Role: Microsoft Active Directory Admin_L3
Band: B3 6-12 Yrs
CTC: 17 LPA
Notice period: Immediate to 30 days -Please don’t share 60 days,90 days or bench profiles.
Key Responsibilities:
Active Directory Job Responsibility:
Lead administration of AD DS across multi-domain/multi-forest environments.
Design and manage AD structure including Domain/forest trust relationships, FSMO roles, Sites and replication
strategy & Schema extensions and upgrades
Hands on experience and strong troubleshooting skill in AD replication, Sites, KCC, etc., experience in planning
and implementation of Active Directory Replication.
Manage GPO design, optimization, hardening, and change lifecycle.
Perform advanced troubleshooting of authentication, DNS-integrated issues, replication delays, and trust failures.
Ensure enforcement of Role-Based Access Control (RBAC), Least Privilege, and Privileged Access Management
(PAM).
Manage integration with: Azure AD / Entra ID, SSO / MFA solutions, Federation Services (ADFS) / SAML / OAuth
Implement and maintain security benchmark as per project standard /CIS.
Monitor and respond to AD-related security incidents such as Kerberos abuse, ticket manipulation, AD privilege
escalation attempts, Audit trail gaps and anomalies
Support audits and ensure enforcement of security baselines, password policies, account policies and fine grain
policies,
Must have worked on deleted objects restoration.
Must have hands on experience on getting AD reports like, active users and other AD reports.
Basic understanding of ADCS, Root CA, subordinate CAs, creation of CSRs, knowledge on CRL
Must have knowledge on all the Ports.
Sound knowledge on NTP servers and troubleshooting.
Strong Understanding of ADSI edit concepts.
Manage AD Forest recovery plans and periodic disaster recovery drills as per ISO compliance.
Ensure health of system state backups, Azure AD Connect sync validations, and replication integrity.
Knowledge on ADFS is an added advantage.
Enhance customer satisfaction by responding to all customer filed issues specific to AD & Windows and providing
relief either through self or by driving visibility of the issues upstream to ensure they get fixed.
Improve product supportability and serviceability by actively participating in new design development to provide
feedback to drive increased stability of AD and Windows platforms for enhanced customer satisfaction.
An ability to learn new technologies quickly good time management skills with strong documentation skills.
Good communication skills both written and verbal.
AD/ Exchange L3 Job Description
Sensitivity: Internal & Restricted
Expert-level administration in Active Directory DS, Group Policy, DNS and DHCP (AD Integrated), Kerberos
authentication
Strong Windows Server management understanding.
Solid PowerShell automation capability for IAM operations.
Knowledge of AD Connect, Entra Connect sync, and hybrid identity models.
Strong communication and documentation skills.
Ability to lead technical bridges during major outages.
Mentoring and guidance to L1/L2 teams
…