# Timothy Hoag (TJ Hoag) > Personal site of Timothy J. Hoag - also known as TJ Hoag or Tim Hoag - an IAM & IT Operations Specialist who resolves 200+ monthly identity and access incidents across 30+ higher education institutions. Specialties: Active Directory, Microsoft Entra ID, Okta, ServiceNow, hybrid identity, MFA troubleshooting, and help desk operations under HIPAA and FERPA compliance. Timothy Hoag is open to remote IAM and IT operations roles. He writes first-person troubleshooting stories and step-by-step lab guides drawn from real tickets and his own home lab (a Docker host running 31 containers plus Windows Server VMs for Active Directory and hybrid identity testing). ## Key pages - [Home](https://timothyhoag.com/): Who Timothy Hoag is, headline metrics (200+ monthly incidents, 96.6% first-call resolution, 4.33-5.0 CSAT), and contact links - [Resume](https://timothyhoag.com/resume.html): Full work history, skills, certifications, and education for Timothy Hoag (TJ Hoag) - [About](https://timothyhoag.com/about.html): Background, LinkedIn recommendations, volunteer work, and career story - [Blog](https://timothyhoag.com/blog.html): Posts on IAM, Active Directory, hybrid identity, MFA lockouts, and help desk troubleshooting - [Labs](https://timothyhoag.com/labs.html): Step-by-step home lab walkthroughs covering Active Directory, Entra ID, Conditional Access, and Docker - [Book a call](https://timothyhoag.com/call.html): Schedule a 15-45 minute call about IAM, IT operations, or open roles ## Notable blog posts - [Shared Accounts: IAM Compliance Risks](https://timothyhoag.com/blog/posts/shared-accounts-compliance-risk.html): Why shared accounts break identity verification, audit trails, and compliance - [OAuth Token Forbidden: IAM Lessons from SEO](https://timothyhoag.com/blog/posts/valid-token-forbidden-anyway-iam-lessons-from-an-seo-build.html): Valid tokens, 403 errors, scopes, and least privilege - [Password Reset Failing? Check Credentials](https://timothyhoag.com/blog/posts/why-password-reset-keeps-failing-credential-manager.html): Windows Credential Manager replaying old passwords after a reset - [Hybrid Identity Lockout on the Road](https://timothyhoag.com/blog/posts/hybrid-identity-airport-lockout.html): A travel laptop that missed its Active Directory password sync - [New Phone MFA Lockout: The Wi-Fi Loop](https://timothyhoag.com/blog/posts/mfa-chicken-and-egg-new-phone-lockout.html): The MFA chicken-and-egg problem on campus Wi-Fi - [The Guest Account Nobody Remembered](https://timothyhoag.com/blog/posts/guest-account-nobody-remembered.html): Why guest access needs ownership and cleanup - [FERPA Help Desk Verification](https://timothyhoag.com/blog/posts/ferpa-help-desk-verification.html): What a support agent can and cannot confirm on a call - [Healthcare vs Higher-Ed IT Support](https://timothyhoag.com/blog/posts/healthcare-vs-higher-ed-it-support.html): The same identity stack under HIPAA versus FERPA - [How I Organized 31 Docker Containers](https://timothyhoag.com/blog/posts/homelab-docker-infrastructure.html): Home lab stacks, secrets management, and monitoring ## Contact and profiles - Email: timothy-1992@live.com - LinkedIn: https://www.linkedin.com/in/tjhoag/ - GitHub: https://github.com/TimothyHoag - RSS feed: https://timothyhoag.com/feed.xml