Access Worldpay
/
Testing

Testing

Test your 3DS integration on the Try environment using the magic values provided below. Send requests and see simulated responses.

For the Android/iOS SDK, the environment must be set to CardinalEnvironment.STAGING as part of the CardinalConfigurationParameters to use the test values on the Access Try environment.

Tokens

If you're creating tokens containing the test card numbers you must delete the token before creating another with the same PAN. You are prevented from creating another token using the same PAN. As an alternative, you can also change the namespace used as part of the token creation.

Liability shift

Liability shift is confirmed on payment authorization. The test card number tables show the different scenarios and the likely liability shift based on the authentication details provided (e.g. authenticationValue, eci, transactionId).

Test Card Number

Use different card numbers to alter the 3DS authentication outcome.

Do not mix the old test values used for API v1/v2 with the new ones for API v3 or you will get unexpected scenario outcomes. Set the cardHolderName to any other value e.g. Bob Smith

Always use a test card number from the tables below. Using a number not listed will result in the challenge failing to load for both web and SDK.

EMV 3DS version 2.1.0 will be sunset December 2024. The majority of authentications are already 2.2.0.

Test ScenarioDescriptionTest Values (2.1.0)Test Values (2.2.0)Authentication ResultVerification ResultAction
Successful Authentication (Frictionless)Issuer assessment resulted in a frictionless 3DS authentication
  • Visa:
    4000000000001000
  • Mastercard:
    5200000000001005
  • AMEX:
    340000000001007
  • Discover/Diners:
    6011000000001002
  • JCB:
    3337000000000008
  • CB (Visa):
    4000000000003006
  • CB (Mastercard):
    5200000000003001
  • Visa:
    4000000000002701
  • Mastercard:
    5200000000002235
  • AMEX:
    340000000002708
  • Discover/Diners:
    6011000000002117
  • JCB:
    3338000000000296
  • CB (Visa):
    4000000000004970
  • CB (Mastercard):
    5200000000004801
outcome: authenticated

eci:
  • 05 - Visa/AMEX/Discover (Diners Cub)/JCB/Cartes Bancaires (Visa)
  • 02 - Mastercard/Cartes Bancaires (MC)


authenticationValue (cavv): returned

liability shift: yes 		N/AApply authentication object in payment request, proceed with payment authorization
Failed Frictionless AuthenticationIssuer failed the authentication without providing the option for a challenge.
  • Visa:
    4000000000001018
  • Mastercard:
    5200000000001013
  • AMEX:
    340000000001015
  • Discover/Diners:
    6011000000001010
  • JCB:
    3337000000000990
  • CB (Visa):
    4000000000003014
  • CB (Mastercard):
    5200000000003019
  • Visa:
    4000000000002925
  • Mastercard:
    5200000000002276
  • AMEX:
    340000000002096
  • Discover/Diners:
    6011000000002364
  • JCB:
    3338000000000361
  • CB (Visa):
    4000000000004574
  • CB (Mastercard):
    5200000000004538
outcome: authenticationFailed

eci:
  • 07 - Visa/AMEX/Discover (Diners Cub)/JCB/Cartes Bancaires (Visa)
  • 00 - Mastercard/Cartes Bancaires (MC)


authenticationValue (cavv): Not returned

liability shift: no 		N/ADo not proceed with payment authorization. Either retry 3DS or prompt for another form of payment.
Attempts Stand-In Frictionless AuthenticationCardholder is enrolled in 3DS but the issuer does not support. This results in the issuer stand-in for the authentication
  • Visa:
    4000000000001026
  • Mastercard:
    5200000000001021
  • AMEX:
    340000000001023
  • Discover/Diners:
    6011000000001028
  • JCB:
    3337000000007045
  • CB (Visa):
    4000000000003022
  • CB (Mastercard):
    5200000000003027
  • Visa:
    4000000000002719
  • Mastercard:
    5200000000002482
  • AMEX:
    340000000002872
  • Discover/Diners:
    6011000000002646
  • JCB:
    3338000000000585
  • CB (Visa):
    4000000000004111
  • CB (Mastercard):
    5200000000004587
outcome: authenticated

