Important
You are browsing documentation for version 5.1 of OroCommerce, supported until March 2026. Read the documentation for version 6.0 (the latest LTS version) to get up-to-date information.
See our Release Process documentation for more information on the currently supported and upcoming releases.
Manage Authorize.Net Payments Services in the Back-Office
Hint
This section is part of the Payment Configuration topic that provides a general understanding of the payment concept in OroCommerce.
Hint
The feature requires extension, so visit Oro Extensions Store to download the Authorize.Net extension and then use the composer to install the extension to your application.
Authorize.Net is one of the world’s most popular payment gateways. It provides services for businesses based in the United States, Canada, United Kingdom, Europe, and Australia. It ensures secure and reliable money transactions and offers a wide range of additional services.
Integration of OroCommerce with Authorize.Net enables you to accept credit and debit cards on your OroCommerce website.
While your business must be based in one of the aforementioned countries, you can accept payments from the buyers worldwide.
Important
Note that to accept card payments, business must have a merchant account. This is a special bank account to which payments are transferred as soon as they are received from buyers. In next step, money is transferred from the merchant account to your regular bank account, from which you can withdraw it. You can acquire a merchant account on your own, or obtain it from Authorize.Net.
To configure payment integration with Authorize.Net services:
Learn the Prerequisites for Authorize.Net Integration that will help configure the integration properly and retrieve corresponding credentials.
Configure Authorize.Net Integration under System > Integrations > Manage Integrations.
Create a payment rule under System > Payment Rules and add your integration to it to display this method to the customers at the checkout.
eCheck.Net Integration
In addition to accepting various cards, Authorize.Net offers eCheck.Net service to process e-check payments. When setting up your Authorize.Net integration in the OroCommerce back-office, you can configure your OroCommerce application to expand transaction options at the checkout to e-checks. For setup instructions, proceed to the eCheck section of the integration with Authorize.Net topic.
Note
For more information on e-check payments, see the official education guide for merchants.
Customer Payment Profiles (CIM) Integration
OroCommerce supports an integration with the Customer Information Manager (CIM) service offered by Authorize.Net. With its help, customer users can save and manage up to 10 payment profiles for future orders in their OroCommerce storefront account. All payment profiles are synchronized with Authorize.Net as soon as they are added or modified on the OroCommerce side.
For setup instructions, proceed to the CIM section of the integration with Authorize.Net topic.
Note
For more information on payment profiles, see the Manage Payment Profiles (Authorize.Net Customer Profiles) topic in the OroCommerce Storefront guide.
Security
OroCommerce server never stores buyer’s sensitive payment information (complete card number, expiration date, and cvv code), this information is directly sent to Authorize.Net.
As Authorize.Net servers are PCI DSS complaint, this ensures that you provide to your buyers the security of payments that meets requirements of the controlling organizations.
OroCommerce uses Authorize.Net Accept.js library to process buyer’s sensitive information in their web browser.
Transaction response from the payment gateway also does not contain sensitive information about a buyer’s card. It serves as an identifier of the initial authorization that is solely handled by the payment gateway.
Related Topics