Adyen-for-platform icon

Register a mobile device for SCA

Learn how to use our Authentication SDK to register an iOS or Android device for SCA purposes.

To enable Strong Customer Authentication (SCA) for your users, you must register their mobile device as an SCA device. The registration associates your user's device with their business account.

You can register devices for SCA using Adyen's Authentication SDK. To do so:

  1. Check SCA eligibility.
  2. Initiate the device registration from your server.
  3. Register the device.
  4. Finalize the registration from your server.

The following sections explain how to perform all the steps to register a user's mobile device for SCA.

Requirements

Check SCA eligibility

This functionality requires additional configuration from Adyen. To enable it, contact our Support Team.

You will use the sdkOutput when initiating the registration. We suggest that you store sdkOutput for further usage, in case you need to start the registration process again.

Initiate device registration

Registering the device is a one-off procedure for each device. If your user has multiple devices, you need to register each of their devices separately.

To start the device registration, make a POST /registeredDevices request from your server.

In the request, specify the following:

Request parameter Description
paymentInstrumentId The unique identifier of the business account you want to register the device for.
strongCustomerAuthentication.sdkOutput Base64-encoded blob of data created in the previous step.

The response returns:

We suggest that you create and store a mapping between the registered device id and the human-readable account holder name. For example, BSDR00000000000000000000001 is "Cardholder's iPhone". You can use this pair later to show the details, for example, when deregistering the device.

Register the device

To register the device with the Authentication SDK:

  1. Authenticate the user by performing two-factor authentication (2FA).

  2. Trigger the SDK to start the device registration and pass sdkInput from step 2.

  3. Pass sdkOutput to your server.

Finalize registration

To finalize the device registration:

  1. Make a PATCH /registeredDevices/{id} request from your server. Specify the following parameters:

    Parameter Parameter type Description
    id Path The unique identifier of the SCA device. You obtain this id after you initiate the device registration.
    paymentInstrumentId Body The unique identifier of the business account you want to register the device for.
    strongCustomerAuthentication.sdkOutput Body Base64-encoded blob of data created in the previous step.
  2. Verify that the response contains success true.

The registration is now complete. The user can start authenticating themselves for future operations using your app.

Next steps

Authenticate your users before authorizing operations.