Active Directory Manager
Resume:
Name: Jaga
Email: ac3bzv@r.postjobfree.com
Contact:732-***-****
Sr. IAM/ Ping Federate
PROFESSIONAL SUMMARY:
Around 8+ years of experience in Information Technology in implementation and providing Single Sign on across enterprise applications using Ping Federate, NetIQ's Access Manager, Active Directory Federation Service, CA Federation.
Worked on implementation of Novell/NetIQ's e-Directory, Identity Manager, i-Manager
Worked on Enterprise Users Single Sign On through browser and through services with third party application hosted in enterprise or cloud using Ping Federate, Ping One.
Upgraded Ping Federate from Version 7.1.1 to 7.3.
Installed and Configured Ping Federate.
Expertise in implementing SAML as both Identity Provider and Service Provider across multiple platforms Using SiteMinder and Ping Federate.
Implemented OAuth to access the protected API with Access Token by using Different OAuth Grant types.
Configured multi factor Authentication for internal applications using PingID.
Worked on NetIQ Access Gateway to send all the traffic through a common proxy server and redirect to Resource Server.
Experience in Sail point tool customization, Report Generation, Integration with end/target systems, Sail point API's and Application Development.
Designed Sail point deployment activities, connector configuration, custom rule development, workflow configuration, development and third party system integration.
Experienced in migrating NetIQ Access Manager to Ping Federate.
Working as a part of Single Sign on team, Protecting Web applications with Standard/Custom Authentication Schemes and educating the application team about the flow of authentication and authorization.
Worked in tuning the environment and setting up High availability with LDAP and Access manager.
Implemented Single Sign-On using SiteMinder on single/multiple cookie domains for Web applications and integrated SSO with SunOne LDAP and MS Active Directory and e-Directory. This also includes Federation both inbound and outbound using SAML 2.0.
Experience in implementation of IAM solution from scratch.
Hands on experience in IAM requirement analysis, implementation of Access Gateways and SAML based integrations.
Experience in collaborating with teams to determine systems requirements and functionalities needed in LDAP.
Experience working with Active Directory using LDAP protocol and good understanding of the LDAP concepts.
Experience in redesigning the existing LDAP schema with some custom attributes and object classes.
Experience in developing applications using java, j2ee and using databases oracle 10g.
Excellent communication skills and good Interpersonal skills helped me to keep productive and positive working relationships with staff from varying technical backgrounds and skill levels.
Good in prioritization, multi-tasking and project planning skills. Expert in documentation and management of standard operating procedures.
TECHNICAL SKILLS
Operating systems
Unix, Oracle Solaris 8/9/10, RedHat Enterprise Linux AS 2.1/3.0, SUSE Linux 10, Windows Server […] IBM AIX and HP UX
Programming languages and methodology
Java, XML, JavaServlet, C, C++, HTML, PHP, Shell, JavaScript, JDBC, RMI, J2EE, Apache Ant and PL/SQL.
Directory Server
SunOne/IPlanet server 5.x,6.x MS Active Directory, Novel EDirectory […] Oracle Directory Server 11g and IPlanet meta Directory Server 5.x, Netscape Directory Servers 4.x.
RDBMS: Oracle 8i/9i, SQL Server […] MySQL 5.0
Web Servers
MS IIS, Apache, Sail Point IIQ, Tomcat, IBM WebSphere, SunOne/IPlanetWebServer.
Single Sign-On
Ping Federate 6/7/8, Ping Access 4.0,4.2,Sail point 7.0, SiteMinder R12.5, R12 SP2, SP3 / R6 SP1, SP2, SP4, SP5, SP6 /5.5 WebAgent […] APS 4.0and Session Linker 5.6, CA Secure Proxy
Tools
CA business Intelligence, Splunk, Wily Monitoring tool, Big Brother Monitoring, HP OpenView, OneViewMonitor
PROFESSIONAL EXPERIENCE:
Client: Deutsche Bank, New Jersey
Role: IAM Engineer
Duration: Nov 2016 – Till Date
Responsibilities:
Valuable experience in analyzing IAM logs, IAM application server logs, provisioning server logs to troubleshoot various authentication/endpoint related issues.
Co-ordination with Server hosting team if any hardware related issues.
Co-ordination with Ping Federate vendor if any software related issues.
Maintained both Test and Production servers for Ping Federate along with the cluster management and timely Replications to deploy changes to servers.
Developed custom Ping Agent using Ping SDK and Implemented SAML Protection with Digital Signature.
Designed, deployed and supported highly available and scalable Ping Federate infrastructure in AWS and On-premise that provides single-sign-on (SSO) and federation solutions for internal accesses.
