CLM SQL API Overview

The Microsoft® Certificate Lifecycle Manager (CLM) SQL application programming interface (API) was designed to allow organizations to programmatically place requests to CLM for common management functions. Requests placed using the CLM SQL API are written to the External Requests Microsoft SQL Server database table. A Microsoft Windows service then processes the requests from that table on a scheduled basis. After the CLM requests are successfully processed by the Windows service, they are then processed in accordance with the policy parameters identified in the profile template for the type of request.

The CLM SQL API provides the ability for SQL authenticated processes to place requests within CLM. By default, all CLM external API stored procedures can be executed by users in the CLMExternalApi role. When the CLM database is configured, one user, CLMExternal, is created in this role.

The rationale for using a SQL-based API is that it provides an additional layer of abstraction from the CLM internals; API initiated requests are controlled by processes outside of the core application processes.

For example, a developer could write an application that connected to the CLM database using the CLMExternal user (mixed mode authentication on SQL server). This application could indirectly create a CLM enrollment request by calling externalSubmitEnrollRequest. When the CLM service runs, the enrollment request is then processed by CLM.

See Also

Footer image

Send comments about this topic to Microsoft.
© 2007 Microsoft Corporation. All rights reserved.

Community Additions