Dualog Identity - Introduction

INTRODUCTION

Dualog Identity is a crew identity management solution that provides Single Sign-On (SSO) capabilities for the maritime industry. It enables seafarers to access multiple work-related systems through a single secure digital identity, both onshore and onboard vessels.

With Dualog Identity, shipping companies can:

• Provide crew with one login for all authorized applications
• Automate user provisioning from crew management systems
• Maintain full traceability with individual user accounts
• Enforce security policies across the fleet

HOW IT WORKS

Dualog Identity operates in two environments to ensure seamless access regardless of connectivity:

Cloud Identity Server

The cloud identity server at crew.dualog.com handles authentication for all cloud-based applications. It supports industry-standard protocols including SAML 2.0 and OpenID Connect (OIDC), making it compatible with a wide range of third-party applications.

Ship-Side Identity Server

Each vessel runs a local identity server that works fully offline. When the ship has connectivity, it automatically syncs with the cloud within minutes. This ensures crew can always authenticate to onboard systems, even without an internet connection.

KEY FEATURES

Single Sign-On (SSO)

Crew members use one set of credentials to access all integrated applications. Whether logging into email, training platforms, e-logbooks, or other systems, the same username and password works everywhere.

Automated User Management

Dualog Identity integrates with crew management systems to automatically create, update, and manage user accounts. When crew are assigned to a vessel, their access is provisioned automatically. When they sign off, their ship-side access is revoked.

Individual Accountability

Every user has their own unique credentials, eliminating shared role-based accounts. This provides a complete audit trail of who accessed what and when, supporting regulatory compliance requirements.

Multi-Factor Authentication

For cloud applications, Dualog Identity supports multi-factor authentication (MFA) via SMS, WhatsApp, or authenticator apps, adding an extra layer of security.

Rank-Based Access Control

Access to applications can be restricted based on crew rank. For example, certain systems can be limited to officers only, or specific applications can be reserved for the Captain and Chief Officer.

WHO USES DUALOG IDENTITY

Shore-Based Administrators

IT administrators manage users, configure integrations, and set security policies through the Dualog Portal at apps.dualog.com. They can view user activity, generate reports, and manage access across the entire fleet from a single location.

Seafarers

Crew members use their Dualog credentials to log into applications both in the cloud and onboard. They can manage their own password and MFA settings through the self-service portal at crew.dualog.com.

Application Developers

Developers can integrate their applications with Dualog Identity using standard OIDC or SAML protocols, enabling SSO for their users without building custom authentication.

GETTING STARTED

To start using Dualog Identity:

1. Administrators: See Getting Started for Administrators for initial setup and configuration
2. End Users: See Your Dualog Account to learn how to log in and manage your account
3. Developers: See API Integration (Developer Guide) for technical integration details

RELATED ARTICLES

• Getting Started for Administrators
• Managing Users
• Setting Up Cloud Integrations
• Setting Up Ship Integrations
• Password Policies and MFA
• Your Dualog Account (For End Users)