SSO expert having Identity and Access Management expertise of 16+ years in SAML / OpenId Connect / Oauth 2.0 / JWT / FIDO2/ Webauthn / 2FA etc. I have experience with open source and commercial SAML implementations (Shibboleth, SimpleSAMLphp, Okta, OneLogin, Auth0, Spring Security SAML, Keycloak, ForgeRock, IBM Security Access Manager etc.), and I am comfortable working in any programming language (PHP, Java, JavaScript, Python, ASP.NET, C#, Ruby, Go, etc.) or framework (Node.js, Meteor, Angular, Django, CodeIgniter, Concrete5, Yii, Symfony, Laravel, WordPress etc.). I have a strong track record of helping clients succeed with: -Adding SAML authentication to custom applications -Troubleshooting SAML Identity Provider and Service Provider errors -Deploying SAML Identity Providers (IdPs) and Service Providers (SPs) -Finding the right architecture for layering SSO technologies (AD, LDAP, OAuth, OpenID Connect, CAS, Kerberos, JWT, multi-factor, etc.) -Providing training, documentation and third-party support -Deployment and architectures of LDAP solutions (OpenDJ, OpenLDAP, IBM Security Directory Server etc). Architectures with high availablity and custom schema. LDAP proxy / bridge solutions deployment. -Architectures and solution Implementation of Identity and Access governance solutions (Sailpoint IIQ , IBM Security Identity Manager, IBM Security directory integrator ). -Role based access control implementation in Identity management solutions. -Risk based access control implementation with Access Management solutions. Devops and cloud security - - Dockerize applications and platforms. - Deployment of applications on AWS EKS platform. - Deployment of applications on GCP GKE platform. Complex Integrations - - Rest API development and security with Oauth / JWT tokens. - API gateway integrations of API. SSO and Identity Access Management Integration Expert | Technical Project Manager

✅ Top Rated Plus Expert ✅ 3000+ Hours ✅ Professional Penetration Tester Security researcher acknowledged by U.S Department of Defense (among other notable companies like AT&T, Semrush, Smule etc) for disclosing a number of vulnerabilities on DoDs systems via Hackerone bug bounty platform. For deliverables, professional reports are created,that will outline every vulnerability found, proofs-of-concept, and solutions on how to fix the discovered vulnerabilities. Each report not only meets but exceeds requirements for compliance auditors. Core competency is performing black and gray box testing on live web applications/networks or lab environments. Familiar with all common attack vectors and mitigation techniques, as well as finding unknown to public exploits known as 0days in web applications. Even though most of the work is confidential sample vulnerability report can be provided. Service Description 1)Web Application Penetration Testing based on OWASP TOP 10 2)Network Penetration Testing 3)Security Hardening Pentesting tools: BurpSuite Professional, OpenVAS, Nmap, Metasploit, Mimikatz, Impacket python framework

