The L3 Active Directory and Microsoft Entra ID Support Engineer will be responsible for the advanced management, maintenance, and troubleshooting of the Active Directory (AD) and Azure AD environments. This role includes overseeing AD replication, DNS, DHCP, GPO management, and ensuring the security and health of the AD infrastructure. The engineer will also handle complex issues related to Azure AD, including user and group management, application management, and identity management. Key Responsibilities: Active Directory – Administration: Managing and maintaining the Active Directory environment. Monitoring disk space for AD Servers. Ensuring AD Server & Services uptime. Monitoring and troubleshooting Active Directory replication. Auditing privileged accounts in Active Directory. User Management and Administration (including creating admin and service accounts, and delegating permissions). Group Management and Administration (creating, modifying, deleting groups, and delegating permissions). GPO Management including policy creation, modification, deletion, replication, and troubleshooting. Managing Active Directory Permissions. Performing domain controller vulnerability and security patching. Monitoring AD Health Services. Backing up and restoring Active Directory objects and domain controllers. Creating and managing tickets to the OEM in support of the service. Active Directory - DNS Administration: Creating, updating, and deleting DNS entries (including A, CNAME, SRV, and PTR records) in internal (private) Customer DNS zones. Creating and managing tickets to the OEM in support of the service. Active Directory - DHCP Administration: Configuring DHCP scope options (Router, DNS servers, etc.). Configuring Reservations and Exclusions in DHCP scopes. Troubleshooting DHCP client issues. Creating and managing tickets to the OEM in support of the service. Azure AD – Administration: Managing Azure AD user accounts (creating, modifying users - including guests, resetting user passwords). Assigning or removing user roles. Adding, removing, and updating product license assignments on users and groups. Creating or deleting Azure AD groups, adding and removing members, managing group settings, viewing group activity, and audit reports. Managing Azure applications (creating and managing enterprise applications, application registrations, and giving consent for delegated/application permissions). Monitoring Azure service health. Creating and managing tickets to the OEM in support of the service. Azure AD - Identity Management: Configuring and managing settings in Azure conditional access policies. Managing MFA methods and settings per user. Qualifications: Proven experience in managing and supporting Active Directory and Azure AD environments. Strong knowledge of AD replication, DNS, DHCP, and GPO management. Experience with Azure AD user and group management, application management, and identity management. Excellent troubleshooting and problem-solving skills. Strong communication and documentation skills. Ability to manage and prioritize multiple tasks and projects. Preferred Skills: Certifications in Microsoft technologies related to Active Directory and Azure AD. Experience with conditional access policies and MFA management. Knowledge of security best practices for AD and Azure ADExperience: 9-12 years Work location: Chennai
Job Title
Active Directory L3 support engineer