Enabling Mutual Authentication

OAuth uses mutual authentication
to provide an additional layer of security. Mutual authentication occurs when two parties authenticate each other at the same time. A server-to-server certificate from a certificate authority (CA) must be used for mutual authentication. Before you can register your application, you must create one of these supported DigitCert CAs and enable mutual authentication:

DigiCert: DigiCert Assured ID Root G2
DigiCert Global G2 TLS RSA SHA256 2020 CA1
DigiCert High Assurance EV Root CA
DigiCert SHA2 Extended Validation Server CA; Contact support to obtain a certificate from DigiCert:
https://www.digicert.com/contact-us

Follow these steps to enable mutual authentication:

Create a new key pair and Certificate Signing Request, using a server-to-server certificate from your CA.

Submit the Certificate Signing Request (CSR) to support for your CA and provide the required details.

Your CA verifies your request, and if they approve it, they issue the certificate in an email to the technical contact for your account.

Give the certificate's common name to your Cybersource technical contact. Your technical contact adds it to the Cybersource whitelist.

IMPORTANT

Your certificate's common name can only contain up to 40 characters.

To test your own application, you can use the certificate that is available with the Cybersource sample application code, hosted on Github.