Hallett German

6 Anzio Circle
Peabody, MA 0960
Phone: 978-535-0138
Mail:mailto:tommyshanks2002@yahoo.com
URL: http://www.alessea.com/hrgerman/index1.htm

Electronic Directory Skills

• Development and execution of business, architectural strategy, communications, project, and
security plans.
• Pre-selection and production selection including: requirements gathering, product testing, and
internet standards compliance.
• Data management including: source identification, synchronization/cleansing, documentation, and
implementation.
• Requirements and design (data, schema, namespace, topology, replication, privacy, and security).
• Post-implementation including: metrics, capacity planning, and process improvement.
• Products (Active Directory, eDirectory, eTrust, iPlanet, IBM Tivoli Directory, OpenLDAP,
Siteminder)
• Meta-directories (MMS, Novell)
• Virtual Directories (MaxWare, Octet String, Radiant Logic)
• Identity Management (Novell, Siteminder, Tivoli)
• Active Directory including migrations & upgrades, group policy management, and metadirectory).
• Directory Consulting (Migrations and upgrades, “white pages”, identity services (SSO), access &
provisioning services, replication, security, product testing, internet standards compliance).

Experience and Responsibilities

Company & Title/Responsibilities Deliverables
Years
CA (Formerly Technical Support Engineer Resolve SSO & Federation (SAML) issues for
Netegrity) Siteminder customers on supported
20050 Windows/UNIX platforms. This includes log
analysis, knowledgebase review, reproduction
using Lab equipment/VMware images
Issues include Active Directory/Siteminder
integration (such as connectivity, password
services, single-sign-on)
SDG 2003- Senior Security Infrastructure Technical Support for Netegrity Siteminder and
2005 Support Engineer iPlanet LDAP Directory Server. The latter
involved working with a 50,000 entry directory
for all of utc.com including architectural,
application/directory integration issues.
Perform administration operations listed below:
- Creation of ACIs, attributes, replication,
agreements, and indices
- Rebuild dbm database
- Resolve complex server issues such as
performance, break-fix for Siteminder and
Netegrity servers.
- Create Netegrity policies
- Install policy servers, form servers and web

Hallett German Page 1 11/26/2010


GTE Telops – Messaging/Directory Engineer &
1995-1999 Lead
Messaging/Directory Enterprise
Architect
Simultaneously planned, sold,
communicated, and implemented
GTE’s enterprise directory strategy.
This included both short- and long-
term tasks.
Evangelist of Internet
messaging/directory standards for
GTE.
Evaluated LDAP (Dixie) and Ph
clients.
Conducted an extensive evaluation of
a beta version of Active Directory
Served as program manager for the
deployment of an enterprise directory
estimated to hold 1-10 million
records. This included “white pages”
(contact information), security (login
information and digital certificates)
and network device information. The
directory would save two million
dollars annually in “hard” and “soft”
costs.
GTE Labs – Electronic Messaging Lead.
1987-1995 Desktop support, investigation of
new technologies.
Recent Activities
Hallett German Page 2
agents
Lead in Continuous Improvement Effort to
enhance monitoring, reporting, and performance.
Led team that produced the first ever company-
wide strategy document.
Transformed DNS infrastructure from being
unfunded and filled with problems to a funded
and leading-edge environment. 90% of the
outstanding issues were resolved. This was not
part of my responsibilities but was done to create
a stable directory environment. (Which I was
responsible for.)
Gave ten executive-level presentations to IT and
finance decision makers that resulted in
successfully selling the directory strategy.
Created the first-ever company web page about all
directory efforts. (Still used by Verizon.)
Many of the recommendations have been
incorporated into the final Active Directory
product.
Implemented a “white pages” directory holding
80,000 entries using Banyan’s web-based product
20/20. Microsoft’s Linkage Directory Exchange
and Netscape Directory were also evaluated. This
included preparing Perl scripts to include 20 flat
files (including GTE’s executives). Oversaw web
user interface and system document. Led effort
through implementation including global
communication, change control, and performance
testing. Led the file specification and dir
synchronization effort for a second directory
called “People Pages”.
Created the namespace design for the PKI
metadirectory effort. An important part of this
was evaluating various X.500 and Internet
schemas. The metadirectory used was Syntegra.
End-result was a proactive environment,
clearer roles and responsibilities, a
communicated vision, and a more stable
infrastructure.
Involved with X.500 Pilot using Dec’s X.500
server.
Worked on CC:Mail OSI access to X.500 server.
11/26/2010
 Goal # 1: To expand my directory knowledge:
I spend up to 20 hours a week reading directory newsletters, attending Webinars/Seminars, reading LDAP
drafts/RFCs, studying current/emerging directory standards and reading recent directory books.

