Hi @Dakuan ,

We have tested the C# sample code in the tutorial and it works fine.

Kindly note for 2-Way SSL, you don't need to provide the Root and Intermediate certificate.

I would suggest you to take the sample code provided in this tutorial as it is, replace with your credentials and add the below function with the VDP Sample Payload.

public string CardOnFileDataService()
        {
            string localTransactionDateTime = DateTime.Now.ToString("yyyy-MM-dd'T'HH:mm:ss");
            string requestBody = "{\"requestHeader\":{\"requestMessageId\":\"6da6b8b024532a2e0eacb1af58581\",\"messageDateTime\":\"2019-02-3505:25:12.327\"},\"requestData\":{\"pANs\":[4072208010000000],\"group\":\"STANDARD\"}}";

            string requestURL = "cofds-web/v1/datainfo";

            return GetDecryptedPayload(DoMutualAuthCall(requestURL, "POST", "Card On File Data Service With MLE", getEncryptedPayload(requestBody), null));
        }

And using the below main function to execute the API call.

static void Main(string[] args)
{
   Program p = new Program();
   string decryptedPayload = p.CardOnFileDataService();
   Console.WriteLine("Decrypted Response\n" + decryptedPayload);
}

Please give it a try and let us know if you face any further issue.

Thank you

Hi @Dakuan ,

This looks more like an issue with your p12 file created.

Could you please double check the .p12 contains both the private and the public key.  The below command should list the certificates in the .p12 file

openssl pkcs12 -info -in cert.p12

Kindly note that the the 2-Way SSL Certificate Subject contains the UID of your project and corresponding Key file with the same UID (in the file name) which you have downloaded, should be used to created the P12 file.

openssl pkcs12 -export -inkey key_<UID / PROJECT ID>.pem -in cert.pem -out cert.p12

The MLE private key is used for decrypting the response. Note that MLE Certificates and key contains the MLE Key ID so not to be confused with the 2Way SSL certificate.

//For MLE
public static string keyId = "<MLE_KEY_ID>";
public static string mleClientPrivateKey = "<PATH>/server_cert_<MLE_KEY_ID>.pem";
public static string mleServerPublicCertificate = "<PATH>/key_<MLE_KEY_ID>.pem"; 

I hope that helps.

Thank you

I would've liked to use p12 files, to install the certificate to the store and use that from there, instead of using .pem files directly. Is that possible?

Hello Shameem, thanks for the reply. The thing is that when I use OpenSSL to create the p12 bundle,

openssl pkcs12 -export -in server_cert_ae2c7ac6-764b-4792-b16e-de3205de79b3.pem -inkey private-key_rsa.key -out VisaCert.p12

we get error: No certificate matches private key

with the client_cert_*.pem, I was able to create the p12 bundle, but the problem is the encryption is wrong with the client certificate and in your example you were using server certificate to encrypt the message.

Hi @SeM,

Are you still experiencing an error? Please follow the Quick Start Guide for Developers

 step-by-step in its specific order. Additionally, you can try to test using the Visa Developer Center Playground, you can access the guide here: https://developer.visa.com/pages/visa-developer-center-playground. Please follow these steps and share your result with us.