Ping Federate Performance tuning for supporting support heavy traffic.
Build and Configure Sail Point tasks like aggregation, ID refresh, schedule tasks, correlation, etc.
Responsible for preparing documentation for each application and providing the Run Book to the Operations team to troubleshoot issues.
Experience in implementing CA Siteminder policy server, framing Rules and Policies, Policy Server maintenance, SSO call clearance, Web Agent & Application agent installations, troubleshooting production problems.
Responsible for provisioning users across endpoints like Active Directory, LDAP, Unix, and RACF/Mainframe along with explore and correlating users from various endpoint.
Configured Affiliate agents, RADIUS agents to provide federation of web services in the SSO environment providing authentication & authorization to IDM.
Good knowledge with PIV-Personal Identity Verification.
Configured custom alerts and e-mail notifications based on the business needs.
Created and updated the provisioning policies as per the change in the business environment using Policy Xpress.
Developed multiple Policy Xpress to trigger on various tasks and to generate standard company requirements like generation of unique ID's, passwords, emails, record entries etc.
Responsible to handle complex JobCode logics which involved multivalued attributes and multiple PX's to tie groups, provisioning roles and endpoints to respective JobCode.
Worked on setting up remote task to CA IDM through Web services calls from EFI front-end applications via Task Execution Web Service (TEWS).
Good experience in setting up Bulk Load Clients and automating different IDM tasks.
Migrated passwords from legacy application to CA IDM capturing the last password change date.
Environment:
Ping Federate 7.1, Ping Federate 7.3, Ping Federate 8.2, SAML 2.0, OAuth2.0, AD, Java, PowerShell, Oracle ODSEE 11g, Sail Point IIQ, Web Agents, Policy Servers Oracle LDAP Directory Server 11.0g, IBM WebSphere, SQL Server, HTML, SQL, MS Visual.
Client:CITI Bank Group, Florence, Kentucky
Role: Site-Minder / Identity Minder Engineer
Duration: Feb 2015 – Oct 2016
Responsibilities:
Provided solutions for complex application using SiteMinder and Ping Federate.
Hands on experience on Ping Federate, CA Single Sign-ON, CA Advance Authentication, CA Secure Proxy Server, Ping Access, and Ping Cloud.
Experience in SAML based authentication 1.1 and 2.0 using Ping Federation, SiteMinder Federation and integrate with SiteMinder authentication and adapter.
Migrated SAML Based SSO partners from CA Single Sign-On federation to Ping Federate.
Used Ping API to deploy and create SAML changes.
Setup and maintain distributed IT systems including computational resources, servers, storage and networking.
Configured both Ping Access Proxy Gateway to decode the JWT tokens and installed the agent on application server to communicate with Ping Federate server.
Worked on OpenID Connect for the user Authentication using Ping Access.
Involved in knowledge sharing sessions for SailPoint Compliance Manager component and involved in creation of design documents, code reviews.
Configured and supported SAML based Identity & Service Provider connections.
Written custom active responses to extend the capabilities of SiteMinder and to support the client requirement.
Designed transitioning strategies around Access Management systems and accordingly performed migration of application policies, risk, rules from Siteminder.
Provided Impersonation, SharePoint, HR Services, Sales Force solution using Ping Federate and SiteMinder.
Hands on Experience on other Single Sign-On products like CA SiteMinder. Implemented and Designed Access Management Solutions.
Successfully supported to migrate/Build all the infrastructure to a new environment.
Upgraded SiteMinder to R6 SP1/SP5/SP6, R12 SP2/SP3.
Migrated Web Authentication solutions from CA Single Sign-On (SiteMinder) to Ping Access.
• Configured application agents on PeopleSoft, WebSphere, WebLogic and OBIEE.
Worked on internal application like Splunk, Service-now, Wily to customize to our team and management requirements.
Created scripts to monitor Apps, dashboards, backup LDIF and generated reports.
Supported production environment without missing any SLA's and supported TIAA-CREF environment 24 X 7.
Environment:
Windows Server 2003/2008, Unix, SiteMinder R6 SP1/SP5/SP6, R12 SP2/SP3, Ping Federate 6, CA Directory 11, Oracle Directory Service 11g, Splunk, CA Wily Enterprise Monitor, WebLogic 8/10, JBoss 5, Apache 2.x, IIS 6.
Client:Philips Health Care, Atlanta
Role: Ping Federate
Duration: Oct 2013- Jan 2015
Responsibilities:
Integrate applications from development to production, assist development teams in identifying and resolving various issues related to SiteMinder.
Created Rules, Rule groups, Response, Response groups, Realms and Policies for Directory Server users, implemented SiteMinder policy based security.
