Common Setup Questions

How do I use the API reference page?

This 5-minute tutorial video shows you how to use the API reference.

What can I do in the sandbox environment?

You can test your integration in the sandbox before you go live. Sandbox transactions are for testing purposes only. You cannot perform load or stress testing in the sandbox, and simulated gateways and processors are not available.

What is a shared secret key?

A shared secret key is a Base64-encoded transaction key string. You authenticate to the API using this key, which is unique to your account. CyberSource uses it to connect your website or API integration to the CyberSource Payment Gateway for transaction processing. It is different from your login credentials for the Merchant Portal.

How do I obtain a Shared Secret key for my sandbox account?

If you do not have a Merchant Portal account, sign-up. Use your Merchant Portal account to create a shared secret key

What is a Certificate or P12 Key?

A certificate is one way to authenticate to APIs. The certificate contains public and private keys unique to your account. CyberSource generates the public key. You generate the private key from a Java Network Launch Protocol (JNLP) file provided by CyberSource.

Note: Certificate authentication uses a PKCS12 key file with the .p12 extension to digitally sign your API request message before transmitting it to CyberSource.

How do I obtain a .p12 keys for my sandbox account?

If you do not have a Merchant Portal account, sign-up. Use your Merchant Portal account to create a shared secret key

Can I perform load or stress tests in the sandbox? 

The sandbox is for integration tests only and is not provisioned for load or stress tests. CyberSource might suspend your sandbox account if we observe unusually high transaction volumes.