Ldap/siteminder Administrator Resume
Richmond, VA
SUMMARY
- 8 Years of experience which includes demonstrated work experience in the design, develop, test, implementing enterprise wide security applications using CASiteMinder, SunOne LDAP Directory,
- Experience in Integrating various web application in Single Sign On Environment
- Involved in various Siteminder upgrades including Siteminder 5.5 to 6.0 and Siteminder 6.0 to R12.
- Involved and recommended various migrations paths during migration from Siteminder 6.0 to R12.
- Involved in web Agent agent upgrades from 5QMR8 to 6QMR5 and 6QMR5 to R12.
- Expereince in working various web servers like IIS, Sun One, Apache, IBMHTTPD Server etc..
- Conducted POC for ASA agents
- Expereince in working various types of Authentication Schemes like FORM based, RSA Token, PKI certificates.
- Experience in working with various password services.
- Experience in administration of LDAP Servers including version 5.1, 5.2 and 6.3
- Excellent trouble shooting skill set includes verifying various web agent and Siteminder logs and monitoring the health of the environment using One View Monitor
- Experience in working with various web application development teams to explain the technologies and help them to integrate the production into SSO environment.
- Experience in Testing Siteminder policies using SMTEST tool.
- Excellent Java/C/C++/VB.NET programming skills
- Experience in writing Shell and Perl scripts for parsing various Siteminder logs
- Strong working knowledge in implementing SunOne Directory Server 5.x and iPlanet Directory Server on Sun Solaris, Linux and Windows servers.
- Experienced in multi - master and single-master replication directory server environment.
- Experienced with replication mapping between replica hub/consumer directory servers.
- Skilled in implementing high availability and fault tolerant strategies; implement replication strategies for HA and failover using MMR, write failover and load balancing.
- Excellent working knowledge of configuration and implementation of web agents, affiliate agents, application agents configuration and administration.
- Experienced in creating manual entries of directory server using command line, GUI and LDIF files.
- Exceptional ability to quickly master new concepts, good communication, analytical skills and team management skills.
- Providing 24/7 support as per the company requirements.
- Goal-oriented, highly motivated and a good team player.
- Excellent verbal and written communication skills.
TECHNICAL SKILLS
Operating Systems: Windows 2003 / 2000 Server, Windows XP / 2000 Professional, Windows NT4 Server/Workstation, Windows 3.11 / 95 / 98, Sun Solaris 8, 9 and 10, HP Unix 11.x, AIX,Red Hat Enterprise Linux (Adv Server), Novell Netware, Mac 9x / 10x
Directory Servers: Sun Java DSEE 6.x, iPlanet/SunOne Directory Server 5.x, Directory Proxy Server, Microsoft Active Directory, OpenLDAP, ADAM
SSO/IDM: Sun Access Manager (Identity Server) 6.1 and 7.0, Sun Policy Agents 2.0 and 2.1, Netegrity SiteMinder Policy Server 5.5 and 6.0 and 12, Netegrity SiteMinder Web Agents 5.5 and 6.0, Netegrity IdentityMinder 6.0
Web Server: Apache 1.0.5x, 2.x, IIS 4.0, 5.0 and 6.0, iPlanet/SunOne Web server 5.1/6.1
Application Server: Sun Application Server, Tomcat and Weblogic 8.1 and 9
Databases: Oracle 9i and 10g, SQL Server 7.0 and 2000, Microsoft Access 97 and 2000
Scripting/Languages: Unix Shell Scripting, Perl, Java server pages (JSP), SQL/PL-SQL
Protocols: DHCP, DNS, WINS, HTTP, FTP, IIS / SSL, SNMP, SMTP, POP3, PPTP, IPsec, LDAP
Connectivity Tools: Hummingbird Exceed, Putty, Secure Shell (SSH), Telnet, FTP, Cisco VPN, Terminal Server/RDP, Remote Admin, PC Anywhere, VNC, Xmanager
Reporting/Case Tools: HP Open View Service Desk (OVSD), eClarify Workflow Management (WFM), ER-Win, Crystal Reports 9 and 10, Developer 2000.
Database Tools: Quest Live Reorg, BRTools, Oracle Enterprise Manager Database Control, Recovery Manager (RMAN), Oracle iSQL Plus, SQL Loader, Designer/Developer 6i/2000, Veritas Net Backup / Backup Exec, Data Backup (Tape Libraries, Autoloaders and Tape drives)
PROFESSIONAL EXPERIENCE
Confidential, Jacksonville, FL
Sr Siteminder Developer
Responsibilities:
- Working for Confidential as a Sr Siteminder consultant for doing high-level deployments and configurations on the Production Servers and providing onsite support during this transition
- Troubleshooting with ongoing issues during the deployments. Training the client operational resources about the transition.
