Connecting to Bank Wizard

This step must be performed before you can access any Bank Wizard service. The procedure you must follow is the same for every Bank Wizard service.

Flow showing WASP authentication

Do you have a WASP token?

Before you can use Bank Wizard, you must be authenticated using the WASP authentication service. To do this, you need to supply a valid WASP security token. You can use the same token regardless of the Bank Wizard service you are calling. Therefore, typically you only need to request a token at the start of the working day.

Connect to WASP to request a token

If you do not have a valid token, you must contact WASP for authentication, attaching the WASP certificate containing the relevant credentials. This is supplied by Experian and is used to authenticate and identify you with the WASP service.

You will need two certificates, one for the live service and one for the test (UAT) service. Make sure you use the correct certificate for the service you are accessing.

Once you have been authenticated, WASP will supply you with a security token that you can then use to authenticate yourself with Bank Wizard. You can use each token for multiple calls, so make sure you retain the token.

When requesting a WASP token, if your certificate has expired or is deleted, an HTTP 200 error and the message "Error issuing authentication token" are returned. Contact Experian to get a new certificate.

Accessing Bank Wizard passing the WASP token

To access Bank Wizard you navigate to the URL supplied to you by Experian. Your request must include the security token returned by the WASP service. This is used by the Enforcer for authentication.

Was authentication successful?

The security tokens have limited lifetimes and can expire if the:

If the token has expired or is invalid, the HTTP status code 401 is returned. Therefore to test for token expiry, check for this status code.

ClosedExample code snippet

catch(WebException wex)

{

httpWebResponse res = (httpWebResponse) wex.Response;

if (res.StatusCode == HttpStatusCode.Unauthorized)

Once you have been successfully authenticated, Enforcer provides access to Bank Wizard so that you can perform validation or verification.

ClosedExample code snippet

hostedService.RequestSoapContext.Security.Tokens.Add(newWASPToken(token));

hostedService.RequestSoapContext.Security.MustUnderstand = false;

Next step:

Bank account checking: Getting the input data

Card checking: Getting the card data

Related Topics Link IconSee also

For more information about WASP, see the Experian WASP documentation