SUMMARY:

• Around 8 years of experience in Information Technology, Which Involves in Design, Implementation and Hand on experience on All Lightweight Directory Access Protocol(LDAP), Identity &Access Management and Single Sign - on products
• Work as the part of Identity Access Management, improving and automating IAM solution for ping Federate, Ping Access, CA SiteMinder, Radiant Logic VDS, LDAP and CA Directory Systems.
• Experienced in core system Administration for Linux machine, Solaris machine and Windows machine. Implementing the security solution for the web application as a part of the security team.
• Experience in providing Single Sign-On across enterprise application using Ping Federate, improving technical efficiencies in Identity & Access Management and Single-Sign-On space, involved in designing and implementation of end-to-end security solutions.
• Experience in using SAML 2.0. WS-FED, OAUTH2.0 to implement SSO to external web applications in SiteMinder, ADFS, OKTA and AZURE AD.
• Integrated Open LDAP to work with Ping Federate Server as Data store to authenticate the user and to bind the Attributes of the user into SAML.
• Experience in migrating SiteMinder to Ping Access using ping Federation with session and authentication management between two access management systems.
• Using Ping federate, Ping one worked on enterprise users Single Sign On through browser and through services with third party application hosted in enterprise or cloud.
• Worked on Ping Federate Upgrade from 6.0 to 7.0 and 7.0 to 8.3.
• Extensive experience in installation, configuration, deployment, and maintenance of enterprise wide security middleware and SSO solutions with CA SiteMinder on Windows as well as on Linux servers.
• Configured and defined the policies for SAML Affiliate Agents for federated authentications for users coming from partner sites.
• Experience with SAML 1.1 and SAML 2.0.
• Used SAML to implement Single Sign On (SSO) to external web applications by configuring SiteMinder associated agents on the web servers chosen for affiliated customers.
• Experience in using SiteMinder Federation services and web agent option packs to build and maintain Federation infrastructure to provide SSO functionality to external applications.
• Worked on HTML, Basic, Composite, and open token Adapters in Ping federate.
• Adapter which can exchange SMSession with Ping Access Tokens.
• Worked on Ping Access Gateway to take the Application traffic directly using Virtual Hosts and redirect back to the application with Ping Access Token.
• Integrated Ping Access and Ping Federate using OAuth. Worked on Implementing OAuth Configuration with the Clients to get the Access Token to access the web API's.
• Worked on OAuth Grant types to get Access Token to access Protected API's.
• Integrated OAuth with Ping Access to protect rest full API's.
• Worked on ID Token to get the user information from user info endpoint and send to OAuth client in the form of scope.
• Experience in doing Web service federation (WS) between two web services' using SAML and by creating connection between the two soap Service clients.
• Worked on Token Generator and Token Processor to establish a connection between two web services from different Enterprises and Ping Access and JWT tokens to authenticate the user using Ping Federation.
• Worked on Unbound User directory to replace the Existing Oracle Directory Server ODSEE.
• Worked on Ping Access Integration with Ping federate to Protect the applications using Ping Access Tokens.
• Worked on cloud federation with SAML using ping one.
• Extensive experience in installing, configuring and administrating MS Active Directory, Internet Informative Services(IIS), Apache Tomcat, SunOne/iPlanet Webserver.
• Experience in debugging of authentication / authorization related issues and creating Rules, Responses, Realms and Policies in SiteMinder.
• Upgraded SiteMinder from R12 to R12.52
• Expertise in Installation, configuration, deployment and maintenance of the SiteMinder components the Policy Server, Web Agent, Policy Store and Key Store certificate store.
• Provided Single Sign on for the Internal applications with the multiple Domains using Cookie
• Provider in SiteMinder.
• Expertise in Installation, configuration, deployment and maintenance of the SiteMinder components the Policy Server, Web Agent, Policy Store and Key Store certificate store.
• Experience in creating SiteMinder Custom Authentication Schema and in creating Custom Responses using SiteMinder API and SmWalker.
• Worked on SunOne LDAP, SiteMinder administering tasks such as back-ups, recovery, and replications.
• Improved SiteMinder and LDAP performance, High availability. Designed and implemented solutions for load balancing, fail-over. And monitoring the growth capacity planning.
• Experienced in supporting LDAP and SiteMinder in production environment.

TECHNICAL SKILLS:

Single SignOn: Ping Access 3.0/4.0, Ping Federate SiteMinder R12 SP2, SP3 / R6 SP1, SP2, SP4, SP5, SP6 /5.5 Web agent APS 4.0, SAP Agents 5.6/12 and Session Linker r12

Operating System: Oracle Solaris 8/9/10, Unix, RedHat Enterprise Linux AS 2.1/3.0, SUSE Linux 10, Windows Server IBM AIX and HP UX

Directory Server: Netscape Directory Servers 4.x, SunOne/iPlanet server 5.x,6.x MS Active Directory, Novel eDirectory Oracle Directory Server 11g and iPlanet meta Directory Server 5.x.

