1. A computer implemented method for reducing overhead associated with password policy enforcement operations in a distributed directory using a proxy server, the computer implemented method comprising:
by a proxy server, establishing connections to backend directory servers, wherein establishing the connections to the backend directory servers comprises:
requesting a portion of a password policy for a client from each of the backend directory servers, wherein the password policy is a set of security requirements for a password of a user of the client; and
generating, by the proxy server, an effective password policy for the client using each portion of the password policy;
while providing a subsequent request from the client to one of the backend directory server, wherein the client is a bound client to the proxy server, the proxy server determining whether a password policy check is required to be performed at the backend directory server; and
responsive to determining that the password policy check is not required to be performed at the backend directory server, sending the client request together with a skip password policy control to the backend directory server, wherein the skip password policy control informs the backend directory server to skip the password policy check on the client request.
2. The computer implemented method of claim 1, wherein the password policy check is required to be performed at the backend directory server when a cached password policy state stored for a previous request of the client indicates that the request is not allowed.
3. The computer implemented method of claim 1, wherein the skip password policy enforcement control comprises a distinguished name of the client for which policy enforcement is to be skipped.
4. The computer implemented method of claim 1, wherein the skip password policy control is honored by the backend directory server only when the skip password policy enforcement control is sent by an administrative user.
5. The computer implemented method of claim 1, wherein the determination whether the password policy check is required to be performed at the backend directory server is performed according to a type of the request from the client.
6. The computer implemented method of claim 5, wherein the type of the request in which the password policy check is required on the backend directory server comprises any operation requiring password policy.
7. The computer implemented method of claim 6, wherein the operation requiring the password policy includes bind operations, modify operations on a user password, add operations for a user entry containing a password, and pre and post bind password policy extended operations used for external binds in the distributed directory.
8. The computer implemented method of claim 5, wherein the type of request in which the password policy check is not required on the backend directory server includes a password search, a modify operation on a non-password attribute, or a delete operation.
9. The computer implemented method of claim 1, further comprising:
responsive to receiving the request from the client, performing a bind operation to bind the client to the proxy server, wherein performing the bind operation includes determining if an account of the client is locked.
10. The computer implemented method of claim 1, wherein determining whether the password policy check is required to be performed at the backend directory server comprises:
determining whether the request is an allowed operation according to the effective password policy for the client; and
responsive to a determination that the request is an allowed operation according to the effective password policy for the client, determining that the password policy check is not required to be performed at the backend directory servers.
11. A computer program product for reducing overhead associated with password policy enforcement operations in a distributed directory using a proxy server, the computer program product comprising:
a non-transitory computer usable medium having computer usable program code tangibly embodied thereon, the computer usable program code comprising:
computer usable program code for establishing, by a proxy server, connections to backend directory servers, wherein the computer usable program code for establishing the connections to the backend directory servers comprises:
computer usable program code for requesting a portion of a password policy for a client from each of the backend directory servers, wherein the password policy is a set of security requirements for a password of a user of the client; and
computer usable program code for generating, by the proxy server, an effective password policy for the client using each portion of the password policy;
computer usable program code for determining, by the proxy server, while providing a subsequent request from the client to one of the backend directory server, wherein the client is a bound client to the proxy server, whether a password policy check is required to be performed at the backend directory server; and
computer usable program code for sending the client request together with a skip password policy control to the backend directory server in response to determining that the password policy check is not required to be performed at the backend directory server, wherein the skip password policy control informs the backend directory server to skip the password policy check on the client request.
12. The computer program product of claim 11, wherein the password policy check is required to be performed at the backend directory server when a cached password policy state stored for a previous request of the client indicates that the request is not allowed.
13. The computer program product of claim 11, wherein the skip password policy control comprises a distinguished name of the client for which policy enforcement is to be skipped.
14. The computer program product of claim 11, wherein the skip password policy control is honored by the backend directory server only when the skip password policy enforcement control is sent by an administrative user.
15. The computer program product of claim 11, wherein the determination whether the password policy check is required to be performed at the backend directory server is performed according to a type of the request from the client.
16. The computer program product of claim 15, wherein the type of request in which the password policy check is required on the backend directory server comprises any operation requiring password policy.
17. The computer program product of claim 11, wherein the computer usable program code is stored in the non-transitory computer usable medium in a data processing system, and wherein the computer usable program code is downloaded over a network from a remote data processing system.
