Update -
VISA engineers are continuing their investigation into resolving the VCAS Portal Admin issue. The next update will be in 1 hour or as the current status changes.
Nov 13, 17:31 EST
Impact: Issuers may be experiencing inability to access the Admin application within the VCAS portal. At this time, consumer authentication processing is not impacted, and other VCAS Portal applications are functional.
VISA engineers are currently engaged in resolving this issue. If you're continuing to have issues with the VCAS Portal please clear and refresh your browser cache. The next update will be in 1 hour or as the current status changes.
Please do not hesitate to contact your local VISA support team if you have any questions or concerns.
Resolved -
The issue has now been fully resolved by the third party downstream provider. Transaction processing has now resumed as normal.
Reported Start Time: 11.12.24 @ 08:21:53 UTC Reported End Time: 11.12.24 @ 08:23:08 UTC
Please do not hesitate to contact the Cardinal support team if you have any questions or concerns.
Nov 12, 04:11 EST
Identified -
Cardinal monitoring has detected intermittent latency processing Consumer Authentication with the Mastercard Directory Server.
Estimated Start Date/Time: 11.12.24 @ 08:21:53 UTC Recovered at: 11.12.24 @ 08:23:08 UTC
Customer Impact: Customers may be experiencing higher than normal timeouts while processing. Consumer Authentication transactions resulting in Enrollment Status B (Bypass) and U (Unavailable). Depending on merchant specific business logic, these transactions may not have been authorized or would have been authorized as standard E-Commerce or Attempts transactions.
Cardinal engineers are currently engaged in resolving this issue. The next update will be within 1 hour or as the current status changes.
Please do not hesitate to contact the Cardinal support team if you have any questions or concerns.
Nov 12, 03:47 EST
Completed -
The scheduled maintenance has been completed.
Nov 8, 05:15 EST
In progress -
Scheduled maintenance is currently in progress. We will provide updates as necessary.
Oct 24, 21:15 EDT
Scheduled -
To improve the VCAS service we’re updating how VCAS handles Mastercard Data Share Only transactions to align with Mastercard Identity Check requirements.
A Data Share Only message allows merchants to share data via EMV 3DS rails, providing authentication insights that may influence an issuer's decision to approve a transaction without requesting authentication. According to the EMVCo specification, issuers should not challenge Data Share Only transactions.
Starting November 7, 2024, VCAS will enable all Mastercard issuers to support the Data Share Only flow. After this date, issuers will observe VCAS responding on their behalf for these transactions to ensure a frictionless outcome; standard VCAS risk rules will be overridden.
Note: Liability for Data Share Only transactions remains with the merchant.
The response message (Ares) for these transactions (where 3DS Requestor Challenge Indicator field = 06 Data Share Only ) will be:
Transaction Status: I (Informational Only) ECI: 06 AAV Leading Indicator: kN
This status and ECI will be reflected in VCAS reporting. No further action is needed from issuers to support this flow.
For more details on Mastercard’s requirements, please refer to the Mastercard Identity Check program guide which can be found on the Mastercard Connect portal.
Completed -
The scheduled maintenance has been completed.
Nov 7, 07:00 EST
In progress -
Scheduled maintenance is currently in progress. We will provide updates as necessary.
Oct 24, 20:00 EDT
Scheduled -
As a follow-up to our previous communication, starting November 6th, 2024, access to the Merchant Portal will require multifactor authentication (MFA) on the login page for Cardinal. To ensure a smooth transition, please make sure you can authenticate and access your applications through the main portal dashboard.
Important Action Required: You must set up multifactor authentication (MFA) by downloading an authenticator app, such as HID, to your mobile device. This app will generate a one-time passcode (OTP) each time you log into the portals:
1. Log in to the merchant portal using your current username and password. 2. Follow the prompts to set up MFA. - Download an authenticator app (e.g., HID). - Follow the app's setup instructions. - Scan the QR code displayed in the Cardinal portal with the app. - Enter the OTP generated by the app to complete the setup.
Once set up, you will need to enter the OTP each time you log in. For detailed instructions, please refer to our Knowledge Article titled "MFA Setup Instructions".