End to End Web/SaaS/PaaS/Cloud Solution Development C# .NET, ASP.NET MVC CORE/.NET CORE/Xamarin/Forms, EF/CORE/Dapper, MSSQL/PostgreSQL/AzureSQL, Front-end,backend development. Winforms/WPF/WCF/REST Web API, Web Services, VSTS, GIT, Jira, Jenkins ✅ C# .NET end-2-End business solutions development (web, desktop, mobile) ✅ Desktop App/Web App crash/memory corrupt debugging/troubleshooting & Fixing ✅ Database Migration: MSSQL/MySQL/Oracle to PostgreSQL/AzureSQL ✅ ASP.NET Webforms to ASP.NET MVC, ASP.NET MVC to MVC CORE Conversion ✅ Web Services (SOAP/ASMX) to Web API/2 (REST) conversion/migration ✅ Wordpress to .NET/ASP.NET/MVC/CORE conversion ✅ Agile (SCRUM) experience with global, cross-functional teams ✅ SSL setup TLS 1.2 Upgrade, .NET TLS 1.2 Upgrade ✅ US EST/CST overlapping availability for 30hr/wk contracts Got an idea 💡 to build a new product or are you planning to launch 🚀 your new app? Are you tired of waiting ⏳ on slow and non-productive programmers? You have come to the right place! I provide the best value for your money 💲💲💲! B2B, B2C, SaaS Web, Desktop & mobile 📱 software products (complete .NET/SQL stack), hack/secure (🔐) existing products for security testing purposes, fix bugs & add features, do configuration, deployment and maintenance of apps on live/production/development machines. For 11 years, I have developed SME, B2B and consumer-facing solutions to business problems. Based on a solid **Software Engineering Degree** (Hons), I have worked with Microsoft .NET technologies such as C#, VB.NET, .NET Framework, ASP.NET Webforms/AJAX/MVC,ASP.NET CORE 1.1, 2.0, Web API, WCF/ODATA, Web & Windows Services, Nodejs, XML, JSON, REST, SOAP, SQL Server (SSRS, DB, SPs), MySQL, Derby, Oracle, MongoDB, HTML5, CSS, JavaScript, jQuery, Twitter Bootstrap, Windows Server 2003, 2003R2, 2008, 2008R2, 2012, IIS (6,7,7.5,8), Winforms, WPF, MSI/EXE installer development using Advanced Installer and InstallShield, Azure, RDP/Remote Access, Ubuntu/SSH/WinSCP/Putty, GIT (bitbucket.org, github.com), SVN TFS, jasmine, dygrph. Asynchronous programming, SignalR, CORS, websockets, multi-threading, Parallel.Invoke, Task Parallel Library, nuget, database design, partitioning, indexing and optimization, legacy code learning & refactoring, code conversion, n-tier architecture, ORM/Dapper/Entity Framework, & 3rd party control Telerik/DevXpress. Desktop portfolio items and portfolio website can be shared on request. As a individual, full-time freelancer, I work usually during US EST or US CST time zone but can adjust to your time zone if needed. I possess exceptional English language written and spoken skills. I have excellent availability on sky-pe during work times. My suggestions for your project to run successfully: 1. Use source control for version management 2. Use Task tracker/bug tracker to efficiently manage the milestones and deadlines 3. Communicate expectations before the project begins I have complete command over Microsoft Office Tools. I have extensive experience with 3rd party APIs such as: 👍 TFS, GIT, SVN, Tortoise SVN, Tortoise GIT, bitbucket.org, github.com 👍 Web APP deployment on IIS, windows server administration 👍 National Hurricane, Weather Api 👍 Twitter API, 👍 Google API, 👍 Odata, 👍 OAuth, 👍 Telerik Rad Controls for ASP.NET AJAX, Winforms, WPF 👍 DevXpress, DExperience for Web and Winforms, 👍 Infragistics. 👍 Aspose Cells for .NET 👍 ZAP Proxy Security Analysis Framework (OWASP ZAP) 👍 ZAP API 👍 Fiddler for Windows, Fiddler .NET API 👍 Microsoft Excel Interop 👍 Microsoft Word Interop 👍 Microsoft Access Interop 👍 MySQL Connector for .NET 👍 Microsoft SQL Server R2 👍 Microsoft SQL Server Compact 3.5 & 4.0 👍 Windows Communication Foundation (WCF Services) 👍 Microsoft Entity Framework 4.x/ADO.NET Entity Framework 👍 LINQ 👍 Telerik OpenAcces ORM (Database First, Model First) 👍 Windows Presentation Foundation (WPF) 👍 Login Authentication/Encryption 👍 Message Encryption & Message Security 👍 Secure Communication & Messaging 👍 Payment system/gateway integration for credit card (💳) procesing 👍 Stripe gateway, payment method, custom checkout and subscription management module implementation 👍 Contactless EMV, dip & magstripe card payment implementation using bluetooth enabled mobile devices and stripe M2 card readers ★ MCPD Validation ★ Transcript ID: can be provided on request Access Code: can be provided on request I have worked with enterprise grade software systems that are composed of 📌 multiple tiers & layers, 📌 distributed client-server applications that use 📌 extensive .NET remoting and RMI, 📌 multi-threading, 📌 memory management and exception handling, 📌 developed applications that use Smart Cards and biometric devices, finger print readers and scanners and their 📌 SDKs for authentication and security, 📌 developed applications that use RSA key exchange, and 📌 use encryption for secure message and file transfer.

