SUMMARY:

• Having 10 plus years of professional experience in administering and managing Identity Management solutions on various platforms like Solaris, Windows and Linux.
• Involved Architectural recommendations for Shared Security Services Infrastructure including CA SiteMinder Policy Servers and Web Agents.
• Single sign on specialist with 8 years of extensive hands - on background in handling SiteMinder, LDAP, PingFederate projects for various service enterprises.
• Provide Architectural recommendations for Shared Security Services Infrastructure including CA SiteMinder Policy Servers and Web Agents, SunONE LDAP Directory Servers, CA directory.
• Expertise in installing and configuring SiteMinder Policy Server, Webagents and SunONE Directory Server/CA directory server (LDAP).
• Configured SiteMinder/PingFedertae with various authentication schemes such as Custom authentication schemas Basic authentication, HTML forms based authentication, X.509 client certificate authentication.
• Deployed, Administered and Maintained Oracle Unified Directory.
• SiteMinder Consultant with over 7 years of extensive hands-on background in handling SiteMinder and LDAP projects for various service enterprises.
• Expertise in installing, configuring and developing using Sun Java Enterprise System Architecture/System Integration/LDAP and Web Application Integrations.
• Expertise in Installation, Configuration, Deployment and Maintenance of SiteMinder Components like the Policy Server, Web Agent, ASA Agents, TAI Agents, Policy Store and Key Store.
• In-depth knowledge of Identity and Access management products - CA SiteMinder Access Manager, Oracle Access Manager, Oracle Identity Manager.
• Involved and recommended various migrations paths during migration from Siteminder 6.0 to R12.
• Ability to troubleshoot existing IDM deployments.
• Good knowledge in OAuth and OpenID Connect, SAML 2.0 with WebSSO.
• Integrated OpenID Connect and OAuth to protect rest full API's.
• Responsible for maintaining the current infrastructure for Single-Sign-On Login process which utilizes CA Identity Manager to authenticate users.
• Responsible to check and configure the integration of SiteMinder 6.0 policies to work with roles defined in IdentityManager 6.0
• Exemplar experience in setting up SSO environments. Integrated SSO products SiteMinder, SunONE LDAP with existing enterprise applications and middleware applications. Implemented SSO using SiteMinder on single and multiple cookie domains for web applications, integrated with SunONE DS, CA Directory
• Supported CA SiteMinder, SunONE LDAP, Identity manager and secure proxy server in all the three environments vise development, testing & production environments
• Involved with the team in installing & configuring Oracle Directory server 11g
• Involved in upgrading sun directory server 6.x to oracle directory server 11g in various environments.
• Good experience writing scripts (Shell) to automate monitoring and support activities
• Successfully completed the version upgrades SunONE DS from 5.1 to 5.2, 6.3 to ODSEE 11g) on Solaris, Linux and Windows platforms
• Expertise in installing and configuring Netegrity SiteMinder Policy Server, Webagents and SunONE Directory Server (LDAP).
• Direct support to clients on various Deployments, Development and Maintenance projects involving Microsoft product and technologies.
• Windows Server 2003 installation & Administration, Active directory management and troubleshooting, DNS/DHCP, Exchange 2003 server management.
• Experience in Directory Server Configuration/Administration (Sun One/Iplanet Directory server 5.x/6.x, MS Active Directory). Good understanding of LDAP protocol, designing of schema, planning the directory data according to the enterprise need
• Expertise in Installation, Security & Performance Design and Configuration of the SiteMinder policy server, web-agents and app agents.
• Extensive knowledge of software applications their specification, deployment, configuration and maintenance in both Single and Multiple platforms.
• Experienced in Performance tuning of SiteMinder and LDAP for better functionality and availability. Designed and implemented high availability solutions through load balancing & fail over
• Sound Knowledge of directory servers (Sun One/iPlanet Directory Server Administration/Configuration) and LDAP v3 commands/ search strings to manage and trouble shoot user issues. Experience in creation of LDIF files to change attributes or bulk-add/delete users from User store manually.
• Knowledge of software applications, their specifications, deployment, configuration and maintenance in both Single and Multiple platforms.
• A result-oriented strongly motivated team player with excellent communication, interaction, coordination and people skills.
• Ability to manage multiple tasks, works independently, and adapts to new technologies quickly.
• Extensive knowledge of creating policy domains, realms, policies and rules, configuring access to User directories, setting up response attributes and cookie variables, defining authentication schemes in a SSO Environment.
• Good Knowledge in Multi-tier and Cross-platform environments.
• Expertise in Troubleshooting using log files from policy server logs, web agent logs, webserver logs, directory server logs
• Knowledge in installing and configuring SQL server on windows 2000/2008 server.
• Excellent written & oral presentation, interpersonal and communication skills
• Strong team player, excellent interpersonal, problem solving and communications skills developed through work experience
• Providing 24*7 support as per the company requirements.
• Goal-oriented, highly motivated and a good team player

