Post Job Free
Sign in

Active Directory Manager

Location:
Kansas City, KS
Salary:
65
Posted:
February 06, 2017

Contact this candidate

Resume:

Vivek Singh

SiteMinder (CA SSO) Developer/Admin

435-***-**** ***********@*****.***

Professional Summary:

A technically strong and self-motivated professional providing solutions for business projects in web enterprise security. Over 8 years of IT Experience in CA Identity Minder/Site Minder (IAM) with In-depth domain and technical knowledge of Identity and Access Management including 2 years of experience as Java Full Stack Developer.

•Expertise in enterprise Infrastructure Security, Design & Architecture involving concepts of Access Control Authentication, Authorization and Auditing.

•Experience in working with B2E (Business to Employee), B2C (Business to Customer), B2D (Business to Dealer) and C2B (Customer to Business) teams.

•Experience in designing, development, deployment, migration and implementing Security and Infrastructure solutions using CA Identity Manager r12.5, CA SSO/Site Minder r12.52, Sun ONE Directory Server (LDAP).

•Expertise in Installation, Configuration, Deployment and Maintenance of SiteMinder Components like the Policy Server, Web Agent, Policy Store and Key Store.

•Extensive experience in the installation and configuration of CA SiteMinder Components on Windows and Linux (e.g. CentOS, RedHat Linux).

•Worked on setting up federations between applications using CA SiteMinder and ping federate both as SP and IDP.

•Worked on setting up applications using CA Access Gateway.

•Experience in analyzing the logs (agent trace logs, sever logs, access logs, IDM Application Server logs, ETA Logs etc.) and Trouble Shooting issues in Integration of other applications using CA Site Minder (Access Management) and Identity Management tools along with LDAP and Web-server agents and SiteMinder federation services.

•Experience in implementing Identity management system using CA Suite (CA IDM) to Provisioning users (create, modify, update delete) along with self service portals like password reset, request for access, manage JobCode,

•Experience in using all the IDM components like Connector Xpress to build custom connectors.

•Experienced with Provisioning Manager to create Roles, account templates, endpoints and test endpoint provisioning and troubleshoot endpoint related issues. Installed and configured bulk load client on various platforms to automate tasks in IDM.

•Strong experience in the up-gradation tasks of SiteMinder Policy Server, Policy Store, AdminUI, Web Agents from version 5.5 to 6.0 and 6.0 to 12.0 and 12.5.X.

•Fine-tuned and set up High availability with LDAP and SiteMinder. Tested and implemented back up & recovery. Designed and implemented solutions for fail over and capacity planning.

•Administered SunOne directory server and expertise in upgrading SunOne Directory Server version 5.2 to 6.0 and 6.0 to 6.3 in production environment.

•Experience in configuring CA directory Server as policy store key store and session store.

•Experience in LDAP based directories like iPlanet/Sun ONE Directory Server, Active Directory and Active Directory Application Mode (ADAM).

•Configured Single sign on (SSO) between applications using Cookie Provider.

•Worked on implementing impersonation for couple of applications in order to ease the process of application trouble shooting by customer representatives.

•Installed and configured web agents on IIS and Apache web servers and troubleshooting issues associated with these configurations.

•Experience in configuring Web Agents, Rules, Responses and Policies associated with GROPS and JAAF (Custom Agents) for different application servers (ex: Glassfish, weblogic, JBOSS).

•Configuring SiteMinder for SAP and Siebel applications using Session Linker.

•Configuring authentication support for X.509 certificates over SSL.

•Experience in providing federation solutions using SAML 2.0, Ping Federate and CA SiteMinder Federation Service.

•Worked with CA Support by opening cases to find out the root cause and solutions for SiteMinder related issues, implementation of new features and proper procedures of configuring the Policy Server and policies.

•Supported development team for application related issues by actively working with developers and providing infrastructure help in both production and non-production environments.

•Strong experience with different Web Servers ( Apache 2.2.x,2.4.x,IIS6,7,8.5) and Application Server Security and Application deployments.

•Experience installing. Configuring, upgrading and troubleshooting SiteMinder Web Agents IIS, Apache.

•Experience in writing Perl scripts for parsing various SiteMinder logs.

•Extensive Experience in working Basic Password Policies in SiteMinder.

•Experience on installation, deployments on WebSphere, WebLogic, JBoss application servers.

•Was an integral part of the 24/7 On-call team for troubleshooting outages/ issues.

•Have good knowledge on object oriented programming (ex: java).

•Have good working experience on scripting languages (ex: Perl, JavaScript).

•Has capability to understand, analyze complex problems and provide resolution for business critical issues.

•To provide timely resolution of all tickets (incidents, changes) within specified SLA, assigned to the team and document repeating tickets as knowledgebase for the team.