eci:
  • 06 - Visa/AMEX/Discover (Diners Cub)/JCB/Cartes Bancaires (Visa)
  • 01 - Mastercard/Cartes Bancaires (MC)


authenticationValue (cavv): Not returned

liability shift: yes 		N/AApply authentication object in payment request, proceed with payment authorization
Authentication Unavailable (issuer)Cardholder is enrolled but authentication is unavailable
  • Visa: 4000000000001034
  • Mastercard: 5200000000001039
  • AMEX: 340000000001031
  • Discover/Diners: 6011000000001036
  • JCB: 3337000000000735
  • CB (Visa): 4000000000003030
  • CB (Mastercard): 5200000000003035
  • Visa: 4000000000002313
  • Mastercard: 5200000000002268
  • AMEX: 340000000002922
  • Discover/Diners: 6011000000002612
  • JCB: 3338000000000221
  • CB (Visa): 4000000000004160
  • CB (Mastercard): 5200000000004306
outcome: unavailable

eci:
  • 07 - Visa/AMEX/Discover (Diners Cub)/JCB/Cartes Bancaires (Visa)
  • 00 - Mastercard/Cartes Bancaires (MC)


authenticationValue (cavv): Not returned

liability shift: no 		N/AProceed as non-authenticated transaction or retry authentication request
Authentication RejectedAuthentication rejected by the issuer, no challenge is offered
  • Visa: 4000000000001042
  • Mastercard: 5200000000001047
  • AMEX: 340000000001049
  • Discover/Diners: 6011000000001044
  • JCB: 3337000000000321
  • CB (Visa): 4000000000003048
  • CB (Mastercard): 5200000000003043
  • Visa: 4000000000002537
  • Mastercard: 5200000000002185
  • AMEX: 340000000002062
  • Discover/Diners: 6011000000002711
  • JCB: 3338000000000734
  • CB (Visa): 4000000000004517
  • CB (Mastercard): 5200000000004405
outcome: authenticationFailed

eci:
  • 07 - Visa/AMEX/Discover (Diners Cub)/JCB/Cartes Bancaires (Visa)
  • 00 - Mastercard/Cartes Bancaires (MC)


authenticationValue (cavv): Not returned

liability shift: no 		N/ADo not proceed with payment authorization. Either retry 3DS or prompt for another form of payment.
Authentication Unavailable (system error)Authentication rejected by the issuer, no challenge is offered
  • Visa: 4000000000001059
  • Mastercard: 5200000000001054
  • AMEX: 340000000001056
  • Discover/Diners: 6011000000001051
  • JCB: 3337000000006765
  • CB (Visa): 4000000000003055
  • CB (Mastercard): 5200000000003050
  • Visa: 4000000000002990
  • Mastercard: 5200000000002409
  • AMEX: 340000000002468
  • Discover/Diners: 6011000000002836
  • JCB: 3338000000000940
  • CB (Visa): 4000000000004285
  • CB (Mastercard): 5200000000004090
outcome: unavailable

eci:
  • 07 - Visa/AMEX/Discover (Diners Cub)/JCB/Cartes Bancaires (Visa)
  • 00 - Mastercard/Cartes Bancaires (MC)


authenticationValue (cavv): Not returned

liability shift: no 		N/AProceed as non-authenticated transaction or retry authentication request
Authentication ErrorError whilst attempting authentication
  • Visa: 4000000000001067
  • Mastercard: 5200000000001062
  • AMEX: 340000000001064
  • Discover/Diners: 6011000000001069
  • JCB: 3337000000000016
  • CB (Visa): 4000000000003063
  • CB (Mastercard): 5200000000003068
  • Visa: 4000000000002446
  • Mastercard: 5200000000002037
  • AMEX: 340000000002732
  • Discover/Diners: 6011000000002315
  • JCB: 3338000000000650
  • CB (Visa): 4000000000004194
  • CB (Mastercard): 5200000000004058
outcome: unavailable

