Opera Managed Deployment

Updated: May 25, 2026

Integrations AI Logging Employee Logs Logging Integrations AI Integrations Workforce

Deploy the FireTail AI Monitor extension to Opera across your organisation with managed configuration, so end users never interact with credentials directly.

Opera Download for Opera

Configuration reference

Key Type Required Description
firetailProjectToken string Yes FireTail project token. How to generate a project token
firetailAPIRegion string Yes The region of the FireTail SaaS to use: eu or us

macOS - Manual Deployment

  1. Download the ZIP file above and extract it.
  2. Visit opera://extensions/ and toggle on Developer mode.
  3. Click Load unpacked, then select the extracted folder.
  4. Open Details for the newly added FireTail extension to locate the Opera extension ID.
  5. Create a new file and paste in the plist fragment below.
    • Replace <OPERA_EXTENSION_ID> and <REGION> with your values.
    • Generate two UUIDs and replace both instances of <GENERATED_UUID>.
    • Save as opera-firetail.mobileconfig.
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
  <dict>
    <key>PayloadType</key>            <string>Configuration</string>
    <key>PayloadVersion</key>         <integer>1</integer>
    <key>PayloadScope</key>           <string>System</string>
    <key>PayloadIdentifier</key>      <string>com.firetail.opera.extension</string>
    <key>PayloadUUID</key>            <string><GENERATED_UUID></string>
    <key>PayloadDisplayName</key>     <string>FireTail Opera Extension Policy</string>
    <key>PayloadContent</key>
    <array>
      <dict>
        <key>PayloadType</key>        <string>com.apple.ManagedClient.preferences</string>
        <key>PayloadVersion</key>     <integer>1</integer>
        <key>PayloadIdentifier</key>  <string>com.firetail.opera.extension.mcx</string>
        <key>PayloadUUID</key>        <string><GENERATED_UUID></string>
        <key>PayloadEnabled</key>     <true/>
        <key>PayloadContent</key>
        <dict>
          <key>com.operasoftware.Opera</key>
          <dict>
            <key>Forced</key>
            <array>
              <dict>
                <key>mcx_preference_settings</key>
                <dict>
                  <key>ExtensionSettings</key>
                  <dict>
                    <key><OPERA_EXTENSION_ID></key>
                    <dict>
                      <key>firetailAPIRegion</key>
                      <string><REGION></string>
                    </dict>
                  </dict>
                </dict>
              </dict>
            </array>
          </dict>
        </dict>
      </dict>
    </array>
  </dict>
</plist>
  1. Open a terminal and run the following command to ensure a clean installation: sudo profiles remove -identifier com.firetail.opera.extension.
  2. Open opera-firetail.mobileconfig to install the FireTail Opera Extension Policy.
    • You may be prompted to open System Settings to approve and complete installation.
  3. Run the following commands in a terminal, then reopen Opera:
sudo killall cfprefsd
sudo killall Opera

Windows - Intune (MDM-deployed system file)

Use an Intune PowerShell script running as SYSTEM to deploy a system-protected configuration file:

$configPath = "C:\ProgramData\FireTail\opera-config.json"
New-Item -ItemType Directory -Force -Path (Split-Path $configPath) | Out-Null

@{
  firetailProjectToken = "<PROJECT_TOKEN>"
  firetailAPIRegion    = "<REGION>"
} | ConvertTo-Json | Set-Content -Path $configPath -Force

# Restrict write access to SYSTEM and Administrators only
$acl = Get-Acl $configPath
$acl.SetAccessRuleProtection($true, $false)
$acl.AddAccessRule((New-Object System.Security.AccessControl.FileSystemAccessRule("SYSTEM", "FullControl", "Allow")))
$acl.AddAccessRule((New-Object System.Security.AccessControl.FileSystemAccessRule("Administrators", "FullControl", "Allow")))
$acl.AddAccessRule((New-Object System.Security.AccessControl.FileSystemAccessRule("Users", "Read", "Allow")))
Set-Acl -Path $configPath -AclObject $acl

In Intune, go to Devices -> Scripts, upload the script, and enable Run script in 64-bit PowerShell Host and Run as system.

Windows - Group Policy (Registry)

Create registry values under HKEY_LOCAL_MACHINE\SOFTWARE\Policies\FireTail\Opera:

firetailProjectToken  (REG_SZ) = <PROJECT_TOKEN>
firetailAPIRegion     (REG_SZ) = <REGION>

These can be deployed via a Group Policy Preference or an Intune Registry OMA-URI.

macOS - Jamf Pro

Deploy a system configuration file using a Jamf Pro script run as root:

CONFIG_DIR="/Library/Application Support/FireTail"
CONFIG_FILE="$CONFIG_DIR/opera-config.json"

mkdir -p "$CONFIG_DIR"

cat > "$CONFIG_FILE" <<'EOF'
{
  "firetailProjectToken": "<PROJECT_TOKEN>",
  "firetailAPIRegion": "<REGION>"
}
EOF

chown root:wheel "$CONFIG_FILE"
chmod 644 "$CONFIG_FILE"

In Jamf Pro, add the script under Settings -> Computer Management -> Scripts and attach it to a policy with the trigger set to Enrollment Complete or Recurring Check-in.

Verifying the deployment

  1. Confirm the configuration file (or registry key) is present on a target device with the correct permissions.
  2. Interact with an AI provider in Opera and confirm events appear in the FireTail platform.

Need help?

Contact FireTail support