•Have played supporting roles in many application go-lives, supporting all the associated teams and customers.

•Strongly believes in teamwork, works and facilitates towards achievement of project tasks and team goals.

Education:

Bachelor of Technology in Computer Science and Engineering

JNTU, Hyderabad, India

Projects:

Amway

Grand Rapids, MI

Apr 2015 to Present

Working as Security Systems Architect, which includes Analysis, Design and Implementation of Security Solutions across the enterprise.

•Installed, configured and administered CA IDM, CA SiteMinder Policy Server, Web agents, CA Directory and Oracle Directory Server (LDAP) on various platforms for a clustered and HA environment on WebSphere 8.5, JBOSS and various Platform.

•Integrated IDM with CA SSO, Providing Authentication and Authorization to IDM

•Worked on installing, configuring and administering CA SiteMinder r12 and Sun One LDAP on Solaris and Linux Platforms.

•Migration of SiteMinder 12.0.X to 12.51.X for advanced Load balancing, failover configurations and for facilitation of user impersonation.

•Experience in installing, configuring SiteMinder policy server, Web agents, Active Directory server (LDAP) and various Web & Application servers.

•Experienced in assisting Web Administrators, LDAP Administrators to determine what the best values for SiteMinder parameters and tune the system to boost SiteMinder performance in various tiers of the enterprise applications.

•Integrated SM 12.0 and IDM 12.0 and also SM 12.51.X to IDM 12.6.X.

•Performed user provisioning in Identity Provider(IdP) site Service Provider(SP) site using SAML 2.0 for SSO on various third party applications.

•Expertise with configuring IdP initiated and SP initiated SAML profiles with different bindings like POST, Artifact, Redirect as per the custom business and security requirements.

•Experience in Configuring CA SiteMinder policy server, framing Rules and Policies, Policy Server maintenance, SSO call clearance, Web Agent & Application agent installations, troubleshooting production problems.

•Involved for automating various tasks with Shell scripting, e.g., maintaining log files, backup of LDAP schema and data files, handling downtime activities.

•Created and updated the provisioning policies as per the change in the business environment using Policy Xpress.

•Migrated SiteMinder Federation Gateway on Secure Proxy server (SPS) from Unix to Windows platform.

•Implemented Policy Stores to utilize Sun ONE Directory Server (LDAP) as the user and policy repository on Linux.

•Worked on Optimal IDM Federation services to provide SSO with third party vendors using SAML 2.0 token type.

•Worked extensively on creating Custom Password policies and Authentication schemes as per the requirement.

•Installed, configured and integrated Web servers (plug-in file), SiteMinder agents and LDAP user directory with WebSphere Server V7, V8.0.X.

•Installation of SiteMinder Policy Server Optional Pack and Web Agent Optional Pack for Federation web services.

•Configured SiteMinder web agents and Affiliate agents to provide federation of web services in the SSO environment.

•Configured Ping Federate SSO across multiple web based enterprise applications.

•Has basic experience on scripting python and Perl.

•Experience with using Integration Kits and Token Translators for integrating identity enabled web services into SSO environment.

•Installation configuration and maintenance of RSA authentication manager for enabling token based authentication along with the form based authentication as a part of the security solution.

•Experience with the implementation of RSA two factor authentication tokens for the integrated web service security in a SSO environment for the service provider applications.

•Configured SSO Integration Adapters for session cleanup as part of Single Logout (SLO) in the SSO implementation.

•Experience in debugging the SAML Errors by using fiddler trace and SAML Tracer.

•Creating OpenSSL Certificates and using the same for Federation of external Services to achieve the purpose of maintaining confidentiality, message integrity and bilateral Authentication.

•Good knowledge of Web Technologies like HTTP Protocol, fiddler, SAML Trace, HTML, Web-Form encoding.

•Experience in developing applications using java, j2ee and using databases oracle 10g.

•Worked with existing user stores and new external LDAP stores. Integrated Active Directory & Sun One directory servers as user stores & SQL Server as Policy store.

•Experience with using Wily and One view monitor for performance monitoring of identity management servers and components.

•Experience with performance tuning of policy servers and associated components and generating performance reports using customized crystal reports.

•24x7 production support.

Environment: JDK 1.6/1.7, J2EE, JDBC, XML, SAML 2.0,CA IDM r12/12.5 SP8 CR1 CA SiteMinder 12.X/12.5.X, Sun ONE Directory Server 5.X/6.X, CA Identity Manager r8/r12, Ping Federate 5.x/6.x, Tomcat 5.5, Apache 2.0, IIS Wily Introscope 7.0/7.2, Solaris 8/9/10, framework (VB.Net, C#, ASP.Net) Shell Scripting, Windows 2000/2003,, Java, J2EE Oracle 10g/11g, SQL Server 2005, DB2 8.X.

