Professional Summary:

• Around 6 Plus years of experience working as a Security Specialist, which includes dealing with implementing and maintaining security infrastructure solutions across the enterprise using Site Minder and LDAP Sun One Directory Server on platforms like UNIX, Solaris and Windows.
• Involved in analyzing, planning and implementing Single Sign-On and internet security to Enterprise level web applications using CA Site Minder.
• Configured various authentication schemes such as Basic authentication, HTML forms based authentication, X.509 client certificate authentication, Token authentication schemes. Used SAML to implement security to external web applications
• Expertise in installing, configuring and troubleshooting Sun One Directory Server, CA Site Minder Policy Server, web Agents.
• Experience of upgrading CA Site Minder from version 6.0 to version 12.0 and Sun One Directory server. Expertise in installing and configuring various middleware products, Web servers, FTP servers, IIS, Apache, IBM Web sphere, etc.
• Implemented Single sign-on using Site Minder on multiple cookie domains and integrated it with Sun One Ldap Directory, Microsoft active Directory.
• Experience of handling Sun One Directory server and CA Site Minder administration tasks such as Backups, recovery, Replication, Load balancing, high availability, failover, fine tuning, disaster recovery.
• Experience of supporting Site Minder and Sun One LDAP Directory servers in production environment.
• Mentored and trained first level support engineers in LDAP, Site Minder, Netscape iPlanet Products and Object Orientation Analysis and Design, Web servers and Application servers.
• Created user-written scripts can perform many useful functions that involve searching, reading and writing user store data using SMWALKER.
• Analyze and document both existing and potential solutions for the following: User account provisioning/de-provisioning, Enterprise Directory Services, Single Sign-On web and desktop , Password Management, Role-Based access control, Strong Authentication.
• Successful configuration of OpenSSL certificates to achieve secure transaction between hosts and users.
• Expertise in Administrating Sun One directory server and expertise in upgrading Sun One Directory Server version 5.2 to 6.0 and 6.0 to 6.3 in production environment.
• Involved in the Upgrading of Site Minder Policy Servers from version 5.5 to 6.0 and Site Minder Web Agents from version 5.5 to 6.x

Technical Skills:

Professional Experience:

Confidential

LDAP and Site Minder Administrator

Environment: Sun Solaris, Netegrity Site Minder, Sun One Directory Server, Apache web server and Web Sphere.

Responsibilities:

• Users were provisioned de-provisioned automatically via custom Workflow logic. Individual Application front-ends were collapsed into a SPOG Single Pane of Glass Portal so customers could utilize a single credential to access all backend systems seamlessly we migrated from Vignette/Web Logic to WAS/WCM .
• Front-end web proxies were implemented TAM WebSeal running on IBM Web Sphere Application Server via Java for further security.
• A flexible and high-performance audit system that selectively records messages meeting user-defined criteria while minimally impacting the flow-through performance of unaudited traffic.
• A declarative RBAC framework that allows end users to write granular access control policies to secure Gateway administration functionality. Layer 7 developers declare the permissions required to access their APIs using Java 5 annotations, and never need to write authorization code.
• Most of the Gateway's Identity and Access Management IAM functionality: Authentication and authorization, LDAP abstraction, user and group management, identity mapping, PKI integration and extremely rich support for federated identity standards
• Installed and configured Web Content Management WCM and activated portlets using activate-portlets.
• Configured and setup Secure Sockets Layers SSL for data encryption and client authentication.
• Responsible for deploying enterprise applications from Admin console and enabling security using LTPA and LDAP for admin console and application components on Windows.
• Worked on installation, configuration and maintenance of Site Minder and LDAP security maintenance products.
• Involved in troubleshooting and performance tuning using Resource Analyzer and Log Analyzer.
• Upgraded Web Sphere Application Servers from V6.0.2.11 to V6.1.0.13 on all the environments like SIT, DIT, UAT and PROD.
• Worked on Web Sphere Application Server Toolkit to convert the scripts from Jacl to Jython.
• Configured Web Sphere Application Server resources like JDBC Data Sources, JDBC Providers, JNDI, Security resources like JAAS authentication J2C aliases and Connection Pooling to connect to the DB2.
• Installed, configured and administration of Site Minder Policy Server 5.5/6.0 and Sun one LDAP Directory 5.2/6.x/7.0 and Sun Identity Manager 7.x/8.x for multiple high profile projects.
• Experienced in Site Minder Test toll and Site Minder policy server log files for Troubleshooting Site Minder environment.
• Installed and configured Web Logic 8.x/9.x plug-ins on Apache 2.0/Sun ONE iPlanet web servers.
• Worked on Logical Domains LDOMs , this provides virtualization capabilities.
• Configured Site minder audit logs and created reports as per the business security requirements.
• Arch. for Data Warehouse project for storing historical Identity audit data who has access to what, when, who approved, etc. .
• Provided architecture, design, and subject matter expertise in analyzing of Sun Java System Identity Manager v.6.0, SP1 in a Spoke and Hub method in which multiple instances of the provisioning application were utilized. Analysis built on existing single SIM implementation covering Identity data creation with multiple SIM instances covering local application provisioning leading to creation of factory model.
• SIM 6.0 proof of concept leveraging existing SIM instance as well as legacy provisioning tool utilized to determine the viability of a Federated provisioning model.
• Integrated Oracle software FW products with customers' target applications. Demonstrated supported product functionality for customer evaluation.
• Implemented Oracle Identity, Access, Identity Federation and Role Manager previously Bridge stream in a Proof of concept environment.

