This command is only used with Smart ID Desktop App. If "driver", or "smartcardid", or both parameters are specified, a profile-less operation will be performed, for example, adminkey change, PIN reset, PUK change, or PIN change for a selected token not associated with an existing Smart ID Desktop App profile. However, if only the parameters "profileid" and "operation" are specified, the chosen operation is executed on a token associated with an existing profile within the app. | Parameter | Description |
|---|
"driver" | Identifies the token in case of profile PIN reset. The value is json with two fields:
- Name
Accepted values: "yubi", "cardos", "any", "c2300", "gemalto", "vsc"
- Type
Accepted values: "minidriver" or "pkcs11"
| "operation" | If not specified, PIN reset is performed. Accepted values: - "pinreset", "adminkeychange", "pinchange","pukchange"
| “smartcardid” | Unique minidriver-based token identifier. This parameter is used to identify the token in case of a profile-less operation. (To identify the token, it is enough to specify one of the fields “smartcardid” or “driver”). | "profileid" | Identifies the profile within the Smart Id Desktop App, on which the operation is executed. (If the values for "smartcardid" and "profileid" identified with the profile are different, the value for "smartcardid" should be used.) |
| Parameter | Description |
|---|
“nonce” | This value is generated by Smart ID Desktop App and sent to the server to be encrypted by adminkey, and returned using the Epin command as proof of adminkey possession. | "transportedkey" | Onetime RSA key used for encoding of the new adminkey, which allows for its secure transmission. |
| 