TECHNICAL PROFICIENCY:

SSO Products: CA/ Netegrity SiteMinder Policy Server 4.x/5.x/6.0 SP1, SP2, SP3, SP5, R12, R12.5, Secure proxy servers, CA Identity manager, Web agent 4.x/5.x/6.x/r12, PingFederate 6.x/7.x/8.x

Identity Management Tools: Identity Manager r12/r8.1, Sun Identity Manager 8.0/7.1/6.0

Directory Servers: Oracle DSEE/iPlanet Directory Server 5.x/6.x,/11g,OUD Microsoft Active Directory, Unbound ID, Confidential 7.2 & 8.1,CA Directory

Middleware Solutions: Apache web server, IIS 5.0/6.0/7.0 Web Server, iPlanet Web Server 5.x/6.x/7.x, Tomcat

Hardware/OS: Windows 95/98/2000/2003/2008/ XP/NT, Red hat Linux 4.x/5.x/6.0, Solaris 8/9/10

Application Servers: WebLogic Application Server 6.0/7.0/ 8.1/9.2/10.3 , WebLogic Portal 8.1/9.2/10.3 , JBOSS 5.x, WebSphere MQ 5.3/6.x, IBM WebSphere 5.x/6.x, SAML 2.0

Apache: Tomcat, IBM HTTP Server, Netscape Enterprise Server 3.5, iPlanet 6.x, Microsoft IIS

Programming: C, C++, Shell, HTML, Perl, Java (JDK), J2EE - Java Beans, JSP, Applets, ASP, JNDI, RMI, Java Mail API

PROFESSIONAL EXPERIENCE:

Confidential, Atlanta, GA

IAM/LDAP Engineer

Responsibilities:

• Involved with the team in installing & configuring OUD
• Involved in upgrading sun directory server 6.x to oracle directory server 11g in various environments.
• Upgraded PingFederate from version 7.2 to 8.1 and provided the necessary documentation for future upgrades.
• Involved in Directory architecture and design.
• Integrated web applications with SiteMinder, Sun One LDAP server using custom APIs and various affiliate agents.
• Worked on small Federation projects using OAuth and OpenID Connect for lower environments
• Web service interaction utilizing OAUTH authentication.
• Protected API's using OAuth so that it can be accessed only with Access Tokens.
• Creating policies and configuring adapter settings in PingFederate related application
• Involved with the team in installing & configuring Oracle Directory server 11g
• Involved in building SSO components for HAWC (High Availability Web-Center) project, as part of which 3 new data centers were built. The migration of applications was carried out in phases with SSO between New HAWC environment and old environment.
• Worked extensively with the vendor CA to get the product fixes and test them by installing in the environment
• Writing and modifying Shell scripts to perform automated LDAP administration tasks.
• Create ACI, Roles and Groups for application integrations.
• Configured SSO for internal applications with Active directory as user directory
• Designed and implemented the OUD which involves the schema modifications & migrate authorization groups and external users.
• Worked on troubleshooting for LDAP and SiteMinder issues with Support Teams for newer initiatives Confidential organization level.
• Deployed various types of application packages and provided support for all the applications and services in multi-tier levels
• Supported CA Identity management used by National call center for User management, password resets and forgot password
• Responsible for monitoring the performance of web servers and application servers.
• Installed & configured Directory Server Console Center (DSCC) on various platforms in various environments.
• Involved in writing the scripts like backup, replication monitoring and configuration statistics for OUD.
• Day to day work included closing the Incidents, gathering details for developing projects and supporting testing.
• Performed technical review of all changes in conjunction with Change Management Team
• Documented all Tasks Plans, Conclusions, Findings, Configuration Settings, Recommendations, Logical Flow Diagrams of SiteMinder environment and provided Tier 3 support in Production issues
• Provided 24x7 production support for SiteMinder and LDAP infrastructure.
• Assisted in discussions of redesigning LDAP architecture for older environments.
• Assisted in migrating LDAP from one data center to another data center.
• Assisted in deleting large chunk of data in LDAP to accommodate for licensing purpose.
• Performed hands on tasks such as planning installs, patch upgrades, and Sun LDAP tuning, maintenance, patches and other daily administrative tasks on the various environments.
• Developed documentations for the upgrades, installation and management of the directory server.

