Harish_SiteMinder

advertisement
HARISH
SiteMinder Administrator
732-746-0070
PROFESSIONAL SUMMARY:
 Over 7+ years of experience in Web Security Administration on Netegrity/CA SiteMinder,
Netegrity/CA Identity Manager, Sun One LDAP Directory Server, WebLogic, WebSphere application
server, work experience in the analysis, design, installation support and maintenance. Expertise in
architecting solutions across the enterprise using CA Single Sign On (CA SiteMinder), CA Identity
Minder, CA Identity Manager, Microsoft Active Directory.
 Expertise in implementation of Infrastructure Security Design & in enterprise wide applications to
achieve Authentication, Authorization, concepts of CIA triad, and Accountability as per the requirement.
 Expertise in Installing, configuration, deployment and maintenance of the SiteMinder components the
Policy Server, Web Agent, Policy Store and Key Store.
 Involved in SiteMinder policy server upgrades from SiteMinder R5.5 to R6.0, SiteMinder R6.0 to
R12.51, and SiteMinder R12.sp3 to R12.52sp1.
 Involved in Web Agent upgrades from 5.x to 6.x and 6.x to R12.51.
 Experience as a configuration administrator to protect web applications using CA SiteMinder.
 Experience in analyzing the logs like trace logs, logs and Trouble Shooting issues in Integration other
applications using CA SiteMinder and Identity Management tools along with LDAP and Web-Server
agents and SiteMinder federation services.
 Experience in integrating WebLogic Application Server with CA SiteMinder as Identity Provider and
External third party services as service providers.
 Working experience in the development of CA SiteMinder Single Sign-On services with SiteMinder
configurations by setting up policies, realms, rules and responses.
 Experience in administrating LDAP based directory serves like iPlanet/Sun One Directory Server and
Microsoft Active Directory.
 Involved in providing SSO solutions to multiple web based enterprise applications using Ping Federate
5.x/6.x.
 Experience with using IdP initiated and SP initiated SAML profiles with different binding methods like
POST, Artifact, and Redirect to deliver a custom SSO environment as per the requirement.
 Upgrading the SSO environment to the latest version.
 Have knowledge of RSA Authentication Manager 6.x/7.x for user self-services, work flow management,
delegated administration, token based, form based authentications as part of the security solution.
 Working knowledge in PKI (Public Key Infrastructure).
 Hands-on experience with Configuration aspects of protecting Web Applications using SiteMinder
System objects like Agents, Agent Configuration Objects(ACO), Host Configuration Objects(HCO),
User Directories, Domains, Administrators and Schemas.
 Configured Domain objects like Realms, Rules, Responses and Policies.
 Configured User Authentication stores, Policy Stores and Key Stores on LDAP and maintained
replicated environment for load balancing and failover.
 Used SiteMinder tools like smobjexport, smobjimport to export and import Policy Stores respectively,
smreg to change the SiteMinder super user password.
 Experience in Testing SiteMinder policies using SMTEST tool.
 Experience in creating manual entries of directory server using command line, GUI and LDIF files.
 Experience in administration on LDAP Servers including versions 5.x, 6.x and 11.x.
 Experience in User Directory Administration and System Administration.








Experience in working with web servers- Sun One web server, IIS, Apache web servers and IHS (IBM
HTTP Server) like configuring and troubleshooting.
Involved in Automated identity management tasks such as user provisioning, role based access control,
delegated administration, attribute based auditing and reporting using CA Identity Manager.
Experience in using Unix/Linux utilities for analyzing logs, and troubleshooting the applications with
application servers and Security/Identity management servers.
Proficiency in Java/J2EE, WebLogic, Web Services, Solaris 10 and Windows system administration.
Good knowledge with web applications and their frameworks.
Experience in using Networking Protocols for client server applications like TCP/IP socket
programming.
Providing 24/7 support as per the company requirements.
Excellent verbal and written communication skills.
EDUCATION: Bachelors in Engineering and Technology, JNTU, India
TECHNICAL SKILLS:
Security
Directory Servers
Application Servers
Web Servers
Languages and Technologies
Networking and Protocols
Databases
Operating Systems
Packages & Utilities
Performance Monitoring Tools
Identity Management Tools
Netegrity/CA SiteMinder 5.x/6.x/12.x.