Cloud/Java/IAM Architect with 20+ years of experience working with some of the biggest Fortune 500 companies. Experience in designing/implementing SSO and API Security using industry standard protocols such as SAML, OpenID Connect, OAuth 2.0, Multi Factor Authentication. Worked with various IAM solutions like KeyCloak, OneLogin, Forgerock, Ping, AzureAD. Experience in working on various Cloud Platforms such as GCP, AWS, DigitalOcean for developing Cloud Native Applications as well as migration of applications to Cloud. Expert in Nginx configuration as reverse proxy, load balancer and SSL offloading. Experience in Application Migration, setting up server and application deployment, maintenance.

As an LMS (Learning Management Systems) and CMS development specialist, I have had an opportunity to serve global clients on Upwork for over 10+ years. I have hands-on experience of mapping & customizing MOODLE LMS, Learndash, IOMAD multi-tenancy LMS, Wordpress CMS, Woo Commerce, Kajabi, React JS, MERN design & development etc. My LMS & CMS services encompass the full spectrum: - Mapping LMS & CMS from ground up, specific to your needs - Customizing and integrating 3rd party payment gateways, APIs & Web services - Deploying and maintaining solutions on your hosting server - Designing and configuring interfaces for optimal user experience. ◉ What I can do for you in LMS ◉ ▸ API integration ▸SSO implementation ▸LTI Integration ▸Multitenancy ▸Enrollment ▸Reports creations ▸User Management ▸ Role Assigns ▸Developing Front end courses checkout process for enrollment in courses ▸Cross-browser compatibility ▸Testing I am dedicated to ensuring the success of each project I undertake and prioritize clear communication to foster long-term relationships with my clients. Please feel free to reach out with any inquiries or suggestions. I am eager to collaborate and contribute to your projects. I am immediately available to work with you. Best Regards!

SAML and SSO integration expert with over fifteen years of experience. I have experience with open source and commercial SAML implementations (Shibboleth, SimpleSAMLphp, ADFS, Azure, Okta, Cognito, OneLogin, Auth0, JumpCloud, Salesforce, Spring Security SAML, Ping, ComponentSpace, IBM Security Verify, SiteMinder, SAP, OAM, Keycloak, ForgeRock, SailPoint, etc.). I am comfortable working in any programming language (PHP, Java, JavaScript, Python, ASP.NET, C#, Ruby, Go, etc.) or framework (Node.js, Meteor, Angular, Django, CodeIgniter, Concrete5, Yii, Symfony, Laravel, WordPress, Grails, Spring, Spring Boot, Cordova, etc.). I have a strong track record of helping clients succeed with: -Adding SAML authentication to custom applications -Troubleshooting SAML Identity Provider and Service Provider errors -Deploying SAML Identity Providers (IdPs) and Service Providers (SPs) -Finding the right architecture for layering SSO technologies (AD, LDAP, OAuth, OpenID Connect, CAS, Kerberos, JWT, multi-factor, etc.) -Joining Identity Federations like InCommon, OpenAthens, UK Federation, etc. -Providing training, documentation and third-party support -Identity governance and compliance (ITGC, SOX, FedRAMP, StateRAMP, SailPoint, SOC 2, etc.) -Device trust and passwordless authentication

• Cloud Architecture and Development in Azure and AWS. Azure certifications: AZ-900: Microsoft Azure Fundamentals AZ-305: Designing Microsoft Azure Infrastructure Solutions • Design and implementation of Identity and Access Management Systems, Platform Integration: Azure AD B2C, Okta, Auth0, Identity Server, Centrify, Salesforce) • OpenID Connect, OAuth2 and federation flows. • Sr. .NET Developer with almost 20 years in software design and development experience on Responsive Web and Windows applications - Asp.Net Core, .C#, ASP.NET, MVC, Rest APIs • Full stack development with multiple back-end and client side technologies.• • Test Driven Development (TDD), CI/CD Pipelines, Git, Azure DevOps • Excellent communicator and coach. Have acted as liaison among teams, clients, users, stakeholders and external parties to get projects from idea to deployment.

