Getting Credentials

Each request to Universal API requires proper authorization credentials. A required User ID and password is supplied by Travelport. The User ID identifies the email address for the agency or other travel provider, as well as the submitting entity (person or system) associated with the address.

Universal API has multiple data sources (providers), and uses a hierarchical structure for its profile system; therefore, several types of credentials may be needed in a request.

Note: Suppliers, such as air carriers, hotel chains, car rental companies, and other data sources, may require additional credentials to allow Universal API direct access to their systems. These credentials are not included directly in Universal API requests, but are included as part of provisioning a client application in the Travelport Admin Portal.

Requesting Credentials

Requesting access to Travelport systems

A change in the process of how credentials and passwords are distributed when requested for new or existing SOAP XML API (Universal API) Services credentials has been implemented as of March 25th, 2025.

When requesting new Production or Pre-Production, or for additional credentials:

• Your new credentials are delivered from an automated system via a noreply_bizagi@travelport.com encrypted email directly to the designated administrator at your company.

• Your new password is delivered from an automated system via a api.details.receipts@travelport.com encrypted email directly to the designated administrator at your company.

For password reset for existing credentials:

• The new password for existing credentials is delivered from an automated system via a api.details.receipts@travelport.com encrypted email, sent directly to the designated administrator at your company.

• In some cases, credentials were created outside of the new system, e.g., created many years ago. For those infrequent scenarios, if a password reset is needed, it is delivered manually via an encrypted email sent directly to the designated administrator at your company.

For Admin Portal, or for additional credentials, an encrypted email is sent directly to the designated administrator at your company from noreply_bizagi@travelport.com.

In progress requests (started prior to the implementation of this new process):

• For credential requests, the delivery of the credentials are delivered manually, as it was prior to March 25th 2025, which is from an encrypted email sent directly to the designated administrator at your company.

• The password for the additional production credentials are delivered separately from an automated system via api.details.receipts@travelport.com encrypted email directly to the designated administrator at your company.

Important things to know about the credential process

• Travelport personnel, including API Support, will have no knowledge of the password and should not be contacted via a case ticket, or by any other means, for the purpose of finding a lost or forgotten password. A new password must be requested through your Travelport Account Manager.

• Only one email contact can be stored in the automated system. It is recommended that an administrator is nominated at your company to receive the credential and password notifications.

• Once the password email has been sent it cannot be resent. A new password will need to be requested.

• Accessing the username or password notification request via the SecureMail Portal will continue to work as it does today which, as a reminder, will guide the recipient on how to access the message via the SecureMail Portal.

• Once registered, the SecureMail Portal credentials can be used to view the password notification message and future encrypted messages.

• Messages in the SecureMail Portal will automatically expire 15 days after being sent.

• The SecureMail Portal allows users the option to reply, or reply all, when viewing the encrypted email. Since the password is being delivered via an automated system, this option should not be used. The api.details.receipts@travelport.com and noreply_bizagi@travelport.com email accounts will not be monitored for replies.

• If a new password is expected but the secure message wasn’t received, first confirm the message didn’t go to a spam or deleted folder, then contact your Travelport Account Manager to verify the email on file.

• See DA 1030 for more details.

Requesting 30-Day and Pre-Prod access

Travelport provides the following options for new and existing customers to access Universal API:

1. During a 30-Day Trial period, prospective customers are allowed access to Universal API's Pre-Production system via the Universal API Sandbox, which provides the capability to send and receive XML messages via Travelport’s Universal API Web Services.

Important! Please note that Sandbox credentials are intended for evaluation purposes only. You must not conduct any development without signing a contract.

2. Pre-Production credentials are available after finalization of a contract with Travelport. This can occur at any time, regardless of whether you choose to test Universal API in the Sandbox. When your contract is finalized, you:

   • Are provided with unique credentials to access Universal API's Pre-Production system.

   • Begin to work with Travelport's API Support and Development teams to complete the Certification process for your Universal API client application.

3. After your client application has received Universal API certification, you are provided with access to the Universal API Production system.

Notes:

• You must use your credentials in both Production and Copy at least once every 90 days or they will expire.

• A PROD refresh can delete the COPY log, so in that event, ensure you log into both Copy and Production again.

Sample of Credentials

See Sample Request and Response for a sample of a credentialed transaction with Universal API.