Each gateway provides their own failure messages.  Some are very specific, others are very general but you may be able to find more detailed explanations of response codes online using these links:  

• Authorize.net
• eProcessing Network
• iATS
• Network Merchants, Inc (NMI)
• Vanco
• WePay
• Moneris

Other Tips:

Some gateways return a single response code to the software, even though there are multiple problems. . .and some may return a random code if the error does not have its own dedicated code so keep an open mind when investigating!

To prevent scammers from using online applications to test the validity of stolen cards, the WePay gateway does not return a specific error message to the software.  Most card specific failures will return this error message:  "Transaction Declined due to mismatched CVV, AVS, or Bank Decline."  

If the failure message returned to the software is not specific enough to allow you to address the problem, you will need to either login to your gateway account to view the specific error message(s) provided for the transaction and/or contact your gateway account rep for assistance.

Although each gateway provides their own unique set of response/reject messages and codes, they may share key words that provide clues to the source of the problem:

Generally indicate that the either API login/password entered into the software is incorrect OR that your gateway account is not authorized to vault credit cards.

Some gateways (Authorize.net, NMI and PayTrace) require specific permissions or features to be enabled in order to vault cards.   If the vault feature is not active on your account, transactions can be processed, but attempts to vault will fail.

Actions:  

1.  For most gateways, the login/password used to access your account online is different than the API login/password used to connect the software to your gateway.  Check the sample formats below to make sure you have entered the API login/password.    If your API login/password appear to be properly formatted, contact your gateway account rep for assistance.

2.  Enable Vaulting on your gateway:

• Login to your Authorize.net account to enable CIM (Customer Information Manager)
• Contact your NMI (or Diamond Mind) or PayTrace account rep to set up your gateway to allow vaulting.

3.  Authorize.net gateways only:   Verify that your auth.net gateway is not being used on another web application.  Because Auth.net generates specific API logins and Passwords for each use, it isn't possible to use one auth.net gateway simultaneously for two web applications (they will eventually interfere/override the other.)

Generally indicate that the connection between the gateway and merchant processor account is broken.

Possible issues:

• Merchant Account is inactive (possibly to avoid monthly fees or triggered by inactivity)
• Merchant Processor has changed (perhaps your bank switched providers, your Merchant Processor merged with or was purchased by another company, or your account was changed)

Action: Contact whomever set up your Merchant Processor to verify account status (often your bank rep, or it may have been set up through your gateway account rep).

CVV refers to the 3 or 4 digit Card Verification Value printed on the back of card.   It is a security tool to ensure that online transactions are being made with the actual credit card in hand (rather than a stolen card number or the data poached from the magnetic strip).

A CVV or CVV2 mismatch message indicates that a CVV code is required for the transaction and the one provided (or missing) does not match the CVV associated with the card.   Since the CVV is simply printed on the card, it is fairly common for the CVV to be smudged or worn off. . .

Note:  Card readers/swipers require the physical card to be present in order to operate, so the CVV code is redundant as a security tool.

WePay is the only gateway which requires CVV on all transactions.  The other gateways generally allow you the choice of requiring or disabling the CVV security measure.  Many will have the default setting to "require", but this can be changed in your account.

Actions:

1. Retry the transaction with the correct CVV.  If the CVV is smudged or illegible, try inserting the letter "i" in the CVV field - some gateways accept this as a code for an illegible code.
2. If transaction still fails, contact your gateway account rep for assistance.
3. For all gateways other than WePay, we recommend disabling the CVV requirement on your gateway.    Buyers will be asked to provide the CVV for all online transactions on your site either way, but disabling the requirement will not block transactions with smudged or worn CVV codes.

Address Verification System (AVS) are optional security settings on your gateway to require that transactions provide contact information that matches the account billing information.

WePay is the only gateway which requires Zip code as an AVS setting on all transactions.  The other gateways generally allow you the choice of requiring or disabling each level of the AVS security measure.  Many will have the default setting to "require", but this can be changed in your account.

Actions:

1. Retry the transaction with the correct billing information.
2. For all gateways other than WePay, we recommend disabling all AVS settings on your gateway.    While it seems a simple thing, you'll be surprised at how often customers insist the billing info is correct, but the transaction is still blocked.   You won't have the ability to confirm or deny that - resulting in frustration all around.  Better to disable AVS - at least for your gala event.

All gateways except WePay reserve the "Decline" response  for cards which are approaching or have exceeded their limit.   If the transaction amount is very large, a reduced amount may be successful.  

Actions:

1. Ask for another card or payment method.   It's also a good idea to provide your team with a standard response to declined cards to minimize the awkward moment eg "It doesn't seem to like this card, do you have another card you'd like to use?"

If AMEX is mentioned, it almost certainly means that your gateway and/or Merchant Processing account is not set up to accept AMEX.    If an AMEX card fails with a generic failure message, you should verify that other AMEX transactions have been successfully processed:

Go to Admin > View Reports > Post Auction > Follow-up Reports (bottom of page) > Credit Card Report (see below)  This report shows the details of every credit card transaction processed on the site.   If all AMEX (cc numbers starting with 3) have failed, your account is not set up to accept AMEX.

Actions:

1. Contact your Merchant account rep to add the ability to accept AMEX transactions OR
2. Have a Chair user change the "credit cards accepted" setting at Admin > Site Settings > Payment/Credit Card > Setup Gateway.

If there are successful transactions to AMEX cards, the problem is specific to the card (troubleshoot further using steps outlined previosly).