eci:
  • 07 - Visa/AMEX/Discover (Diners Cub)/JCB/Cartes Bancaires (Visa)
  • 00 - Mastercard/Cartes Bancaires (MC)


authenticationValue (cavv): Not returned

liability shift: no 		N/AProceed as non-authenticated transaction or retry authentication request
Authentication TimeoutTimeout during the authentication request
  • Visa: 4000000000001075
  • Mastercard: 5200000000001070
  • AMEX: 340000000001072
  • Discover/Diners: 6011000000001077
  • JCB: 3337000000000081
  • CB (Visa): 4000000000003071
  • CB (Mastercard): 5200000000003076
  • Visa: 4000000000002354
  • Mastercard: 5200000000002326
  • AMEX: 340000000002047
  • Discover/Diners: 6011000000002869
  • JCB: 3338000000000577
  • CB (Visa): 4000000000004277
  • CB (Mastercard): 5200000000004694
outcome: unavailable

eci:
  • 07 - Visa/AMEX/Discover (Diners Cub)/JCB/Cartes Bancaires (Visa)
  • 00 - Mastercard/Cartes Bancaires (MC)


authenticationValue (cavv): Not returned

liability shift: no 		N/AProceed as non-authenticated transaction or retry authentication request
Successful Authentication (Challenged)Issuer prompts a challenge in authentication, customer responds successfully
  • Visa: 4000000000001091
  • Mastercard: 5200000000001096
  • AMEX: 340000000001098
  • Discover/Diners: 6011000000001093
  • JCB: 3337000000200004
  • CB (Visa): 4000000000003139
  • CB (Mastercard): 5200000000003092
  • Visa: 4000000000002503
  • Mastercard: 5200000000002151
  • AMEX: 340000000002534
  • Discover/Diners: 6011000000002265
  • JCB: 3338000000000569
  • CB (Visa): 4000000000004855
  • CB (Mastercard): 5200000000004074
outcome: challenged

outcome: authenticated

eci:
  • 05 - Visa/AMEX/Discover (Diners Cub)/JCB/Cartes Bancaires (Visa)
  • 02 - Mastercard/Cartes Bancaires (MC)


authenticationValue (cavv): returned

liability shift: yes 		Apply authentication object in payment request, proceed with payment authorization
Failed Challenged AuthenticationIssuer prompts a challenge in authentication, customer responds with incorrect details (e.g. OTP, fingerprint etc)
  • Visa: 4000000000001109
  • Mastercard: 5200000000001104
  • AMEX: 340000000001106
  • Discover/Diners: 6011000000001101
  • JCB: 3337000000200087
  • CB (Visa): 4000000000003097
  • CB (Mastercard): 5200000000003100
  • Visa: 4000000000002370
  • Mastercard: 5200000000002490
  • AMEX: 340000000002237
  • Discover/Diners: 6011000000002695
  • JCB: 3338000000000874
  • CB (Visa): 4000000000004293
  • CB (Mastercard): 5200000000004041
outcome: challenged

outcome: authenticationFailed

eci:
  • 07 - Visa/AMEX/Discover (Diners Cub)/JCB/Cartes Bancaires (Visa)
  • 00 - Mastercard/Cartes Bancaires (MC)


authenticationValue (cavv): Not returned

liability shift: no 		Do not proceed with payment authorization. Either retry 3DS or prompt for another form of payment.
Verification UnavailableAuthentication data following a challenge cannot be retrieved
  • Visa: 4000000000001117
  • Mastercard: 5200000000001112
  • AMEX: 340000000001114
  • Discover/Diners: 6011000000001119
  • JCB: 3337000000200079
  • CB (Visa): 4000000000003105
  • CB (Mastercard): 5200000000003118
  • Visa: 4000000000002420
  • Mastercard: 5200000000002664
  • AMEX: 340000000002484
  • Discover/Diners: 6011000000002851
  • JCB: 3338000000000981
  • CB (Visa): 4000000000004640
  • CB (Mastercard): 5200000000004124
outcome: challenged

