Incidents are inevitable: every useful tool and platform built to serve customer needs will eventually experience a crash, downtime, or a failure under specific circumstances. That's why companies build out DevOps, platform or SRE teams, and at the very least ensure that at all times at least one engineer is "on call" to resolve urgent issues for customers.

The Importance of Aligning Security and DevOps Teams

Opal provides a data-centric identity platform that gives organizations visibility and control over who has access to what across their entire technology stack. By integrating seamlessly with cloud providers, SaaS applications, and on-premises systems, Opal helps teams implement least privilege access at scale.

Rootly has established itself as a leading AI-native platform in the incident management space, combining on-call scheduling, incident response, and post-mortem automation in a single modern toolchain built for fast-moving engineering teams.

When used together, Opal's authorization events provide essential context alongside Rootly's scheduling and on-call capabilities:

• Correlate recorded access changes with on-call periods and incidents

• Allow break-glass access and auto-approval for engineers only when they're on call

Key Integration Capabilities

Opal is now a supported identity and authorization platform integration for Rootly, including:

• On-call schedules that automatically grant and revoke elevated privileges based on who is marked as on-call in Rootly

• Ability to put guardrails around what is otherwise a potential attack vector: the elevated privileges an engineer receives while on call (if their identity or login is compromised, for example)

Implementation Benefits

Proactive Security Posture

The integration enables teams to build proactive security posture and escalation paths for DevOps teams and engineers who need access to sensitive systems to resolve incidents.

Compliance and Audit Excellence

Organizations can generate comprehensive compliance reports that include both access governance and security monitoring data, correlated directly to on-call schedules and incident timelines.

Automatic On-Call Approval Flow and On-Call Approval Requirements

Whether you choose to simply allow access to production and PII for designated on-call engineers, or require escalation from a second on-call engineer, Rootly's scheduling data can trigger time-bound access grants based on Opal's authorization rules and the on-call configuration of your Rootly instance.

Getting Started

Setting up the Opal and Rootly integration is straightforward. Organizations can begin by adding Rootly as an on-call provider, following the Opal documentation. You’ll also want to have Slack (or another communication/chat provider) set up as well, to distribute requests and notifications to the relevant employees.

We're excited to work with Rootly to bring identity security into the heart of the incident lifecycle. As organizations increasingly rely on AI-driven automation to manage incidents at scale, ensuring that elevated access is tightly governed—and automatically cleaned up—has never been more important.

This integration reflects our shared belief that security and operational efficiency aren't at odds. By connecting identity governance to incident intelligence, we're giving teams the confidence to respond fast without leaving doors open afterward.

Learn More

Ready to secure your engineers' on-call access with Opal and Rootly? Schedule a demo with our team. Or, if you're looking to get started with the integration, check out Opal's documentation and Rootly's documentation.

About Opal: Opal is the unified identity security platform that enables organizations to implement least privilege access at scale while maintaining operational efficiency.

About Rootly: Rootly is the AI-native platform for on-call, incident response, and post-incident learning—built to help engineering teams move fast and build resilient systems.