Sun One Directory Server (5.1, 5.2, and 6.3), Microsoft Active
Directory, and Oracle 11 g.
WebSphere (5.x, 6.x), BEA WebLogic (6.x, 7.x, 8.x, 9.x), Apache
Tomcat (4.x, 5.x).
Apache (13.x, 2.2x), Microsoft IIS (4.x, 5.x, 6.x), iPlanet (5.x, 6.x),
IBM HTTP Server (1.x, 5.x, 6.x).
Visual Studios 2003, .NET Framework 1.1, Java (JDK), J2EE- Java
Beans, JSP, JMS, JDBC, SAML.
HTTP/HTTPS, LDAPv3, SSL/TLS, SSH, TCP/IP, IPv4/IPv6,
DHCP, DNS, IPSEC, VPN, SNMP AND IPTABLES.
Oracle 11g/10g/9i, SQL Server 2008/2005/2000/7.0, MS MySQL
5.0, Access 7.0, RDBMS.
UNIX (Solaris 9/10), Red Hat Linux, CentOS Linux, Win 2000,
2003, 2008.
Adobe Photoshop, Adobe Acrobat, MS Office (Word, Excel,
PowerPoint, FrontPage)
SiteMinder 5.x, 6.x one view monitor, Tivoli Access Manager, Log
Analyzer, Thread Analyzer and Fiddler.
Ca Identity Manager r12/r8.1, Sun Identity Manager 8.0/7.1/6.0.
PROFESSIONAL EXPERIENCE:
Cummins Inc, Shoreview, MN
April 14 - Present
SiteMinder Administrator
Responsibilities:
 Upgraded and installed CA SiteMinder from R12.sp3 to R12.52sp1.
 Installed and configured SiteMinder Policy Server (6.x, 12.x) on UNIX/Windows environments.
 Defined Domains, Realms, Rules, Responses and Policies for protected web resources.
 Implemented Load balancing and Clustering under SiteMinder for ensuring high availability in
production environment.
 Successfully Upgraded Policy Server version R6.0 to version R12.51.
 Responsible to check and configure the integration of SiteMinder 6.0 policies to work with roles defined
in Identity Manager 6.0

Involved in the Implementation of enterprise SSO security infrastructure using SiteMinder 6.0 and Sun
ONE Directory Server 5.2 on multiple OS environment.
 Worked on the Installation and fine tuning of the SiteMinder web agents for the accomplishment of the
business and user requirements.
 Worked on Installation, Configuration and fine tuning of SiteMinder web agents on Apache Reverse
Proxy Server
 Successfully integrated application security projects with CA SiteMinder, Sun ONE LDAP server using
custom APIs and various affiliate agents
 Implemented a strong authentication and authorization framework for the well maintenance of the SSO
environment by defining user policies and rules.
 Performed LDAP Sun ONE Directory Server Installation, configuration and defined LDAP Schemas
 Very good experience in fine tuning of LDAP Sun ONE Directory server.
 Handled high priority and urgent priority outage issues with ease.
 Opened tickets with CA (Computer Associates) related to bugs and issues.
 Implemented Multi master replication and Hub Replication on LDAP Sun ONE Directory server.
 Effectively maintained the policy store, key store and the user store.
 Involved in server, policy store and key store configuration file backups.
 Experience with Change management procedures.
 Experience with F5 Load balancing tools
 Troubleshooting SiteMinder environment using SiteMinder test tool and SiteMinder policy server log
files and agent log files
 Administered policy and user stores using the Sun ONE Directory servers while also providing
redundancy and availability.
 Was part of the 24/7 On-call team for troubleshooting outages/ issues.
 Involved in Collecting the requirements, feasibility analysis and documentation for accomplishing the
enterprise SSO
Environment: CA Single sign on (6.0/12.51/R12.0sp3/R12.52sp1),Oracle DSEE 11g, Microsoft Active
Directory, Web Agents, Oracle LDAP Directory Server 11.0g, IBM WebSphere, SQL Server, HTML,
SQL, MS Visual.