Environment: Solaris 9/10, Oracle Directory Server 11g, OUD, Confidential 7.2 & 8.1 Sun Web Server 6.x/7.x Red Hat Linux 4.x/5.x./6.0,Windows 2000/2003, SiteMinder 5.5/6.0/R12.

Confidential, Hendron, VA

LDAP Consultant/SiteMinder Expert

Responsibilities:

• Involved with the team in installing & configuring Oracle Directory server 11g
• Involved in upgrading sun directory server 6.x to oracle directory server 11g in various environments
• Designed and implemented the Oracle Directory server 11g which involves the schema modifications & migrate authorization groups and external users
• Provided recommendations to distribute the new DSEE master directory and proxy servers across data centers with MMR topology, based on observations and reviewing past trends and ever growing LDAP traffic load in Confidential business.
• Upgraded PingFederate from version 7.2 to 8.1 and provided the necessary documentation for future upgrades
• Using PingFederate integrated third party applications using SAML 2.0 protocol, OAuth and managed both IDP and SP connections using PingFederate
• Involved dealing with projects from start to end for all Front end facing applications and middleware technologies.
• Migrated few web applications from CA siteminder to Ping Access for authentication and SSO
• Installed siteminder webagents for numerous projects for integrating with siteminder policy servers and also created necessary Domain, policies, rules and responses
• Customized SAML responses by writing OGNL expressions based on business requirement
• Supported 100 plus applications integrated with siteminder and few of them are cookie provider based applications too.
• Worked with Sun Microsystems premium support engineers to identify the needs, then test and validate the new hardware required for implementing DSEE 6.3.1 and recommended AMD's operation server to be used as master directory servers.
• Developed "technical architectural documentation" for management approval and then laid out "deployment plan documentation" for production support team to understand and perform new server’s installation and build the new environment.
• Worked with Engineering team for architecting the new LDAP infrastructure before migrating directory server DS5.2 to DSEE 6.3.1.
• Managed and configured Sun directory servers (5.2, 6.3 & 7.x) and Sun Directory Proxy Servers (5.2, 6.0 & 7.x) for business.
• Actively participated in all phases of migrating directory/proxy servers, including planning and designing, developing and deployment (from version DS/DPS-5.2 to DSEE/DPS-6.3).
• Worked with applications' teams to migrate applications through different phases while ensuring that the LDAP environment and applications remain available to users without outages.
• Configured proxy servers to distribute client traffic on master and consumer replicas, as per read/write traffic with appropriate load balancing or failover setting.
• Setup servers under F5 Big IP in load balancing and failover configuration (in B2A and B2B).
• Performed changes, hotfixes and patches on directory and proxy servers while ensuring that affected servers are out of rotation and not affecting the environment/clients.
• Maintained high availability and reliability of the system and ensuring that data is current across consumers and clients are not being served with stale data.
• Created activity and intrusion reports for policy server by monitoring Authentication logs.
• Maintained replica and master synchronization and monitored replication status in order to maintain integrity of searches on replica consumers.
• Used Access Control Instructions (ACIs) to create access permissions for entries in directory server.
• Involved in automating various tasks with Shell scripting, e.g., maintaining log files, backup of LDAP schema and data files, handling downtime activities.
• Created cron jobs for redundant routine tasks such as backing up db files.
• Monitored Unix server’s performance and checked memory usage statistics, swap activity, disk activity, network activity, process activity.
• Determined the root cause, implement solutions, and apply patches to resolve authentication, authorization, and performance issues.
• Conducted database failover testing to ensure automatic reconnection by the middleware platform.
• Performed code review, integration and regression testing.