Client: Usana Health Sciences, Salt Lake City, UT Apr 2013 to Mar 2015

SSO Consultant

Responsibilities:

•Installed, configured and maintained CA SiteMinder Policy Server 12.0 and 12.51.X CA IDM r12 and r12.5 and r12.6 and Active Directory Server on Solaris, Windows platforms.

•Experience on maintaining AD, SQL store as user directories for SSO and Identity minder.

•Experience in installing, configuring SiteMinder policy server, Web agents, Active Directory server (LDAP) and various Web & Application servers.

•Work directly with application development teams on proper SiteMinder integration with custom developed web based applications.

•Manage and configured SunOne directory servers, Sun Access Manager and agents on Solaris/Linux/Windows platforms.

•Expertise in implementing Federation SAML services to SSO into third party vendors.

•Performed SiteMinder and Web Infrastructure troubleshooting and interface directly with various IT teams to resolve technical issues in production environment.

•Experience in Configuring CA SiteMinder policy server, framing Rules and Policies, Policy Server maintenance, SSO call clearance, Web Agent & Application agent installations, troubleshooting production problems.

•Configured SiteMinder web agents and Affiliate agents to provide federation of web services in the SSO environment.

•Experience in installing and configuring provisioning servers.

•Experience in providing self-services registration to end users through IAM.

•Updated Corporate User store with the expanded user base as a result of new business acquisitions by directory acquisition and Correlation schemas using custom attributes. Extensively used web services variables to facilitate federation of web services.

•Implemented custom attributes properties to track the information about the recipients of the application site.

•Configured custom alerts and e-mail notifications based on the business needs.

•Configured System objects like Agents, Agent Configuration Objects, Host Configuration Objects, User Directories, Domains, Administrators and Schemas.

•Worked extensively on creating Custom Password policies and Authentication schemes as per the requirement.

•Rotated directory server backup and log files for enhancement of allocated storage.

•Installed and configured Sun Java System web server/Oracle iPlanet, IBM HTTP web server and configured web-agents on each of them.

•Worked with existing user stores and new external LDAP stores. Integrated Active Directory & Sun One directory servers as user stores & SQL Server as Policy store.

•Migration of SiteMinder 12.0 to 12.51.X for advanced Load balancing, failover configurations and for facilitation of user impersonation.

•Involved in ADFS work in providing desktop Single Sign On.

•Installed, configured and integrated Web servers (plug-in file), SiteMinder agents and LDAP user directory with WebLogic Server V10.

•Installation of SiteMinder Policy Server Optional Pack and Web Agent Optional Pack for Federation web services.

•Configured user impersonation feature to enable Customer service department to provide a better service to the business clients.

•Experienced in assisting Web Administrators, LDAP Administrators to determine what the best values for SiteMinder parameters and tune the system to boost SiteMinder performance in various tiers of the applications.

•Configured Ping Federate 12.X for SSO across multiple web based enterprise applications.

•Performed user provisioning in Identity Provider(IdP) site Service Provider(SP) site using SAML 2.0 for SSO.

•Worked on new Directory Server Schema's as per the needs of the business.

•Experience in trouble-shooting the issues by analyzing the trace and TAI logs.

•Experience with using Wily and One view monitor for performance monitoring of identity management servers and components.

•Experience with performance tuning of policy servers and associated components and generating performance reports using customized crystal reports.

•24x7 production support.

Environment: JDK 1.6/1.7, J2EE, JDBC, XML, SAML 2.0, CA SiteMinder 5.X/6.X, Sun ONE Directory Server 5.X/6.X, CA Identity Manager r8/r12, Java, Ping Federate 5.x/6.x, Tomcat 6.0, Apache 2.0, IIS, Wily Introscope 7.0/7.2, Solaris 8/9/10, Windows 2000/2003, Oracle 10g/11g, SQL Server 2005, DB2 8.X.

Client: Bank Of America,Infosys, Hyderabad Feb’12- Mar’13

Role: SSO support/IT Security Analyst

Responsibilities:

•Responsible for working with application teams in gathering the requirements for new applications setup and then installing and configuring the web agent along with the configuration on the SiteMinder Policy Server.

•Experience in Installing and configuring the SiteMinder on Windows and UNIX platforms.

•Integrating new applications with SiteMinder. The activities include:

- Creating Agents, Agent Configuration objects, Authentication schemes.

- Creating Realms, rules, Responses and policies.

- Installing web agents on different platforms.

•Configured Single sign on (SSO) between applications including different domains as well using Cookie Provider.

•Installing and configuring the web agents for IIS and Apache webservers and troubleshooting the issues related to them. The issues include using an invalid ACO name, LLAWP process hung due to improper restart of the web servers etc.