Webinars
A complete list is available. Major topics include Identity & Access Management, Active Directory
(Securing, Best Practices, Windows Server 2003, Group Policy Management, and Migration). Vendors
include Sun, Microsoft, NetIQ and others.

Books - Underway

Directories
Understanding and Deploying LDAP Directory Services by Howes, Smith, and Good (Second Edition)
Active Directory Cookbook and Active Directory by Allen
LDAP System Administration by Carter
LDAP Directories Explained by Arkills
MSCE Directories Server Design by Archer
Active Directory Programming by Oppermann
Databases
Various books on SQL, SQL Server, and Oracle
Network
Building Internet Firewalls with Chapman & Zwicky
TCP/IP Illustrated by Stevens
Teach Yourself Network Troubleshooting in 24 Hours by Feldman

Security
Handbook of Information Security Management by Krause and Tipton
SANS Step by Step Docs
Applied Cryptography by Schneier

Books - Completed
Understanding and Deploying LDAP Directory Services by Howes, Smith, and Good (Second Editions)
Understanding X.500 – The Directory by Chadwick

Standards, Drafts, RFCS. Newsletters

I am on the mailing list for the Liberty Alliance, IETF Groups (LDAPBIS, LDAPEXT, LDUP), Open
Group (including Directories Best Practice Group), Ferris Group, Networld World. DIM Report, Sun Inner
Circle,.

I monitor and read documents from these standards and standards bodies:
DTMF (DEN, WBEM), ITU (X.500), IETF (Shibboleth and other efforts), Liberty Alliance, Oasis (DSML,
SAML, SPML, UDDI, WSRP), Liberty Alliance, SMBmeta, WfMC (Workflow Standards), WS Standards,
and more!

Also frequently review Mindcraft’s LDAP benchmarks, and Open Groups LDAP Server Certification
results.

Vendor Documentation
I update and frequently review product manuals from the following network identity and web services
vendors: Critical Path (Directory, Meta-Directory), Microsoft (Active Directory, AD/AM, MMS), IBM
(Directory), Netegrity (Identityminder, Siteminder), Novell (eDirectory), Oblix (NetPoint Access System.
CoreId), OpenLDAP, Sun (Directory, Identity, Meta-Directory)

Hallett German Page 3 11/26/2010

Training - Currently
Netg Working with Perl and Oracle
Implementing and Administering Microsoft Windows 2000 Directory Services (2154)

Training – Completed
CBT Systems 8 Courses on Internet Security

Goal #2: To expand my directory experience

To do the following on an ongoing basis:
- Evaluate various APIs/Interfaces to LDAP and other network identity standards.
- Implement various directory scenarios using a variety of directory servers and browsers on home systems.

Major Documents
Directories
1998 Electronic Directory Survey Final GTE-wide survey I conducted on directory usage. Only 8%
Results of the directories were tied to other directories.
Active Directory/Windows 2000 Proof of Active Directory Test Plan
Concept
Enterprise Directory Requirements First pass at GTE’s Enterprise Directory Requirements
GTE Enterprise Directory Workplan Short and long-term projects. This was done semi-annually.
Step 2 Business Case Business Case for directory projects. (Various drafts exist.)
Directory Migration Strawman I researched even before Active Directory was out, the
guidelines for a successful migration. These guidelines are
common knowledge today.
CrossNodes Articles Go In-Depth With LDAP and Novell's eDirectory (2002)
Practical Project Management - Managing smaller projects
in small companies effectively and efficiently (2002)
Practical Project Management - Managing smaller projects
in small companies effectively and efficiently
Part 2: Five steps to a successful IT project (2002)
Practical Project Management - Managing smaller projects
in small companies effectively and efficiently
Part 3: Project Management Odds and Ends (2002)
The Message Is the Medium: Selecting a Mail System
(2002)
AMP: Novell Pumps up the Volume on Open Source
(2003)
Active Directory: Microsoft’s System Information
Repository (2003)
NT Domain to Active Directory - Time to upgrade? (2003)
Practically Painless NT to Windows Server 2003 Migration:
Preparation and Planning (2003)
Practically Painless NT to Windows Server 2003 Migration:
Implementation and Beyond (2003)
LDAP Search Functions: A Gateway to Company Data
(2004)
LDAP Search Part 2: Unmasking the Search Filter (2004)
LDAP Search Part 3: Web Browsers, E-mail (2004)
LDAP Search Part 4: LDAP Browsers (2004)
LDAP Search Part 5: LDAP Browsers (2004)
LDAP Search Part 6: LDAP Browsers (2004)
Newsletter Interviews with leading LDAP Browser Developers
LDAP Troubleshooting

Hallett German Page 4 11/26/2010

Hallett German Page 5 11/26/2010