Confidential

Site Minder / LDAP Consultant

Environment: Sun Solaris, Site Minder 6.0 SP5CR16, Sun One Web Server 6.1, iPlanet Directory Server 5.1SP2, Java, JDK 1.4, J2EE, Servlets, JSP, Oracle 9i.

Responsibilities:

• Worked on defining various Site Minder Policy Server System objects and Domain objects, Password Services and associated different realms, rules, responses and policies with it.
• Installed, Configured and administered Site Minder 5.x/6.x and Sun One Directory Server.
• Installed and Configured IBM Web Sphere Application Server 5.0 on Solaris.
• Involved in the up gradation of Site Minder Policy Servers from version 5.5 to 6.0 and Site Minder Web Agents from version 5.5 to 6.x
• Experience in implementing LDAP security models. Utilized Resource Analyzer and Log Analyzer for performance testing and troubleshooting and Knowledge on managing LDAP Policy Store.
• Integrated Site Minder with Sun ONE Directory Server to use directory server instances as Policy Stores and User stores for Policy Servers.
• Implemented FTP infrastructure that uses LDAP for authentication and supports virtual domains. Created custom LDAP schema to support infrastructure.
• Developed a system that uses data from LDAP and local templates to dynamically provision and re-provision virtual domains.
• Worked on user and group profile auditing using Sun Java Identity Manager 7.0.Worked on Load balancing the Site Minder for high performance.
• Implemented password policies for all the applications using Site Minder. Monitored Applications and WAS performance through Tivoli Performance Viewer and tuned the system caching, queuing, JVM parameters, DB Connection Pooling.
• Created Open SSL Certificates and used them to maintain confidentiality and two way authentication while integrating with third party applications.
• Integrated web applications with Site Minder, Sun ONE LDAP server using custom APIs and various affiliate agents.
• Created IBM Problem Management Records PMR to report Web Sphere Application Server problems. Analyzed log files to solve problems using debugging tools like Log Analyzer, First Failure Data Capture Tool and Collector Tool.
• Implemented a strong authentication and authorization framework for the well maintenance of the SSO environment by defining user policies and rules.

Confidential

Site Minder / LDAP Consultant

Environment: CA Netegrity Site Minder 6.0sp5, web agents qmr5, IIS Web server 6, Sun One Directory Server.