Coordinated with the Service providers and identity providers during the SAML Certificate upgrade and architectural changes.
Design, implement, and educate on Sail Point build processes, code migration, and source control use.
Worked with SiteMinder engineering team to document technical specifications and procedures for SiteMinder best practices.
Implementation of SSO and authentication services using CA Netegrity SiteMinder.
Responsible in Performance Tuning for SiteMinder to provide better response time, low latency, high availability and maximum throughput.
Proxy service protection for internal Web infrastructure by providing SSL, fault tolerance and load balancing.
Assist load testing team during load tests.
Prepare project plan and submit weekly progress reports, throughout the project duration.
Provided roll-back plans to all application teams when any issue.
Supported endurance and regression testing in pre-production environment.
Involved in daily Site minder updates for Production, UAT and Development environment.
Assisted multiple applications during any production outage.
Handled multiple alerts related to servers in various environments.
Assisted Infrastructure Team during any changes.
Environment:
CA SiteMinder R12 SP3, Sun Solaris 9/10, Windows Server 2003, SunOne Directory Server, IIS 6.0, Apache 2.x, Webserver 6.1, Tomcat 4/5.
Client Optimus Global Services, India
Role: System Network Administrator
Duration: Jan2012 – Aug 2013
Responsibilities:
Administered Windows Server Active Directory, including Group Policy, creation and deletion of user accounts, managing access controls, and domain structure configuration.
Performed cross platform audits of Active Directory (AD) objects and user permissions.
Developed organizational units in Active Directory (AD) and managed user security with group policies.
Managed user moves including exchange mailbox, person network folder, AD organizational Unit relocation through Active directory and Exchange.
Compiled data to assist technical writers with IT new hire manuals and prepared data to report to testers for system enhancements.
Experienced with Microsoft Windows Server OS and network services (e.g., DHCP, DNS, File and Print Services, Remote Desktop Services)
Setup and troubleshooting VPN, IPASS, Intranet, Citrix access, Application, and other various applications for users
Responsible for maintaining server systems and software
Maintained the availability of LAN and WIFI resources in a Microsoft Server Active Directory environment
Responsible for ensuring configuration and change management is correctly performed.
Experience with monitoring systems
Responsible for providing user support and resolving systems related issues
Responsible for adherence to NASA IT Security Policies
Responsible for maintaining confidentiality of all PII data to which access has been granted
Responsible for adhering to defined systems management and project management practices
Responsible for assisting in the evaluation of new products, systems improvements, and upgrades
Maintains and grow technical expertise in all areas of networks, systems, and software
Develops and monitors systems group policies as required to mitigate IT security vulnerabilities
Reports to the Team Lead for day-to-day functional activities
Focus on continuous improvement with an emphasis on customer service
Provide weekly status reports of work activities to Team Lead and IOS Discipline Lead
Budgeted and maintained servers, workstations, laptops, printers and multimedia equipment
Assisted in the installation of new software releases, system upgrades, evaluate and install patches and resolve software related problems.
Responsibilities occasionally require working evenings and weekends, sometimes with little notice.
Environment:
Windows Servers, Linux Servers, Active Directory, Exchange Server, Security Tools
Client: Infra soft, Mumbai, India
Role: Network Engineer/Administrator
Duration: May 2009 – Nov 2011
Responsibilities:
Primary responsibilities were to maintain availability of the corporate LAN/WAN and wireless networks consisting of servers, client workstations, laptops, printers and multimedia equipment.
Maintained a standard PC hardware and software environment for ease of deployment and maintenance, managed technical services to address user issues in a timely and efficient manner.
Acted as project manager responsible for researching, implementing and managing hardware and software upgrades.
Implemented, administered and monitored ISA/firewall providing Internet access to client computers through the corporate LAN.
Maintained system tape backups and performed system file restoration using Backup Exec and Veritas network backup software.
Internet/Intranet development and management, Active Server Pages (ASP), ADO, Database connectivity w/MS Access, Streaming Audio/Video, JavaScript, VBScript, MS FrontPage, MS Visual Studio and .NET, image scanning/manipulation.
Purchased, configured and maintained company server platforms running Windows 2003 server, SQL Server, IIS/ISA Sever and various Microsoft products.
Maintained network security levels, addressed server security issues and applied appropriate security patches and upgrades.
Used windows clean boot, safemode, msconfig, winipcfg, and regedit32 commands.
Identified and resolved hardware and software issues in all client PC environments.
Implemented Microsoft clustering technology to provide redundancy in mission critical applications such as exchange server and SQL database.
Researched up and coming Virtual Server technologies and implemented ESX Virtual Server environment to meet needs of Quality Assurance testing departments.
Contact this candidate