given write access to production resources, so every change must flow through Opal.

This involves writing an IAM policy by hand for every request, because it is far too difficult to find an existing role in the system, and requests must the narrowly tailored only to allow the exact operation requested. Opal makes this process much more difficult because it lacks basic functionality for end users, such as:
-Ability to modify an existing IAM role
-Ability to view existing IAM roles
-Ability to delete duplicate Opal roles
-Lack of IAM role templates
-Poor error messages when attempting JSON policy fails validation

In general, each Opal request takes 5-10 minutes because you need to be very explicit with every API action you are requesting, which then needs to be repeated multiple times because it is very hard to get everything correct the first time, which then requires a new round of reviews. This is partially because AWS IAM roles can be tricky to get right, but Opal provides no functionality to make this easier.
VU
Verified User
Engineer in Engineering (1001-5000 employees)
Vetted Review
Opal.dev
2 years of experience