Environment: Master Status: Multi-Master with Consumer replicas across multiple data centers; Directory Server: Sun One Directory Server v 5.1/5.2/6.3.1/11.1 (Enterprise Edition); Policy Server: Sun Access Manager servers V6.1 & 7.0& Netegrity Siteminder Policy Server v5.5 and 6.0; Operating System: Sun Solaris v9/10 and Microsoft Windows Server 2003 and 2000; Web Server: IIS v5/6, Apache v2/3; Application Server: Weblogic server 8x; Programming Languages: Shell scripting, Java, XML, SOAP

Confidential, New Jersey, NJ

SiteMinder/ IDM LDAP Administrator

Responsibilities:

• Designed and implemented the Sun Directory server 6.x which involves the schema modifications to include VLV index creation to support LDAP for UNIX.
• Assisted in architecting LDAP schema designs and directory tree structures from SiteMinder perspective to merge and migrate authorization groups and external users.
• Setting up Sun One Ldap configuring, Importing and Exporting ldap data, setting up Replication of Ldap.
• Responsible for Performance Tuning of SunONE DS and SiteMinder. Analyzed and Tuned System, DB and Entry Cache Utilization, Replication rules, Query optimization - Created Indexes to attributes that are frequently used in searches to ensure High Performance and availability
• Experience in installing and configuring CA Governance Minder.
• Experience in configuring the importing users and exporting users and user privilege information to and fro Governance Minder.
• Hands on experience in creating Campaigns in Governance minder.
• Installed and configured LDAP directory and was involved in troubleshooting.
• Enabled and maintained Single Sign-On across Web servers in a single cookie domain or across multiple cookie domains without requiring users to re-authenticate.
• Experience in customization on IDM, deploying IDM with APP Servers.
• Coordinating with application teams to finalize the requirements for SiteMinder setup.
• Integrated Policy Store with LDAP to store SiteMinder policies.
• Worked on SiteMinder SMSession, Persistent and Secure Cookies
• Installed and configured Siteminder 6.0 SP6 policy servers. Installed and configured the Siteminder web agents on covalent apache and IIS 6.0 to integrate applications with siteminder. Designed and implemented procedures for SSO (Single Sign-On to multiple applications).
• Installation of SiteMinder, importing and exporting data from 5.5 version to 6.0.
• Installation and configuration of Web agent for Web Servers 5QMR and 6QMR (Apache and IIS).
• Installed and configured Sun Directory Server 6.x in various environments with high availability.
• Involved in a project on performance tuning the existing Directory Server. Updated DB cache size, indexes and log file settings to improve search etimes
• Coordinated with various teams for configuring LDAP as User Store or Key Store according to their requirements.
• Configure various Web servers like Sun and IIS with Single Sign On(SSO) using Siteminder.
• Worked on decommissioning the old directory server 5.x in some environments
• Configured the Siteminder Policy server for failover to multiple user directories and policy stores
• Worked in setting up password policies, ACI and Cert request in newer environments according to requirements.
• Worked on SSL certificate request & renewals for the complete SUN LDAP and proxy server 5.x & 6.x infrastructure.
• Performed Directory Server 6.x DSCC replication to add an additional failover capacity to the DSCC as requested by the client.
• Worked on troubleshooting for LDAP and SiteMinder issues with Support Teams for newer initiatives Confidential organization level.
• Defining User directories, Policies, configure them to the given set of user DNs.
• Upgraded the new web agents for the iPlanet web server in Red hat Linux and migrated existing web agents from 5.5 to 6.0 for sun 6.0 web server on Red Hat Enterprise Linux.
• Analyzed system problems to determine their root cause then develop solutions including, potentially new configurations, advice for software or scripts and documentation as required mitigating future occurrences in SiteMinder.
• Trained and consulted with various client areas (business, systems administrators and developers) on how to use and configure SiteMinder, Web server installation and configuration (NES, IIS, Apache).

Environment: Red Hat Linux 4.x, Solaris 8/9/10, IIS 5.0/6.0, iplanet web server 6.0, SiteMinder 5.5/6.0, SiteMinder Web agent 5.5/6.0,Web Sphere Application Server Sun Directory Server 5.x/6.x.

