Identity security practitioners spend much of their time weighing a critical set of questions: who has access to what, why, and should that access exist? Answering them requires reach (coverage across legacy and cloud systems) and context (clarity into how identities relate to resources and one another).

Opal’s latest product enhancements deepen both. Our expanded support for Active Directory now further extends consistent governance into on-prem environments that have historically been tougher to manage. And with our Explore Graph now embedded into our Risk Center, teams are even better equipped to trace access paths across human and non-human identities and resources – and then resolve issues directly from that view. Improvements to our GitHub integration bring those same standards to the development workflow with finer-grained controls. Together, these updates reinforce Opal’s ability to drive faster, more confident access decisions across the systems that matter most. Here’s how:

Explore Graph enhancements

Access environments are rarely straightforward. One user’s path to a critical system can involve multiple nested groups, indirect entitlements, or even non-human accounts. Our Explore Graph makes these relationships clear by visualizing how identities connect to resources and exposing the hidden routes that create risk. Now, by embedding it directly into our Risk Center, teams can move seamlessly from investigation to remediation – filtering for a specific identity or asset, tracing its access paths, and taking action in place by revoking access, applying time limits, or running AI-powered analysis. The ability to see and act in one workflow helps practitioners investigate faster and with more confidence in their decisions.

Navigating the Explore Graph to visually choose what access to remediate

Active Directory integration enhancements

Active Directory (AD) continues to be one of the most widely deployed identity systems, particularly for larger enterprises. With this release, Opal makes it possible to bring AD environments – whether fully on-prem or hybrid – into the same governance workflows used for cloud providers. Teams can now manage privileged AD groups and domain admins with the same policies as modern identity sources, as well as ingest user attributes to further contextualize access decisions. This consistency helps reduce silos and ensures that long-standing infrastructure is secured to the same standard as modern systems. You can read more about our AD integration in our documentation.

Opal's Windows Active Directory Connector in Catalog

GitHub integration enhancements

Code repositories are among the most sensitive assets in any organization. Opal’s GitHub integration now provides more granular entitlements across repos, teams, and environments, with approvals and audit trails built-in. Teams can grant just-in-time access, support break-glass scenarios with full review and logging, and apply consistent governance to developers and automation alike. For organizations balancing developer velocity with security expectations, this alignment reduces friction while strengthening control. You can read more about our GitHub integration in our documentation.

Opal's New GitHub Connector in Catalog

Extended support for Jira Service Management

Opal now delivers a first-class Jira Service Management (JSM) integration. Although Jira projects were previously supported, extended support for JSM enables IT Help Desks to track requests in both Opal and Jira. Tickets, as displayed in Opal, show the requestor-facing URL rather than the agent URL, making it easy for end users to track the status of their tickets. You can learn more about JSM in our documentation, which covers both Jira Data Center and Jira Cloud.

Add Opal Service Requests in Jira SM's Administration Panel

The bigger picture

Identity security practitioners are tasked with connecting the dots across legacy estates like Active Directory, modern cloud providers, developer platforms such as GitHub, and ITSM platforms such as Jira Service Management. Generally available now, each of these enhancements extends Opal’s reach while keeping the experience unified. Our goal is for our customers to find it even easier to investigate anomalies, govern access consistently, and move steadily toward least privilege.