Experienced Information Technology Infrastructure Engineer with a demonstrated history of working in the IT industry. Skilled in Cloud Technologies (Microsoft Azure, INTUNE, Amazon Web Services, G Suit, and Office 365), SharePoint, Exchange Server 2010/2013/2016, Skykick, BitTitan, Codetwo, VMware, Hyper V, Active Directory, ADFS, SCCM, SCOM, OMS, Automation by using PowerShell/Orchestrator, EMC Storage, Enterprise Vault, ITIL, GoDaddy, SQL, SPX Storagecraft for the backup solution and Windows Servers. Strong information technology professional with a Master's Degree focused on Project Management. Skills: ⚡️ Windows Server:  Installing Configuring Windows Server 2003, 2008, 2012, 2016,2019 and 2022  Installing and configuring DFS, DNS, DHCP, Printer Server, IIS, RDS, RAID, NAS  Backup and Restore Windows server  Troubleshooting performance, network, GPO, Server/client issues  Windows 10/11 client issues troubleshooting ⚡️ RMM Tools ( Intune, Datto RMM, Connectwise, NinjaOne and ManageEngine  Configuring Microsoft Intune Security Policy, App Deployment, Defender Firewall and windows updates.  Configuring Autopilot for User onboarding automation.  Configuraing and managing Clients environment by using Datto RMM, Connectwise, NinjaOne and ManageEngine. ⚡️ Microsoft 365:  Configure Office 365 Services like domain setup, configure Mail flow, DNS records( SPF, DKIM, DMARC, MX records, etc.)  Configuring complete Microsoft 365 E5 or Busines premium Services such as Defender for O365, Defender for Endpoint, DLP, Azure Security Features.  Configure ADFS and Azure AD connect for SSO  Configure Exchange hybrid environment and migration  Migrate from G-suit, IMAP, PST migration  Troubleshooting Client-side issues such as Outlook, One drive sync, and SharePoint  Migrate SharePoint 2013 to SharePoint online  Design and configure SharePoint Online  Deploy and Manage Modern Desktop (Azure AD, Hybrid Azure AD, INTUNE, Windows Autopilot)  O365 Tenant to Tenant Migration by using Bittitan Migrationwiz, CodeTwo, and Skykick  O365 Backup by using Skykick and Local NAS ( Boxafe) ⚡️ Exchange Server  Install, configure and Design Exchange server 2003, 2007, 2010, 2013, 2016 and 2019 environment.  Migrate Exchange server to office 365 ( Cutover, Staged, Hybrid migration, Skykick tool for Automatic outlook Profile reconfigure in Cutover/Staged Migration)  Install, configure and Design Lync 2010 and S4B environment.  Design and manage S4B Disaster recovery ad High availability.  Configure and integrate MS teams with PBX (enterprise voice) .  Responsible for overall capacity planning for messaging and collaboration services.  Strong hands-on Exchange/office 365Power shell scripts.  Configure Azure AD connect/Dirsync for Hybrid configuration  Migrating from Exchange server 2003 to Exchange server 2007  Migrating from Exchange server 2007 to Exchange server 2010, 2013, 2016  Disaster Recovery planning through CCR, SCR, and DAG  Plan, Configure, and Migration to Office 365  Configure TMG/ISA and Edge servers  Designing E-mail Routing In multi-domain/multi-forest environment.  Troubleshooting Public Folder Replication issues and Public Folder migration  Quest Recovery Manager for Exchange and Active directory. ⚡️ Active directory:  Installation/configuration AD infrastructure environment  Active Directory Migration and consolidation from External forest or Child domain.  Manage/configure Backup/restore AD environment  Strong hands-on AD Power shell scripts  Manage/troubleshooting GPOs, AD replication, and Certificate  ADFS, Azure SSO, MFA, SAML, Oauth, OpenID ⚡️ VMWare/Hyper-V/Azure/AWS:  Installing configuring ESX hosts/cluster  Configure and manage VMotion, DRS, Fault Tolerance, and High availability  Performing VM migration across datacenters  Configure and manage VROPS tool.  Managing MS azure environment in a hybrid environment.  Troubleshooting, Backup restore tasks  Troubleshooting performance issues.  Designing/Implementing Automation solution by using System Center Orchestrator for On-premise/MS Azure platform.  Migrating VMs by using Azure Migrate and Azure site recovery  Configure and troubleshooting Azure Site to Site VPN.  Configure Azure Windows Virtual Desktop environment.  Configure Azure AD hybrid, MDM, Intune, Windows defender, Azure ATP configuration.

