On This Page
REST API
Interpreting the Check Enrollment Response
It is important to check the status values in the response. These possible statuses are
the same for all card types.
PENDING_AUTHENTICATION
PENDING_AUTHENTICATION
- VERes enrolled =Y
- PARes status =C
The account number is enrolled in payer authentication. The cardholder is challenged
to authenticate. Authenticate the cardholder before authorizing the transaction.
AUTHENTICATION_SUCCESSFUL
AUTHENTICATION_SUCCESSFUL
Frictionless authentication was
successful/Stepup authentication is not required
- VERes enrolled =Y
- PARes status =Y
The account is enrolled in payer authentication, and the cardholder was successfully
authenticated. If enrollment and authorization are made in separate calls, the payer
authentication data must be included in the authorization request to receive
liability shift protection.
Attempts Stand-in Frictionless Authentication
- VERes enrolled =Y
- PARes status =A
This status indicates that the account is enrolled in payer authentication, but the issuer does
not support the program. This is called
stand-in authentication
. If check
enrollment and authorization are made in separate calls, the payer authentication
data must be included in the authorization request to receive liability shift
protection.Card not enrolled
- VERes enrolled =BorU
This status indicates that the account is not eligible for a payer authentication program,
authentication was bypassed, or an error or timeout occurred. If enrollment and
authorization are made in separate calls, you can request authorization, but there
is no liability shift protection.
Unavailable Frictionless Authentication
- VERes enrolled =Y
- PARes status =U
This status indicates that the account is enrolled in payer authentication, but authentication is
currently unavailable. The merchant can attempt to retry authentication or proceed
with authorization. If enrollment and authorization are made in separate calls, you
can continue and request authorization, but there is no liability shift protection.
Without authentication of the customer, the merchant remains liable for any
chargeback.
AUTHENTICATION_FAILED
AUTHENTICATION_FAILED
Failed Frictionless Authentication
- VERes enrolled =Y
- PARes status =N
Indicates that the account is enrolled in payer authentication but frictionless
authentication failed. Merchants cannot submit this transaction for authorization.
Instead ask for another form of payment.
Rejected Frictionless Authentication
- VERes enrolled =Y
- PARes status =R
Indicates that the account is enrolled in payer authentication but frictionless
authentication was rejected by the issuing bank without requiring a challenge.
Merchants cannot submit this transaction for authorization. Instead ask for another
form of payment.
When
an AUTHENTICATION_FAILED
status occurs, the merchant should display a message
from the card issuer to the cardholder using the consumerAuthenticationInformation.cardholderMessage
field. The text
of the message is provided by the ACS/issuer during a frictionless or decoupled
transaction to convey information to the cardholder. An example message might be,
“Additional authentication is needed for this transaction, contact (issuer name) at
xxx-xxx-xxxx.” An example of the entry that would appear in the log for such an
occurrence is: "cardholderInfo":"You cannot complete this purchase right now. For
help, call CommBank at (111) 555-2222"