Change Server PIN

  • Published on Jul 7, 2025
  • 1 minute(s) read
Prev Next

This operation requests OneSpan Authentication Server to change the server PIN of a specified user. Such a request always has to be confirmed with a Response-Only one-time password (OTP), specified as credential attribute in the SOAP request.

To execute this operation, the registered client application should send an authUser SOAP command to OneSpan Authentication Server. The authUser command should, at a minimum, specify the following credential field attributes:

  • CREDFLD_USERID
  • CREDFLD_COMPONENT_TYPE. Indicates the client application component type.
  • CREDFLD_PASSWORD_FORMAT
  • CREDFLD_CURRENT_PIN
  • New PIN specified either via the CREDFLD_PASSWORD or the CREDFLD_NEW_PIN credential attribute depending on the chosen password format.
  • New PIN confirmation specified either via the CREDFLD_PASSWORD or the CREDFLD_CONFIRM_NEW_PIN credential attribute depending on the chosen password format.
  • OTP specified either via the CREDFLD_PASSWORD or the CREDFLD_DP_RESPONSE credential attribute, depending on the chosen password format.

A client application with component type SOAP Auth Client will typically send the following SOAP command to request a server PIN change for user test1:

<soapenv:Envelope
  xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/"
  xmlns:xsd="http://www.w3.org/2001/XMLSchema"
  xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
  xmlns:aut="http://www.vasco.com/IdentikeyServer/IdentikeyTypes/Authentication">
  <!-- ... Additional namespace declarations -->
  <soapenv:Header/>
  <soapenv:Body>
    <aut:authUser>
      <credentialAttributeSet>
        <attributes>
          <value xsi:type="xsd:string">SOAP Auth Client</value>
          <attributeID>CREDFLD_COMPONENT_TYPE</attributeID>
        </attributes>
        <attributes>
          <value xsi:type="xsd:string">test1</value>
          <attributeID>CREDFLD_USERID</attributeID>
        </attributes>
        <attributes>
          <value xsi:type="xsd:unsignedInt">4</value>
          <attributeID>CREDFLD_PASSWORD_FORMAT</attributeID>
        </attributes>
        <attributes>
          <value xsi:type="xsd:string">test1</value>
          <attributeID>CREDFLD_DP_RESPONSE</attributeID>
        </attributes>
        <attributes>
          <value xsi:type="xsd:string">1234</value>
          <attributeID>CREDFLD_NEW_PIN</attributeID>
        </attributes>
        <attributes>
          <value xsi:type="xsd:string">1234</value>
          <attributeID>CREDFLD_CONFIRM_NEW_PIN</attributeID>
        </attributes>
      </credentialAttributeSet>
    </aut:authUser>
  </soapenv:Body>
</soapenv:Envelope>