18. The computer program product of claim 11, wherein the computer usable program code is stored in the non-transitory computer usable medium in a server data processing system, and wherein the computer usable program code is downloaded over a network from a remote data processing system for use in a computer readable storage medium with the remote system.
19. A data processing system for reducing overhead associated with password policy enforcement operations a distributed directory using a proxy server, the data processing system comprising:
a bus;
a storage device connected to the bus, wherein the storage device contains computer usable code;
at least one managed device connected to the bus;
a communications unit connected to the bus; and
a processing unit connected to the bus, wherein the processing unit executes the computer usable code to establish, by a proxy server, connections to backend directory servers; determine, by a proxy server, while providing a subsequent request from a client to one of the backend directory server, wherein the client is a bound client to the proxy server, whether a password policy check is required to be performed at the backend directory server; and sending the client request together with a skip password policy control to the backend directory server in response to determining that the password policy check is not required to be performed at the backend directory server, wherein the skip password policy control informs the backend directory server to skip the password policy check on the client request, wherein the processing unit executing the computer usable code to establish the connections to the backend directory servers comprises the processing unit executing the computer usable code to request a portion of a password policy for the client from each of the backend directory servers, wherein the password policy is a set of security requirements for a password of a user of the client; and generating, by the proxy server, an effective password policy for the client using each portion of the password policy.
The claims below are in addition to those above.
All refrences to claim(s) which appear below refer to the numbering after this setence.
1. Welding head for connecting weld members (301) by means of resistance welding, having an infeed shaft (2, 220) and an electrode (309) movable via a cylinder (7, 221), characterized in that a sensor (9, 310) is arranged between a piston rod (7a, 222) of an infeed cylinder (7, 221) and a spring (17) or a readjusting unit (308), respectively.
2. Welding head according to claim 1, characterized in that the sensor (9, 310) is designed as a pressure sensor for the force measurement.
3. Welding head according to either of the preceding claims, characterized in that the sensor (9, 310) is arranged in a housing (1) of the welding head (20) or in the readjusting unit (17), respectively.
4. Welding head according to one of the preceding claims, characterized in that the housing (1) at least partly accommodates the shaft (2) and the plunger (14).
5. Welding head according to one of the preceding claims, characterized in that the sensor (9) is arranged in the shaft (2).
6. Welding head according to one of the preceding claims, characterized in that the sensor (9) is firmly connected to the shaft (2).
7. Welding head according to one of the preceding claims, characterized in that the shaft (2) is designed as a readjusting-spring infeed shaft.
8. Welding head according to one of the preceding claims, characterized in that the sensor (9) is clamped in place and calibrated between contact means (3, 5) by means of a cap screw (100) and a centering bush (101).
9. Welding head according to one of the preceding claims, characterized in that the contact means are designed as turned parts (3, 5).
10. Welding head according to one of the preceding claims, characterized in that the piston rod (7a) of the cylinder (7) is coupled to the sensor (9) or the shaft (2) via a C-guide (6, 5).
11. Welding head (300), in particular according to claim 1, for connecting weld members (301) by means of resistance welding, welding-gun elements (302, 303, 304) being mounted in a longitudinally displaceable manner relative to one another on longitudinally displaceable guide slides (305), characterized in that, in order to avoid different torques on a guide means (306) which are caused by forces acting on the welding electrodes (309), the welding-gun elements (302, 303, 304) are mounted on a common shaft (307).
12. Welding head according to claim 11, characterized in that the shaft (307) has a circular cross section.
13. Welding head according to either of claims 11 and 12, characterized in that the guide slides (305) can travel relative to one another toward the weld members (301) virtually free of force.
14. Welding head according to one of claims 11 to 13, characterized in that a separate readjusting unit (308) which corrects the welding electrodes (309) during the welding operation is assigned to at least one welding-gun element (302, 303, 304).
15. Welding head according to claim 14, characterized in that the readjusting unit (308) contains a force-measuring device (310).
16. Welding head according to one of claims 11 to 15, characterized in that the welding-gun elements (302, 303, 304) are mounted in a floating manner relative to one another, it being possible, by means of a drive-cylinder unit (311), for the first welding-gun element (303) to be moved by means of the piston rod (313) and for the second welding-gun element (304) to be moved by means of the cylinder housing (314) of the drive-cylinder unit (311) or by means of a drive cylinder (312).