Responsibilities:

• Used Tivoli Performance Viewer TPV to monitor application server performance, identified performance problems and resolved in appropriate manner.
• Provided Support to internal teams in solving Test Environment and Production issues.
• Implemented LDAP security models. Carried out performance testing and troubleshooting using Resource Analyzer and Log Analyzer.
• Helped troubleshoot issues involving security by analyzing logs for policy server and web server using Site Minder and Web Sphere.
• Involved in Collecting the requirements, feasibility analysis and documentation for accomplishing the enterprise SSO from within the enterprise.
• Installed and configured Red hat directory server to centralize application settings, user profiles, group data, policies, added multiple Red hat directory Master/Slave replication servers and access control information.
• Implemented a strong authentication and authorization framework for the maintenance of the SSO environment by defining user policies and rules.
• Responsible for deploying enterprise applications from Admin console and enabling security using LTPA and LDAP for admin console and application components on AIX.
• Establishing, troubleshooting and upgrading SSO environment by applying Patches and Updates.
• Performed iPlanet LDAP and Sun ONE Directory Server Installation, configuration and defined LDAP Schemas
• Involved in Configuring distributed authentication and authorization stores using LDAP directory mapping.
• Carried out performance testing of LDAP and Policy Server.
• Designed logical security application architecture integrating Web Sphere Application Server, Sun One Web Server, iPlanet LDAP Directory Server, Netegrity Site minder and implemented Single Sign-On security.
• Performed ongoing Site Minder infrastructure load testing, tuning to support business growth.
• Installation of eTrust Site Minder Agent r6.0 for IBM Web Sphere.
• Installation of Site minder Policy Server Optional Pack and Web Agent Optional Pack for Federation
• Maintained key store, token data and session server.
• Responsible for installation of various components involved in the setup of a standalone security setup using LDAP and Site Minder.
• Installation and configuration of Sun ONE Directory Server 5.2 and Site Minder SP 5.0.
• Designed logical security application architecture integrating Web Sphere Application Server, Sun One Web Server, iPlanet LDAP Directory Server, Netegrity Site minder and implemented Single Sign-On security
• Installation and trouble shoot in implementation of Site Minder Trust Authentication Interceptor TAI for IBM Web sphere 6.0.

Confidential

Sun One Directory Site Minder Consultant

Environment: Netegrity Site Minder 4.51, Sun Solaris, Sun One web server 4.0, Windows Server 2000, Microsoft IIS, iPlanet Directory Server, MS Active Directory.

Responsibilities:

• Installed Web Agent on IIS 6.0.Configured the Proxy connection and iPlanet Application Server.
• Initiated the redesigning of LDAP Directory Architecture and schema to enhance the business rules.
• Provided appropriate documentation of all Error Log Codes, Task Plans and Procedures, Work flow, Configuration, SUC and BUC for the preliminary use for Client's and for future reference
• Regularly interacted with application development teams to configure Site Minder agents and policies for new applications and resolved issues pertaining to them.
• Coordinated with testing team to end-to-end regression tests on Site Minder protected sites.
• Upgraded Site Minder from Version 4.x to 5.x and promoted Site Minder policies to higher Environments using smobjexport and smobjimport
• Configured the FPS Forgotten Password Service One Shot Password functionality with custom written Java code to validate the SSO user Cookie for re-authentication using SmApiSession Java Classes.
• Implemented Advanced Password Services APS 3.0 to authenticate users onto enterprise web applications.
• Created policies, realms, rules, responses to protect the applications and configuring them to work under SSO environment.
• Provided the Solution for the integration of Site Minder and Sun One Identity Manager Password services after analyzing the present configuration. Implemented the Site Minder SSO, Authentication for front end applications web applications .
• Re-engineered and designed LDAP Schemas and DIT to implement enterprise wide centralized repository.

Confidential

LDAP Administrator

Environment: Site Minder, LDAP Sun One Directory Server, Sun One web server 6, IIS, LDAP, Oracle, Sql, Java, Unix Shell Scripting, Perl, Solaris, Linux.

Responsibilities:

• Involved in analyzing and Planning for LDAP implementation. Mapping LDAP-enabled and non LDAP enabled applications and data sources to the default or supported schema. Extending the existing schema when necessary by creating custom object classes and custom attributes using the proper existing object classes and attributes.
• Implementing High Availability and Fault Tolerance Strategies. Implementing replication strategies for Round Robin, with failover and load balancing. Executing Backup and Recovery Strategies.
• Installed and Configured Site Minder and its components such as Policy Server, Web Agents etc. Integrated homogenous and heterogamous application with Site Minder / LDAP.
• Involved in Configuring Optimal Performance, Tuning Operating Systems and Directory Servers kernel parameters, TCP/IP stack parameters, system cache, search algorithms, operational size limits, indexes, and import, database, entry cache .