Environment: Master Status: Multi-Master. Operating System:Sun Solaris v8/9/10 and Microsoft Windows Server 2008, 2003 and 2000 Web Server: IIS v5/6, Apache v2. Directory Server:Sun One Directory Server 6.3, SQL server Policy Server:Netegrity Siteminder Policy Server v5.5 and 6.0 and 12 Programming Languages:shell scripting, Perl.
Confidential, Richmond, VA
LDAP/Siteminder Administrator
Responsibilities:
- Installed and configured Netegrity Siteminder Policy Server 6.0 and web agents.
- Created and configured connections to Directory server and web agents by creating host and agent configuration objects with respect to IIS and Apache web server requirements
- Installed and configured of Siteminder Web Agents with IIS v5/6 and Apache v2 web servers.
- Installed and configured Sun Directory Server 6.3
- Installed and configured Sun Proxy Server 6.3
- Created security permissions by creating rules realms and policies with in multiple policy servers for protecting resources stored on web servers
- Created activity and intrusion reports for policy server by monitoring Authentication logs.
- Configured Siteminder Policy Server with key and policy stores stored within a Sun One directory server
- Installed and configured Sun One Directory Server v6.3
- Applied all required or missing patches to run directory server properly
- Reconfigured and tuned new instances of Sun One Directory Server 6.3 with backup files
- Reconfigured directory server in replication environment on and monitored servers synchronization
- Involved in planning and design for deploying an upgrade of Sun One directory server from version 5.1 to 5.2
- Audit access logs for inefficient searches and un-indexed entries for performance enhancement and search conflict resolutions between common attribute entries in directory server
- Maintained replica and master synchronization and monitored replication status in order to maintain integrity of searches on replica consumers
- Created complex replication streams by enabling replication on replica’s with replication agreements on master/replica directory servers.
- Monitored database cache hits ratio in directory server and increased the cache size to improve search results
- Used Access Control Instructions (ACIs) to create access permissions for entries in directory server
- Enabled rollover of encryption keys in key store to maintain integrity of agent and session keys
- Performed addition and modified bulk entries in directory server
- Created cron jobs for redundant routine tasks such as backing up db files
- Monitored Unix servers performance and checked memory usage statistics, swap activity, disk activity, network activity, process activity
- Determine the root cause, implement solutions, apply patches to resolve authentication, authorization, and performance issues
Environment: Master Status:Multi-Master. Operating System:Sun Solaris v8/9/10 and Microsoft Windows Server 2003 and 2000 Web Server:IIS v5/6, Apache v2. Directory Server:Sun One Directory Server 6.3. Policy Server:Netegrity Siteminder Policy Server v5.5 and 6.0 and 12 Programming Languages:shell scripting, Perl.
Confidential, IRVING, TX
LDAP/Siteminder Administrator
Responsibilities:
- To manage and configure SunOne directory servers, Sun Access Manager and agents on Solaris/Linux/Windows platforms
- To maintain, configure and install iPlanet/SunOne directory server on the Sun and Windows servers
- To Perform installation, configuration and maintainence of Access Manager and policy agents
- To take care of issues related Sun Identity Manager 4.1 (Waveset Lighthouse) configured on Linux with BEA Weblogic server
- To provide timely resolution of all tickets (incidents, service calls, workorders) within specified SLA, assigned to the team and document repeating tickets as knowledgebase for the team
- To perform analysis on all tickets and identify areas of improvement to avoid reoccurrence and improve SLAs.
- Reviewed and revised existing OV SPIs monitors with new monitors to reflect actual problems and avoid unnecessary tickets with high severity levels possibly affecting SLAs
- Planned and deployed independently the migration of SunOne directory server from version 5.1 patch 2 to 5.2 patch 6 in B2B.
