Requiring a Card Security Code (CSC) for credit/debit card transactions
As an additional verification for iMIS and e-Series credit card transactions, you can make the Card Security Code (CSC) a required value for specific credit/debit card cash accounts. A CSC is the 3- or 4-digit non-embossed number that displays on the front or back of a credit/debit card. The CSC is not part of the actual card number and is useful in situations where the card holder is not present when the payment is being made.
To make the CSC required, select the CSC Required option for Web Entry, Workstation Entry, or both for the specified credit/debit card cash account(s) on the Set up cash accounts window (from AR/Cash, select Set up tables > Cash accounts). Selecting the CSC Required option for Web Entry makes the CSC required for the specified cash account in e-Series. Selecting the CSC Required option for Workstation Entry makes the CSC required for the specified cash account in iMIS. When the CSC Required option is selected (for either Web Entry or Workstation Entry), a CSC value is required before you can complete the credit/debit card transaction using the specified cash account(s).
A CSC is not required when processing a reversal payment transaction (for example, entering a credit transaction) or when editing a payment transaction.
Note:
- For transactions associated with card authorization accounts that use Immediate Authorization, the CSC value is not stored in the database. The value that displays in the Card Security Code or CSC field is deleted once the transaction is submitted for processing.
- For transactions associated with card authorization accounts that use Deferred Authorization and for which the Save CSC Prior to Authorization option has been selected, the CSC value is temporarily stored in an encrypted format in the iMIS database. For VeriSign and QSI gateways, iMIS then deletes the stored CSC information after successful authorization. If a saved payment is viewed prior to successful authorization, the CSC number appears as three asterisks regardless of the security level of the iMIS user.
- For Other gateways, which are used only for European debit cards, the CSC information stored in the iMIS database is not automatically deleted by iMIS after successful deferred authorization. You should ensure that the custom gateway interface implemented by your Authorized iMIS Solution Provider (AiSP) deletes the stored CSC information after being successfully authorized.
- iMIS and e-Series only validate that a CSC value is present (if required) and that the value is a 3- or 4-digit alphanumeric character. CSC validation depends on various factors that go beyond the scope of iMIS and e-Series (for example, whether the credit card processor supports CSC). For specific information regarding CSC validation, contact your authorization gateway, merchant bank, credit/debit card processor, or any other third-party involved in validating your credit card transactions.
Location of CSC fields
The following e-Series page and iMIS payment windows contain a field for entering a CSC value. For iMIS payment windows, the CSC field appears only when you enter a credit/debit card cash account that is associated with a card authorization account that uses Immediate Authorization, or that uses Deferred Authorization with the Save CSC Prior to Authorization option selected.
- e-Series
- The Card Security Code field always displays on the e-Series Check-Out Basket page (select Profile, select Billing or one of the e-Billing Reminder links, and select add to basket). If a user selects a Credit Card Type that is associated with a credit/debit card cash account that requires a CSC value for Web entry, the field displays with an asterisk and the user will not be allowed to submit e-Series payment data for authorization until they enter a non-blank Card Security Code value.
- AR/Cash module
- Enter and edit cash receipts window (from AR/Cash, select Enter and edit transactions> Cash receipts)
- Enter and edit sales transactions window (from AR/Cash, select Enter and edit transactions> Sales transactions)
- Billings module
- Enter and edit payments window (from Billing, select Enter and edit payments)
- Certification module (European debit cards only)
- Order Payment window (from Certification, register a student and create an order)
- Events module (European debit cards only)
- Payments tab on the Register a customer window (from Events, select Register a customer, and select the Payments tab)
- Payments window (from Events, select Register a customer, select the Payments tab, and click More Payments)
- Exhibition module (European debit cards only)
- Payments tab on the Process orders window (from Exhibition, select Process orders, and select the Payments tab)
- Payments window (from Exhibition, select Process orders, select the Payments tab, and click More Payments)
- Exposition module (European debit cards only)
- Payments window from Process booth orders (from Exposition, select Process booth orders and click Payment)
- More Payments window from the Payments window (from Exposition, select Process booth orders, click Payment, and click More Payments)
- Fund Raising module
- Overview tab on the Enter and edit gifts window (from Fund Raising, select Enter and edit gifts)
- Process payments window (from Fund Raising, select Process payments)
- Orders module (European debit cards only)
- Payments tab of the Enter and edit orders window (select Orders, select Enter and edit orders, enter or open an order, and select the Payments tab)
- Service Central module
- Enter and edit payments window (from Service Central, select Enter and edit payments)
- Payment Entry window (from Service Central, select Process customer requests, and select Payment)