CyberSource Secure Acceptance SOP
Information on CyberSource Secure Acceptance Silent Order POST can be found here: https://www.cybersource.com/developers/learn/integration_methods/secure_acceptance_sop/
CyberSource Secure Acceptance SOP uses Squirrelcart's "Store Hosted / Browser to Gateway" connection method.
With this service, the customer submits their card information directly to the gateway using their browser. CyberSource handles the request and instantly transfers your customer back to your site. The customer will have the impression that they have never left your website.
 |
Please note: CyberSource may return a status of REVIEW for a transaction. This status means that you must review the transaction in CyberSource's control panel for it to be accepted. In order for transactions with this status to not impact receiving an order, Squirrelcart will complete an order that has this status, and flag it with a Payment Pending order status. You should always check the information in CyberSource before shipping goods. |
- SSL certificate
- CyberSource account, with Secure Acceptance enabled
- JavaScript must be working properly in your store
- Open Notepad, Wordpad, MS Word, or any other text editor. This will be used to paste some of the credentials created in the steps below.
- Login to the CyberSource Business Center using your "Merchant Admin Account":
https://ebc.cybersource.com
If you wish to use a test account, use this URL instead:
https://ebctest.cybersource.com
- In the left navigation panel, click Tools & Settings > Secure Acceptance > Profiles
 |
If you don't see this option in your CyberSource control panel, it may be because you are not logged in with the primary "Merchant Admin Account". If you are certain that you are using the correct account and do not see this menu option, you'll need to contact CyberSource support to get Secure Acceptance added to your account before continuing. |
- The new profile form should open automatically. Enter a name in the Name field.
- Enter a value in the Profile ID. Save this value for reference later, using the editor you opened in #1 above.
- Set Integration Method to Silent Order Post
- Enter your Company Name
- Click Create to save your changes
- Click Payment Settings
- Click Add/Edit Card Types
- Check the cards that your merchant account is configured to accept.
- Click Update
- For each card type in the table:
a. click the pencil icon
b. Select your currency code in the left "Disabled" box
c. Click the right arrow to move it to "Enabled"
d. click Update
- When done repeating step 13 above for each card, click the Save button
- Click Security
- Click Create New Key
- Enter a value in the Key Name field
- Set Signature Version to Version 1
- Set Signature Method to HMAC-SHA256
- Click Generate Key
- You will have 30 seconds to copy the Access Key and Secret Key. Paste both values into your editor, opened in step #1 above.
- Click Return to Profile Home
- Click Notifications
- Check the checkbox to the left of Merchant POST URL
- To the right of Merchant POST URL, enter the full secure URL to your Squirrelcart storefront page:
https://example.com/store.php
- Under Select the card number digits that you want displayed, choose Return last 4 digits of card number
- Click Save
- Click Customer Response Pages
- Enter the same URL you used for step 25
- Click Save
- Click Promote to Active
- Open the Payment Gateways table in your Squirrelcart control panel
- Click the record labeled Cybersoure Secure Acceptance SOP to open it
- Enter your Profile ID, Access Key, and Secret Key in the fields of the same name.
- Enter a value in the Locale field. If you are in the US, enter:
en-us
If you are in another country, use this table for reference:
Language |
Locale Code |
Arabic |
ar-xn |
Cambodia |
km-kh |
Chinese - Hong Kong |
zh-hk |
Chinese - Maco |
zh-mo |
Chinese - Mainland |
zh-cn |
Chinese - Singapore |
zh-sg |
Chinese - Taiwan |
zh-tw |
Czech |
cz-cz |
Dutch |
nl-nl |
English - American |
en-us |
English - Australia |
en-au |
English - Britain |
en-gb |
English - Canada |
en-ca |
English - Ireland |
en-ie |
English - New Zealand |
en-nz |
French |
fr-fr |
French - Canada |
fr-ca |
German |
de-de |
German - Austria |
de-at |
Hungary |
hu-hu |
Indonesian |
id-id |
Italian |
it-it |
Japanese |
ja-jp |
Korean |
ko-kr |
Lao People’s Democratic Republic |
lo-la |
Malaysian Bahasa |
ms-my |
Philippines Tagalog |
tl-ph |
Polish |
pl-pl |
Portuguese - Brazil |
pt-br |
Russian |
ru-ru |
Slovakian |
sk-sk |
Spanish |
es-es |
Spanish - Argentina |
es-ar |
Spanish - Chile |
es-cl |
Spanish - Colombia |
es-co |
Spanish - Mexico |
es-mx |
Spanish - Peru |
es-pe |
Spanish - American |
es-us |
Tamil |
tam |
Thai |
th-th |
Turkish |
tr-tr |
Vietnamese |
vi-vn |
- Set the Transaction Type field. Click the field name for help.
- Set Connection Method to Store Hosted / Browser to Gateway
- Set the Currency Code field to the currency used by your merchant account
- Check the Enabled field
- If you are using a test account, check the Test Mode field
- Click
- Follow the testing instructions below.
- When done testing, to use Cybersource Secure Acceptance in their live environment you must request that your account be made live. They call that process Go-Live. Contact their support department to submit that Go-Live request.
- The setup instructions above must have been followed while logged into the test Business Center (https://ebctest.cybersource.com), using a test account
- Open the Cybersource Secure Acceptance SOP payment gateway record in Squirrelcart, and check Test Mode
- Add an item to the cart
- Checkout up to the payment form
- Choose Visa as the payment method
- Enter card number 4111111111111111
- Enter any future expiration date
- Enter any 3 digit value for the card security code
- Click Place Order
- If you have CyberSource configured properly, the order will complete and you will see a thank you page. After testing, repeat the setup instructions using the live Business Center, and uncheck Test Mode in Squirrelcart.
- The setup instructions above must have been followed while logged into the real Business Center (https://ebc.cybersource.com), using a real account
- Open the Cybersource Secure Acceptance SOP payment gateway record in Squirrelcart, and make sure Test Mode is unchecked.
- Add an item to the cart
- Choose Visa as the payment method
- Enter card number 4111111111111111
- Enter any future expiration date
- Enter any 3 digit value for the card security code
- Click Place Order
- You should receive a decline if everything is working properly. The only way to test order completion with a live account is to submit a real order using a real credit card.
After submitting the payment form in Squirrelcart, JavaScript is used to validate the form and submit it directly to CyberSource. For this to work, JavaScript must be working properly in your store. If you added any custom JavaScript to your store, it must not be generating any errors behind the scenes. If you have existing custom JavaScript that contains syntax or other errors, it will prevent our JavaScript from running.
If there is an issue with JavaScript on your site, you will see this error at the top of the payment form:

If you see this error, it is an indication that you have a problem with your custom JavaScript.
If you have an issue with any of the credentials you entered during the setup process, after submiting the payment form you may see a page at CyberSource.com with the following error:
You are not authorized to view this page. The transaction has not been processed.
If this occurs, you should double check your credentials. You can see more information about the error and what caused it in the Business Center as follows:
- Login to the CyberSource Business Center
- In the left navigation, click Transaction Search > Secure Acceptance Search
- Click the search button to search recent transactions
- Find the transaction corresponding to the one you submitted. You'll see the error listed in the Decision column. You can click the magnifying glass in the Log column to view a log of the transaction, with much more detailed information.
© 2001-2017 Lighthouse Development. All Rights Reserved.