🔐 SSO and Identity Access Management(IAM) | Networking Expert 🔐 Hello, I have technical experience in Identity and Access Management, I specialize in ensuring that only authorized individuals can securely access digital systems. I'm an expert in SSO (Single Sign-On), using various methods like SAML, OpenID Connect, OAuth 2.0, and others to simplify and enhance login security. I have expertise with open source and commercial SAML implementations (Keycloak, miniOrange, Shibboleth, SimpleSAMLphp, Okta, OneLogin, and more) to establish these secure login mechanisms. I am proficient in any programming languages including PHP, Java, JavaScript, Python, Golang, Shell Scripting, and others, alongside various frameworks like Spring, SpringBoot, Node.js, React, Angular, Django, WordPress, CodeIgniter, Symfony, Laravel, Gin, and more. I've supported numerous clients in multiple ways, such as: ✅ Securing custom applications with SAML-based logins. ✅ Resolving login-related issues across various systems associated with SAML OAuth, Identity Providers and Service Providers. ✅ Deploying different SAML and OAuth Identity Providers (IDPs) and Service Providers (SPs). ✅ Configuring secure logins for different systems. ✅ Designing optimal architectures for integrating SSO technologies like AD, LDAP, OAuth, OpenID Connect, CAS, Kerberos, JWT, multi-factor authentication, and more. ✅ Providing extensive training, meticulous documentation, and dependable third-party support. ✅ Creating and implementing robust architectures for LDAP solutions (OpenDJ, OpenLDAP, IBM Security Directory Server), focusing on high availability and customized schemas. ✅ Proficient in deploying LDAP proxy and bridge solutions, as well as Reverse Proxy setups like nginx and httpd. ✅ Implementing role-based access control and risk-based access control within Identity management solutions. ✅ Demonstrated experience of 6 years in Linux-based OS including Arch Linux, Ubuntu, CentOS, Redhat, etc. Additionally, I am proficient in DevOps and cloud security, encompassing: ✅ Containerizing applications and platforms using Docker. ✅ Deploying applications on AWS EKS, EC2, and other environments. ✅ Application deployment on Azure and GCP. In complex integrations, I excel at: ✅ Developing and securing Rest and GraphQL APIs using OAuth and JWT tokens. ✅ Integrating API gateways to ensure seamless API operations, including API Authorization, and more.

A full stack developer proficient in Microservices in ASP.NET (MVC+CORE), Angular, React, Redis, RabbitMQ, Ocelot, Docker, Kubernetes, SQL Server, Mongo. Microservices architecture expert with hands on experience in migrations from monolithic to microservices using Ocelot, RabbitMQ, MassTransit, Clean architecture, CQRS deployed on Azure, AWS and On-Premise on Linux and Windows Server. I am also an expert in Cyber Security, PKI, and Cryptography, A pro in SSO using SAML, oAuth, OIDC with all IDPs including Azure AD, ADFS, OKTA, OneLogin and Keyclock. Office 365, Office stack, WOPI, and integrations with external IDPs. Expert in Azure AD and Azure B2C. Libraries and Languages: C#, JavaScript, Typescript, HTML, CSS, SQL, Angularjs, Angular, React, jQuery Frameworks & Technologies: ASP.NET(MVC 4-5-6, Core) .NET 5 | Web Services (SOAP, REST Web API) | Redis Cache Server | Redis Pub/Sub | SignalR WebSocket | RabbitMQ Azure App Services | Azure AD | Azure SQL | Azure DevOps OKTA | KeyCloak | OneLogin | ADFS Entity framework 5-6, Dapper Extension MS Office JavaScript SDK for Office apps (office.js) WOPI | OpenOffice | Docker Databases: SQL Server, MySQL, Mongo, and Oracle Authentications and Integrations: IFrame, Oauth2, OpenId, Microsoft Active Directory, Azure AD, Sales Force , Entrust IDG, IDFY BankID, OAuth(Office 365, Sales force), Verisec (Freja mobile and Freja eID), SAML (ADFS 2.0, Azure AD) Tools & Techniques: Visual studio 2008-2017, SVN, GitHub, TFS, JIRA, SDLC patterns, AGILE SCRUM Security domain: Working in a security firm, I have working experience in Digital Signatures, Asymmetric cryptography, and Identify management.