•Installing and configuring ADLDS on Windows server 2008 as a policy store and user store.

•Troubleshooting issues related to SiteMinder.

•Expertise with the migration tools like smobjexport, smobjimport to export and import the Policy Stores.

•Upgrading the SiteMinder Policy Servers from version 6.0 to version 12.0 and SiteMinder Web Agents from version 6.0 to version 12.0.

•Experience in troubleshooting issues by enabling tracing related to the SiteMinder on the Webserver side and analyzing the SiteMinder Web Agent logs and the trace logs.

•Configuring SiteMinder on application servers and for sap and Siebel applications.

•Configuring and installing ADLDS as policy store and user store on Windows Platform.

•Configured Replicated policy servers and LDAP user directories for Load balancing and failover.

•Worked extensively on creating Custom Password policies and Authentication schemes as per the requirement.

•Worked on setting up federation with CA SiteMinder which include installation and configuration of CA web-agent option pack.

•Worked on integrating many third party applications using CA SiteMinder Federation Services.

•Developed automation scripts, which include performing re-registration of web agents on apache web servers using Perl and a java program to find authentication reject events for a given user from smaccess logs.

•Created a Perl script which performs web-agent installation based on webserver type using web-agent properties file and installer.

Environment:CA SiteMinder (12.x), ADLDS, Microsoft Windows 2003/2008, IIS (6.x, 7.x), Apache (2.2.x, 2.4.x).

Client: BMW, Infosys, Hyderabad Jan’11-Feb 12’

Role: SiteMinder Administrator

sResponsibilities:

•Configured the Policy Domains, User Directories, Rules, Realms and Policies for protected web resources.

•Upgrading the SiteMinder Policy Servers from version 5.5 to version 6.0 and SiteMinder Web Agents from version 5.5 to version 6.0.

•Implemented SSO Solution in multiple OS environments using Cookie Provider.

•Installed and configured the LDAP Sun ONE Directory Server, ADLDS.

•Installation of SSL certificates on the SiteMinder policy server.

•Supported Production Servers for various issues, setup downtimes, and resolve technical issues.

•Fine tuning of Web Agents and Policy Servers for optimized performance.

•Working on various consoles of BMC Remedy User tool Incident management, Problem management and Change management to raise/resolve various incidents/problem tickets logged in the queue and to implement the scheduled changes in production environment under Change Management console.

•Involved in resolution of many critical issues, application problems.

•Developed a tool using window bat file, which will help in automation of installation and configuration of Active Directory Light Directory Service.

•Installed, configured and administered Sun One LDAP Directory, SiteMinder, on Sun Solaris 2.8 and Windows 2000,2003 Server. Implemented SSO across multiple domains.

•Created policies, realms, rules and responses to protect the applications and configure them to work under the SSO environment.

•Involved in SiteMinder policy server upgrades from SiteMinder R5.5 to R6.0.

•Experience in analyzing the logs like trace logs, logs and Trouble Shooting issues in Integrating other applications with CA SiteMinder, along with LDAP and SiteMinder federation services.

•Experience in administrating LDAP based directory serves like iPlanet/Sun One Directory Server and Microsoft Active Directory.

•Worked with LDIF files (import and export) on Sun ONE Directory Server.

•Fine tuning of Web agents and policy servers for optimized performance.

•Involved in providing SSO solutions to multiple web based enterprise applications using Ping Federate .

•Experience with using IdP initiated and SP initiated SAML profiles with different binding methods like POST, Artifact, and Redirect to deliver a custom SSO environment as per the requirement.

•Experience in Testing SiteMinder policies using SMTEST tool.

•Proficiency in Java/J2EE and Windows system administration.

•Good knowledge with web applications and their frameworks.

Environment: CA SiteMinder (5.5,6.0), Microsoft Windows 2003/2008 Servers, IIS(6.x), Apache(2.0.x, 2.2.x).

Client: Telstra, Infosys Private Limited, Hyderabad Sep’08-Dec’10

Role: Java Full Stack Developer

•Worked as a java full-stack Enterprise application developer .

•Designed and developed various features for an application called PlanENR.

•Developing various features of the product both in the frontend and backend and writing unit tests to make sure intactness of the application.

•Involved in the design of the applications using J2EE. This architecture employs a Model/View/Controller (MVC) design pattern.

•Involved in Core Java coding by using Java APIs such as Collections, Multithreading, Exception Handling, Generics, Enumeration, and Java I/O to fulfill the implementation of business logic.

•Used JPA ORM in the back end to fetch data from MYSQL database.

•Used JUnit for Unit testing and Maven for build.

•Technologies used are JSF, JavaScript, JPA, JAVA, MySQL, JSP, HTML, CSS.



Contact this candidate