PHH Mortgage, New Jersey
July’ 13 – March 14
SiteMinder/LDAP Admin
Responsibilities:
 Installed, configured and administered Netegrity/CA SiteMinder Policy Server (6.0/12.0) and Son One
LDAP Directory (5.2/6.x/7.0) and Sun Identity Manager (7.x/8.x) for multiple projects.
 Installed, configured and integrated Web Servers (plug-in file), SiteMinder agents and LDAP user
directory with WebSphere Application Server on Solaris and Windows platforms.
 Used SiteMinder for authenticating the user passwords for the web application.
 Installed, configured web agents, Sun One Directory server (LDAP) with various Web & Application
servers.
 Involved in the architecture and implementation of CA Identity Manager Solution for providing,
delegated administration, workflow implementation and generating audit reports to be complaint with
the security regulations.
 Involved in Designing infrastructure, documenting Identity manager requirements for migration to 12.5
from 8.0.
 Configured Replicated policy servers and LDAP user directories for Load balancing and failover.
 Worked extensively on creating Custom Password policies and Authentication schemes as per the
requirement.
 Implemented SSO solution in multiple OS environments using Cookie Provider.




Installed patches on policy servers.
Installed and configured the LDAP Sun ONE Directory Server 5.2.
Configured the multi master replication in Sun ONE Directory server 5.2.
Administrating LDAP based directory serves like iPlanet/Sun One Directory Server and Microsoft
Active Directory.
 Installed SiteMinder Policy Server Optional Pack and Web Agent Optional Pack for Federation web
services.
 Configured SiteMinder web agents, affiliate agents and RADIUS agents to provide federation of web
services in the SSO environments.
 Troubleshooting and maintenance of web servers and policy servers.
 Created groups and add users for the new Applications.
 Designed the policies and the objects, which will be most feasible for the client’s environment.
 Configured Policy Domains, User Directories, Rules, Realms and Policies, for protected web resources
on Linux and Solaris platforms for multiple projects.
 Installed and configured IIS to act as proxy server to serve various applications.
 Creating OpenSSL Certificates and using the same for Federation of external Services to achieve the
purpose of maintaining confidentiality, message integrity and bilateral authentication.
 24/7 production support.
Environment: CA SiteMinder (6.0/12.0), Sun One Directory Server, CA Identity Manager r8, Tomcat
5.5, Apache 2.1, 2.2, Solaris 8/10, Windows 2000/2003 Servers, iPlanet, HTTP webservers.
Terex Corp
Oct’ 12 – July 13
Westport, CT
LDAP/SiteMinder Administrator
Responsibilities:
 SiteMinder administration for agents, user directories, agent configuration objects, logs and cache
management
 Configured the Policy Domains, User directories, Rules, Realms and Policies for protected web
resources.
 Configured SiteMinder load balancing and failover to meet high availability and performance.
 Backed up the user-store, key store, policy store for upgrading.
 Involved in the Up gradation of SiteMinder Policy Servers from version 5.5 to version 6.0 and
SiteMinder Web Agents from version 5.5 to version 6.x
 Implemented SSO solution in multiple OS environments using Cookie Provider.
 Installed patches on policy servers
 Installed and configured the LDAP Sun ONE Directory Server 5.2
 Configured the multi master replication in Sun ONE Directory server 5.2
 Supported production Servers for various issues.
 Created groups and add users for the new Applications.
 Fine tuning of Web agents and policy servers for optimized performance.
 Supported Replication and Replication Agreement.
 Experience with Change management procedures.
 Was part of the 24/7 On-call team for troubleshooting outages/ issues.
Environment: CA SiteMinder(6.x), Web agents 5.x, 6.x, Sun ONE Directory Server (5.1, 5.2),
Solaris(8x,9x), Microsoft Windows 2000/2003 Servers, IIS(5.x,6.x), RSA Authentication Manager 7.1,
iPlanet, Apache(2.1x, 2.2), Http Web Server
SunTrust Bank, Atlanta, GA
Feb’ 11 – Sep’ 12
SiteMinder/ LDAP Security Analyst
Responsibilities:
 Worked on defining various SiteMinder Policy Server objects and Domain objects, Password Services
and associated different realms, rules, responses and policies in it.