Programming languages and methodology: XML, Java Servlet, Java, C, C++, HTML, PHP, Shell, JavaScript, JDBC, RMI, J2EE, Apache Ant and PL/SQL

Servers: IBM WebSphere, SunOne/iPlanet Webserver, BEA WebLogic, JBoss, SunOne application server, IIS, Apache and Apache tomcat

Tools: Wily Monitoring tool, Big Brother Monitoring, HP OpenView, OneView Monitor, CA Business Intelligence

Cloud Solutions: OKTA, AZURE AD, InAuth.

Databases: Oracle MySQL and MS SQL Server

PROFESSIONAL EXPERIENCE:

Confidential - Athens, GA

Sr. IAM Consultant

Responsibilities:

• Worked on ping federate both inbound and outbound calls using saml2.0.
• Worked on Browser SSO using SAML and webservice SSO using WS-Security.
• Worked on OAUTH to allow access to Protected API's for OAuth Clients by getting Access Token from Authorization Server using various Grant Types.
• Worked on Ping Access POC to authenticate the users using Ping Federation Session.
• Enabling services and applications with ADFS and SAML using API Gateway.
• Design, Implement and troubleshoot application API Gateways for Company wide application services.
• Worked on installing IAM infrastructure and applications and databases from ground up.
• Compared and modified XML objects during the upgrade of IAM.
• Involved in the development and customization of user provisioning solution using IAM.
• Worked on IAM performance to optimize roles, tasks and identity policies.
• Developed and executed Identity Management related test plans.
• Worked on Ping Access Gateway to send all the traffic through a proxy server and get the JWT token.
• Worked in IAM design activities for systems high availability, securing the IAM environment.
• Developed custom code to decode the JWT token of Ping Access Server.
• Configuring User Authentication Stores and Policy Authorization Stores on LDAP.
• Coordinate with the neighboring teams and analyze the data that is flowing to LDAP.
• Developed and managed LDAP schema.
• Provide support for AD LDAP (Multi-master, supplier-consumer) in Solaris environment.
• Installed, configured proxy servers with LDAP as the primary backend and provide transparent seamless authentication to users.
• Configured OpenLDAP with UNIX and enabled users to authenticate against LDAP.
• Installed and Configured Multi-Data center Authentication Servers.
• Installed Sun one LDAP Directory server and also upgraded to 11g.
• Provided 24/7 on call support for solving Tickets on a rotating basis with other team members.
• Executing Backups and Recovery strategies for directory data (DIF), resolving back up and recovery Issues in a High availability environment.
• Implemented SSO across multiple domains, and created Multi-Factor authentication for additional Security.

Environment: Windows Server 2003, 2008, 2012, MS SQL 2005/2008, Active Directory, JBoss 5.2, Apache 1.x/2.x, IIS 6,7,7.5 JDK 1.6, J2EE, EJB, JSP, Oracle 11g.

Confidential - Stanford, MA

SiteMinder and LDAP Consultant

Roles & Responsibilities:

• Installed Policy Servers R6sp5 and also One View monitor to monitor the statistics of Policy Server.
• Upgraded the SiteMinder Policy Server from R6 SP1 to R6 SP6, R6 SP5 to R6 SP6.
• Installed Policy Server R6 SP2 against Novell eDirectory user store. And created POC for R6SP5 to R6 SP6 upgrade
• Configured policies on CA SOA Security Gateway Server R6 against R6Policy Server.
• Configured CA Wily Enterprise Monitoring tool against Apache webserver, WebLogic Server and Policy Servers.
• Involved in upgrade of Novell eDirectory server from 8.8.1 to 8.8.5 SP5.
• Installed Option pack for Policy server and Web agent for configuring the Federated Security Services and User Identity between partner sites.
• Installed and configured Apache, Microsoft IIS and Sun iPlanet web servers, Weblogic application servers, with Netegrity Siteminder authentication, and Sun One LDAP Directory Server.
• Migrated SiteMinder protected environment from Unix Solaris 10 to Linux SUSE 10.
• Implemented SSO across multiple domains, and created two level of authentication for additional security.
• Migrated large amount of LDAP data across the environment to create a identical production environment to support load testing.
• Monitoring of SiteMinder server logs for identifying problems with Authentication and authorization of users.
• Involved in Master, hub, consumer Replication of userstore from one Directory Server to other.
• Redesigned the existing LDAP schema with some custom attributes and object classes.
• Worked on backup, recovery of userstores in Sunone LDAP Directory Server and configured Load Balancing, Failover mechanisms.
• Responsible for providing 24x7 on call Site minder support.