outcome: unavailable

eci:
  • 07 - Visa/AMEX/Discover (Diners Cub)/JCB/Cartes Bancaires (Visa)
  • 00 - Mastercard/Cartes Bancaires (MC)


authenticationValue (cavv): Not returned

liability shift: no 		Proceed as non-authenticated transaction or retry verification request
Verification ErrorError whilst attempting verification
  • Visa: 4000000000001125
  • Mastercard: 5200000000001120
  • AMEX: 340000000001122
  • Discover/Diners: 6011000000001127
  • JCB: 3337000000200046
  • CB (Visa): 4000000000003113
  • CB (Mastercard): 5200000000003126
  • Visa: 4000000000002644
  • Mastercard: 5200000000002656
  • AMEX: 340000000002351
  • Discover/Diners: 6011000000002570
  • JCB: 3338000000000676
  • CB (Visa): 4000000000004913
  • CB (Mastercard): 5200000000004611
outcome: challenged

outcome: unavailable

eci:
  • 07 - Visa/AMEX/Discover (Diners Cub)/JCB/Cartes Bancaires (Visa)
  • 00 - Mastercard/Cartes Bancaires (MC)


authenticationValue (cavv): Not returned

liability shift: no 		Proceed as non-authenticated transaction or retry verification request
BypassBypass the consumer authentication flow via Cardinal Rules Engine configuration. Returned if 3DS premium is enabled or when there is a timeout connecting to the 3DS directory server.
  • Visa: 4000000000001083
  • Mastercard: 5200000000001088
  • AMEX: 340000000001080
  • Discover/Diners: 6011000000001085
  • JCB: 3337000000000537
  • CB (Visa): 4000000000003089
  • CB (Mastercard): 5200000000003084
  • Visa: 4000000000002560
  • Mastercard: 5200000000002508
  • AMEX: 340000000002948
  • Discover/Diners: 6011000000002976
  • JCB: 3338000000000122
  • CB (Visa): 4000000000004400
  • CB (Mastercard): 5200000000004991
outcome: bypassed

eci:
  • 07 - Visa/AMEX/Discover (Diners Cub)/JCB/Cartes Bancaires (Visa)
  • 00 - Mastercard/Cartes Bancaires (MC)


authenticationValue (cavv): Not returned

liability shift: no 		N/AProceed as non-authenticated transaction

Common Issues

IssueCause
Mobile SDK: challenge page fails to load, producing one of the following errors
  • Android SDK returns: 20606 (Payload Validation failed)
  • Invalid Signature. Your request contains an invalid signature.
  • You must use version 3 of the API with the mobile SDK on Try and ensure you use the updated test card values below.
  • You cannot use a made up card number. You must use a test card value below or the challenge will not display correctly.
Web Integration: challenge page fails to load
  • Ensure you're using the correct API version and Test values. API version 3 uses the card numbers below. API version 1 and 2 use the cardholder name.
  • You cannot use a made up card number. You must use a test card value below or the challenge will not display correctly.
Issuer Challenge page fails to load on live (400 response)
  • You have 30 seconds to submit the challenge form (using the JWT) before it expires. On the Try environment this is 10 minutes.

Test device data form

The form below allows you to submit the 3DS device data details provided in the API response. You then receive the sessionId/collectionReference, back in the postMessage, for use in the authentication request. This is useful if using tools such as postman/insomnia to test your integration.

Test challenge form

The form below allows you to submit the 3DS challenge details provided in the API response and display the issuer challenge. This is useful if using tools such as postman/insomnia to test your integration.