- Setup servers under F5 Big IP in load balancing and failover configuration (in B2A and B2B)
- Involved in planning and deploying an upgrade of SunOne directory server from version 5.1 to 5.2.4 in B2A environment
- Created and configured cron jobs to create ldif and binary backups, configuration backup and backup/logs rotation
- Setup script for directory server logs analyses (logconv.pl) to ensure proper use of directory server
- Monitor backup jobs of directory server and provide failover and load balancing support
- Enabled replication and created replication agreements. Monitor replication status and maintained replica and master synchronization
- Maintained authentication schemes, user sessions, rules, and responses to protect, manage, authenticate and authorize users access to enterprise resources
- Add and modify new/existing entries in directory server
- Create access permissions for entries in directory server
- Reconfigured and tuned new instances of directory server with backup files
- Enabled secure connections between directory servers using SSL
- Perform auditing and tuning of databases for better performance of directory server
- Performed installations and configuration of SunOne, Apache and IIS web servers
- Monitor directory server file systems, diskspace, server processes and performed server tuning
- Ensure high reliability of the system and recoverability planning and implementation
- Conducting proactive and reactive performance tuning for operating systems, policy agents and identity servers to meet and maintain operational requirements (process, thread, connection, cache)
- As a team player, involved for automating various tasks with Shell scripting, e.g., maintaining log files, backup of LDAP schema and data files, handling downtime activities
- Constantly involved to update the business logic and evolve with an enhanced implementation
- Provided training to new staff members and educated Active Directory staff with Sun technologies including Sun One directory server, Access Manager and Identity Manager (Waveset Lighthouse)
- Prepared documentation for all the migrations, upgrades, rollback plan of migrations and knowledge base of day to day issues.
Environment: Master Status:Multi-Master. Operating System:Solaris v8/9 and Microsoft Windows Server 2003 and 2000 Web Server:IIS v5/6, Apache v2. Directory Server:Sun One Directory Server v5.1/5.2 Policy Server:Netegrity Siteminder Policy Server v5.5 and 6.0 Programming Languages:shell scripting, Perl.
Confidential, MINNEAPOLIS, MN
LDAP Administrator
Responsibilities:
- Responsible for maintenance of authentication directories, LDAP, including Netegrity SiteMinder Single Sign On
- Worked with the team for implementation and upgradation of new releases and related technologies within change management processes
- Responsible for Sun ONE directory server administration, directory maintenance and replication of the directory server and consistently improved LDAP performance, and high availability
- Supported, maintained and documented LDAP multi-master replication procedures, online promotion/demotion of servers, chaining, referrals and grouping with SunOne directory servers
- Performed full and fractional replications as per business requirements and improved concurrent replication updates
- Monitored authentication, authorization and accounting to support failover and load balancing between policy servers
- Configured web agents with policy servers, schemes, user sessions, rules, and responses to protect, manage, authenticate and authorize
- Integrated LDAP with Netegrity SiteMinder to access user stores and policies
- Configured user sessions to support for single and multiple domains SSO
- Conducted proactive performance tuning for operating systems, webagent, policy servers, policy stores and user stores to meet and maintains operational requirements (process, thread, connection, and cache)
- Involved in designing, implementing LDAP architecture, replication, chaining, and data synchronization etc.
- Installation & configuration of Weblogic 7/8, Apache, Tomcat and IPlanet/Netscape/Sun-ONE Directory Server.
- Schedule Server Backup and maintain Backup Scheme and logs.
- Maintain and configuring IPlanet/Sun-one/Netscape directory Server on the Sun, Hp-UX and windows box.
- Installing and configurating siteminder policy server and Web agent on Sun and Windows box.
- Taken backups of Directory server and provide Failover and Load Balancing support.
- Quality Assurance of UNIX Servers and Network monitor application
- Administered Stronghold, Apache, and Netscape Enterprise (iPlanet) web servers, Netscape Directory Server (LDAP), and Siteminder
- Enabling replication and creating replication agreements
- Adding/modifying new entries in directory server.
- Creating access permissions for entries in directory server. Reconfiguring and tuning new instances of directory server with backup files
- Reconfiguring directory server replication between multi master’s, hubs and consumers.
- Rotating backup and log files.
- Enabling secure connections between directory servers using SSL.
- Monitoring access/audit/error logs.
- Auditing/tuning database for better performance of directory server.
- Monitoring replication status and maintaining replica and master synchronization
- Enabling replication and creating replication agreements in Master directory servers.
- Monitoring UNIX boxes for performance and memory usage.
- Auditing access logs for inefficient searches and un-indexed entries.
- Auditing/tuning database for better performance of directory server.
- Recovery of directory server.
Environment: Master Status:Single-Master. Operating System:Solaris v8/9, and Microsoft Windows Server 2003 and 2000. Web Server:IIS v5/6, Apache v2. Directory Server:Sun One Directory Server v5.1/5.2 Policy Server:Netegrity Siteminder Policy Server v5.5 and 6.0 Programming Languages:shell scripting, Perl.