Environment: Windows Server 2003/2008, SiteMinder R6 SP1/SP5/SP6, iPlanet Web Server 6.0, Novell eDirectory server 8.8.1/8.8.5, CA SOA Server R12 SP2, CA Wily Enterprise Monitor, WebLogic 8/10, JBoss 5, Apache 1.x/2.x, IIS 6, JDK 1.6, J2EE, EJB, JSP, Oracle 11g.

Confidential - Detroit, MI

IAM Engineer

Responsibilities:

• Extensive experience as a federation administrator with tools like ADFS 2.0, PING Identity, and Ping access for OAuth and SAML.
• Developed key customer requested features on the Ping Access application gateway product
• Worked on Ping federation for users to have SSO with other third party applications. Have Integrated both IDP and SP initiated SSO using Ping Federate.
• Migrated SAML Based SSO partners from CA Single Sign-On federation to Ping Federate 7
• Installed and Configured Ping Federate Servers on both Windows and Linux environment.
• Enforced the Ping Access policies to authorize the user for a protected resource.
• Have experience in integrating risk evaluating solutions like Riskminder and INAUTH with SiteMinder for client facing applications.
• Hands on Experience working on multiple Ping Federate adapters like http adapter, token adapter, and composite adapters. \
• Have deployed and supported highly available and scalable Ping federate infrastructure in AWS and On-premise that provides single-sign-on (SSO) and federation solutions for internal accesses
• Have used Ping API to deploy and create SAML changes
• Implemented OAuth and OpenID for mobile and non-browser solutions using Ping Federate.
• Was always a part of Requirements gathering, development, integrating and testing for enabling SSO for all elite applications.
• Have Protected Restful API's so that it can be accessed only with Access Tokens. using OAuth.
• Worked on Multifactor authentication to provide the users with security questions or OTP depending on the risk score based on user frequency and device velocity.
• Have done a POC to migrate the applications from SiteMinder to ping access.
• Proficient in troubleshooting impediments by analyzing logs and debugging tools.
• Providing an effective on-call response service.
• Promoting a strong user focused culture across all the Service Delivery team.

Environment: Ping Federate 7.1, SAML 2.0, SAML1.1, WS-FED, OAuth2.0, Active Directory, Java, PowerShell, INAUTH, SSO.

Confidential

SiteMinder Admin

Responsibilities:

• Sun one LDAP Directory and CA SiteMinder is installed, configured, administered on Sun Solaris 2.8 and Windows 2000,2003 Server. Single Sign on is implemented across the multiple domain.
• Under the Single-sign on environment created the policies, rules, realms to protect the applications we are working with
• Upgraded Sun One Directory server from 5.1 to 5.2. Provided level 3 support for LDAP/Site Minder issues.
• Implemented load balancing and failover mechanism for Site Minder Policy Server, Sun One LDAP Directory Server.
• Implemented SSO across multiple domains, and created two level of authentication for additional security.
• Migrated large amount of LDAP data across the environment to create a identical production environment to support load testing.
• Implemented new techniques to support priority syncing for replication of important object.
• Migrated large amount of LDAP data across the environment to create a identical production environment: to support load testing.
• Installed Option pack for Policy server and Web agent for configuring the Federated Security

  Services and User Identity between partner sites.

• Performed dib clone operations to recover the LDAP data, and added servers into replication tree and created new tree into the environment.

Environment: Windows 2000,2003, Netegrity CA SiteMinder 5.5 6.0, Web Agents 4.x,5.x,6.x, Sun One directory server 5.1,5.2, IIS, IPlanet Web Server5.0, IBM Http Web Server, Sun Solaris 2.8.

Confidential

SiteMinder

Responsibilities:

• Created Realms, Rules, Policies and Responses for protecting applications to work under single sign on environment.
• Implemented single sign on using SiteMinder under due guidance.
• Created Groups and add users for new application.
• Work with responsible team to understand the requirements of a new SSO project and then design and implement the same.
• Implemented password policies for all the applications using SiteMinder.
• Was involved in the upgrading process of Netegrity SiteMinder from 5.0 to 6.0.
• With due assistance Installed and configured SiteMinder Policy Servers.
• Created SiteMinder Agents for Federated Authentication and Authorization with partner sites.
• Involved in load testing team by Monitoring Policy Servers during load tests.
• Got introduced to concepts like Federation services and SAML.

Environment: Red hat (Linux), Sun One Directory Server, CA SiteMinder 5.0 and 6.0, Apache, IIS and Tomcat applications server.