 Installed, Configured and administered SiteMinder 5.x/6.x and Sun One Directory Servers on IIS 6.0.
 Installed and configured IBM WebSphere application server 5.0 on Solaris.
 Involved in the upgrading of SiteMinder Policy Servers from version 5.5 to 6.0 and SiteMinder Web
Agents from version 5.5 to 6.x.
 Integrated SiteMinder with Sun One Directory Server to use directory server instances as Policy Store
and User stores for Policy Servers.
 Effectively maintained the policy store and key store configuration file backups.
 Configured SiteMinder authentication services with an Active Directory domain.
 Involved in support team and in problem identification and solving.
 Experienced with Change Management procedures.
 Used SiteMinder tools like smobjexport, smobjimport to export and import Policy Stores respectively,
smreg to change the SiteMinder super user password.
 Upgraded WebLogic Servers with necessary patches and service packs.
 Experience in Testing SiteMinder policies using SMTEST tool.
Environment: Netegrity SiteMinder 5.x/6.x, Sun Identity Manager 7.x, Web agents 5.x,/6.x, Unix shell scripts,
IBM WebSphere, Application Servers 5.x, Apache 2.x, IIS 5.0/6.0, Solaris (10).
ITC Infotech, Bangalore, India
June’ 09 – Dec’ 10
SiteMinder Admin
Responsibilities:
 Configured WebLogic Application Server 6.x/7.x on multiple platforms like Sun Solaris, RedHat Linux
and Windows in production environment.
 Requirements gathering from the client and developed the software requirements specifications.
 Configured SiteMinder Load Balancing and failover to meet high-availability and performance.
 Configured Policy Domains, User Directories, Rules, Realms and Policies, for protected web resources.
 Installed patches on policy Server 6.x.
 Installed and configured Web Agents on multiple platforms.
 Created groups and users for the new applications.
 Involved in migrating BEA WebLogic server from 8.1 to 9.1.
 Created and implemented password services and policies.
 Load balancing multiple Application server instances in a clustered environment.
 Expertise troubleshooting production issues and provided Root cause Analysis.
 Installed and configured IIS to act as proxy server to serve various applications.
 Part of the 24/7 On-call team for troubleshooting outages/issues.
Environment: CA SiteMinder(6.x), Web agents 5.x, 6.x, Sun ONE Directory Server (5.1, 5.2), Solaris(8x,9x),
Microsoft Windows 2000/2003 Servers, IIS(5.x,6.x), Apache(2.1x, 2.2), Http Web Server, BEA, RedHat.
Axis Bank, Bangalore, INDIA
Feb’ 08 - June 09
Infrastructure Administrator
Responsibilities:
 Designed the policies and the objects, which will be most feasible for the client’s environment.
 Configured Policy Domains, User Directories, Rules, Realms and Policies, for protected web resources
on Linux and Solaris platforms for multiple projects.
 Supported Sun One LDAP, SiteMinder in Production Environment.



Installed and configured SiteMinder components.
Upgraded policy servers and web agents.
Installed & Configured SiteMinder Policy Servers & Policy Stores. Integrated Policy Store with LDAP
to use LDAP user repository.
 Created and implemented password services and policies.
 Configured SiteMinder audit logs and created reports as per the business security requirements.
 Installed SSL certificates on WebLogic and WebSphere applications.
 Installed and configures WebLogic 8.x/9.x plug-ins on Apache 2.0/Sun One (iPlanet) web servers.
 Worked on defining channels using SSL certificates.
 Experienced in SiteMinder Test tool and SiteMinder policy server log files for Troubleshooting
SiteMinder environment.
 Fine-tuned SiteMinder, Agents, DIT’s & LDAP configuration parameters for better Throughput&
response time.
 Troubleshooting and maintenance of web servers and policy servers
 Created groups and add users for the new Applications.
Environment: Web Servers, Apache, iPlanet, IIS, WebLogic, Active Directory, HTML, Windows
Download