CA Strong Authentication Web Services Guide › Performing Credential Operations › Downloading Credentials

Downloading Credentials

To download the credential to your device, you need to use the DownloadCredential operation. This section walks you through:

• Preparing the Request Message
• Invoking the Web Service
• Interpreting the Response Message

Note: This operation is valid only for ArcotID PKI, ArcotID OTP-OATH, and ArcotID OTP-EMV credentials.

Preparing the Request Message

The DownloadCredentialRequestMessage is used to download the credentials. The input elements for downloading the credentials are same as that explained in the "Creating Credentials" section. For more information about each element, refer to the tables listed in the "Creating Credentials" section.

Invoking the Web Service

To delete the credentials of a user:

1. (Optional) Include the authentication and authorization details in the SOAP header or in the additionalInput element of the DownloadCredential operation. See chapter, "Managing Web Services Security" for more information on these details.
2. Use the userName and orgName elements to fetch the details of the user whose credential you want to download.
3. Depending on the type of credential you want to delete, use the respective <CredentialName>Input element to obtain the credential information.

   The input required for each credential is different. For example, password is needed for ArcotID PKI.

4. (Optional) If you are implementing a plug-in, then invoke the additionalInput element type to fill the additional input.

   This type provides the additional information that is set as a name-value pair.

5. Use DownloadCredentialRequestMessage and construct the input message by using the details obtained in preceding steps.
6. Invoke the DownloadCredential operation of the ArcotWebFortIssuanceSvc service to delete the credential.

   This operation returns an instance of the DownloadCredentialResponseMessage that includes the credentials and the transaction details.

Interpreting the Response Message

For successful transactions, the response message, DownloadCredentialResponseMessage returns the elements explained in the table containing information about the elements that the response message, CreateCredentialResponseMessage, returns. These elements are included in the SOAP body. If there are any errors, then the Fault response is included in the SOAP body. See appendix, "Error Codes" for more information on the SOAP error messages.