Confidential, Dallas, TX

LDAP Administrator

Responsibilities:

• Designed and implemented the Sun Directory server 6.x which involves the schema modifications to include VLV index creation to support LDAP for UNIX.
• Installed and configured Sun one directory server 6.x in a new HR portal environment.
• Involved as a member in troubleshooting the replication and performance issues.
• Involved in setting up mixed mode replication between directory server 5.x and 6.x.
• Enabled replication and created replication agreements. Monitor replication status and maintained replica and master synchronization
• Major re-architecture of existing SiteMinder realms, rules and policies performed for performance enhancement and stability.
• Monitored load balancing and failover of policy store and LDAP, replication of LDAP and directory maintenance.
• Worked with the team for redesigning of enterprise directory services architecture, including schema, and replication design from gathering user requirements through the design and deployment stages of the new test environment.
• Enabled replication and created replication agreements. Monitor replication status and maintained replica and master synchronization.
• Add and modify new/existing entries in directory server.
• Performed installations and configuration of SunOne, Apache and IIS web servers.
• Involved in designing, implementing LDAP architecture, replication, chaining, and data synchronization etc.
• Monitor directory server file systems, diskspace, server processes and performed server tuning.
• Handled communication with vendor for new product release and upgrades for existing system
• Prepared documentation for all the migrations, upgrades, rollback plan of migrations and knowledge base of day to day issues
• Ensure high reliability of the system and recoverability planning and implementation.
• Installed and configured the SiteMinder web agents to work with IIS.
• Extensively Involved in trouble shooting issues arise in Upgrade, Installation & Upgrade process.
• Performed technical review of all changes in conjunction with Change Management Team.
• Data migration, backup and recovery in a replicated environment including performance tuning and optimization. Load test monitoring of the LDAP servers using SNMP monitoring tools.
• Create, modify, and configure replication agreements between master and consumer, checking if the consumers are in sync with the master in LDAP.
• Integrate applications from development to production. Assist development teams in identifying and resolving environment-related issues.
• 24x7 production support with on-call rotation. Co-ordination of Stress & Performance Tests
• Provided 3rd level support for LDAP/SiteMinder/Code issues

Environment: iPlanet LDAP server version 5.x,6.0 SiteMinder policy server 5.5/6.0, SiteMinder Web agent 4.5/5.5, Solaris 8.0, Windows 2000, IIS 5.0 web server, iPlanet web server 6.0.

Confidential

SiteMinder/LDAP Consultant

Responsibilities:

• Involved with the Access Control Management team managing the Single Sign-On environment in a mixed environment comprising of Windows, Solaris and Linux environments using SiteMinder 5.5/6.0, with Sun One and Active Directory for policy and user stores.
• Developed strategy and successfully upgraded the SiteMinder environment Policy Server (and Web Agents) from version 5.5 SP3 to Version 6.0 on Solaris 8.0/ Redhat Linux 3.0 in the Development, Test to Stage and Production environments.
• Involved in migration of directory server 5.2 p2 to 5.2p4 in native distribution.
• Utilized SiteMinder Test Tool for functional, regression and stress testing SiteMinder behavior and performance with applications.
• Installed new web agents on IIS 6.0 and Apache 2.0 Web Server running on Windows 2003 and configured Agents in an SSL enabled load balanced environment.
• Configure Web servers with SiteMinder SINGLE SIGN ON, and extensive use of Web agent logs to debug production issues.
• Deploying & configuring Sun JES Directory Server 5.2 in development, staging and production environments.
• Designing replication strategy for write fail-over read fail-over and load balancing in directory server 5.2.
• Creating replica hub of directory server 5.2 for improved performance and availability.
• Responsible for the design of rules, realms, policies, responses and domains for the SAP Dreamweaver Portal secured by an IIS 6.0 Web Agent. Migrated the policy domain from development though Stage and Production environments.
• Provide 24/7 support and maintenance for the SiteMinder environment including the Sun One Directory Server. Assigned and unassigned “roles” for new employees and external customers though the Identity Minder Interface.
• Solve user and system cases in the ACM Support Queue using “Root Cause Analysis” methodology.
• Creating and deploying ACIs in directory Server 5.x to enforce client’s subscriber access control policies.
• Provide support to application developers to help integrate their applications with SiteMinder Single Sign on.
• Developed documentations for the upgrades, installation and management of the SiteMinder environment.

Environment: SiteMinder policy server 5.5/6.0, SiteMinder Web agents 5.5, 6.0, Solaris 8.0, Windows 2000, Windows 2003, Red Hat Linux, iPlanet LDAP server version 5.1,6.x, Apache web server 1.3.1/2,0 IIS 5.0/6.0 web servers