Confidential, IRVINE
LDAP Administrator
Responsibilities:
- Responsible for maintenance of authentication directories, LDAP, including Netegrity SiteMinder Single Sign On
- Worked with the team for implementation and upgradation of new releases and related technologies within change management processes
- Responsible for Sun ONE directory server administration, directory maintenance and replication of the directory server and consistently improved LDAP performance, and high availability
- Supported, maintained and documented LDAP multi-master replication procedures, online promotion/demotion of servers, chaining, referrals and grouping with SunOne directory servers
- Performed full and fractional replications as per business requirements and improved concurrent replication updates
- Monitored authentication, authorization and accounting to support failover and load balancing between policy servers
- Configured web agents with policy servers, schemes, user sessions, rules, and responses to protect, manage, authenticate and authorize
- Integrated LDAP with Netegrity SiteMinder to access user stores and policies
- Configured user sessions to support for single and multiple domains SSO
- Conducted proactive performance tuning for operating systems, webagent, policy servers, policy stores and user stores to meet and maintains operational requirements (process, thread, connection, and cache)
- Involved in designing, implementing LDAP architecture, replication, chaining, and data synchronization etc
- Responsible for SiteMinder administration, implementation and configuration of Netegrity SiteMinder policy server 5.5, framing and management of Realms, Rules, Responses and Policies
- Created, managed and administered agents, authentication schemes, user directories, agent configuration objects, host configuration objects, logs and cache management
- Policy Server maintenance, web agent and application agent administration
- Performed SSO implementation; developed active policies to customize the functions of the policy as per the business requirements
- Monitored load balancing and failover of policy store and LDAP, replication of LDAP and directory maintenance
- Worked with the team for redesigning of enterprise directory services architecture, including schema, and replication design from gathering user requirements through the design and deployment stages of the new test environment
- Recommend and reviewed test planning/test strategies/approaches and control mechanism
- Handled communication with vendor for new product release and upgrades for existing system
- Invited and evaluated other vendor products on same line and provide details to management for helping in adoption and pricing options
- As an active member of team, responsible for training and delivery of group presentation on SiteMinder security planning to all employees
Environment: Netegrity SiteMinder 5.x, SunOne Directory Server 5.x, Web Agents for web servers, IIS 5.0/SSL, Apache 1.x, Sun Solaris 9, RedHat Linux, Windows 2000, Shell Scripting, Secure Shell (SSH).
Confidential, Kansas City, MO
LDAP Administrator
Responsibilities:
- Installed, configured and troubleshoot Sun ONE Directory Server 5.2 and SiteMinder 5.5
- Analyzed requirements, configured LDAP Directory server, involved in designing LDAP schema, attributes, custom attributes, custom classes, and the directory tree structure (DIT)
- Rotated directory server backup and log files for enhancement of allocated storage
- Created access permissions for entries in directory server. Reconfigured and tuned new instances of directory server with backup files
- Performed auditing of access, audit and error logs to provide troubleshooting solutions involving connection failures, unattainable searches and permission issues.
- Enabled replication and created replication agreements in Master directory servers.
- Monitored replication status and maintained replica and master synchronization in order to maintain integrity of searches on replica consumers.
- Added/modified dynamic groups and roles to entries in directory server.
- Added/modified security permissions for entries, groups and roles using ACI’s in a directory server.
- Integrated LDAP with Netegrity SiteMinder to access user stores and policies
- Responsible for SiteMinder administration, implementation and configuration of Netegrity SiteMinder policy server 5.5, framing and management of Realms, Rules, Responses and Policies
- Policy Server maintenance, web agent and application agent administration
- Performed SSO implementation; developed active policies to customize the functions of the policy as per the business requirements
- Installed, configured and maintained Solaris 9 and Windows 2003
- Applied patches and hotfixes for Windows and Solaris 9
- Monitored UNIX boxes to optimize performance and memory usage.
Environment: Master Status:Single-Master. Operating System:Solaris v8. Web Server:IIS v5/6, Apache v2. Directory Server:Sun One Directory Server v5.1/5.2
Confidential
Site Minder/Network Administrator
Responsibilities:
- Setup Sun One Directory Server and Siteminder Web Agent in a Windows 2000 / IIS environment.
- Changed the rules and responses in Siteminder policy server as requested by the development team.
- Assisted in architecting LDAP schema designs and directory tree structures from Siteminder perspective to merge and migrate authorization groups and external users.
- Involved with the LDAP team in the LDAP replication of the iPlanet directory server 5.1.
- Designed the LDAP schema and replication to support SiteMinder Policy, User store and Key Store in highly available mode.
- Administered and built Windows NT and 2000 server systems.
- Managed server backup and restoration using Legato backup software.
- Built and upgraded servers according to client specifications.
- Created database for server inventory purposes utilizing Access.
- Administered and managed Active Directory 2000 for various business departments.
- Utilized performance optimization and system monitoring to resolve server and network issues.
- Utilized VMware workstation for workstation and server testing.
- Created websites, built and configured IIS web servers for equities globally.
- Involved in Remote Administration of servers through terminal server.
Environment: Windows 2000, IIS 5.0, Siteminder 4.5.