How To Solve PayPal gateway has rejected request. Security header is not valid (#10002: Security error)

When hooking up payment and shipping in Magento there are a few common errors that you may see.  The most common one is one from Paypal that says “PayPal gateway has rejected request. Security header is not valid (#10002: Security error)”.  The Security header is not a valid error is only caused for two reasons:

  1. Wrong credentials Make sure that you’ve put your API Username, API Password and API Signature correctly. Sometimes it happens that during copy and paste there is accidentally a space added, this would trigger this error. Double check this setting admin panel of your Magento store.  Worst comes to worst, type out all the information by hand instead of copy, pasting it.
  2. The Wrong Endpoint This error would come up if you send the data to the wrong endpoint. Make sure that you send the live credentials and data to our live endpoint. When you want to test your store make sure that you use our test endpoint and the credentials from your sandbox test account. If you are using a third party shopping cart, make sure that your store is running a test or live mode, regarding which credentials you are using.

You can check for your credentials here too:

FOR LIVE

https://api-3t.paypal.com/nvp?&user=xxxxxxxxxx&pwd=xxxxxxxxxx&signature=xxxxxxxxxx&version=70.0&METHOD=SetExpressCheckout&RETURNURL=http://www.paypal.com/test.php&CANCELURL=http://www.paypal.com/test.php&PAYMENTACTION=Sale&AMT=50&CURRENCYCODE=USD

FOR SANDBOX

https://api-3t.sandbox.paypal.com/nvp?&user=xxxxxxxxxx&pwd=xxxxxxxxxx&signature=xxxxxxxxxx&version=70.0&METHOD=SetExpressCheckout&RETURNURL=http://www.paypal.com/test.php&CANCELURL=http://www.paypal.com/test.php&PAYMENTACTION=Sale&AMT=50&CURRENCYCODE=USD

Just Substitute the user,pwd and signature and enter in your browser. You should get ACK = SUCCESS if you have input your credentials correctly.

It should give you a response like this:

TOKEN=EC%2d6692632958132974V&TIMESTAMP=2017%2d05%2d15T21%3a16%3a02Z&CORRELATIONID=eec52ef2bb94d&ACK=Success&VERSION=70%2e0&BUILD=33490117

You can also get your credentials here : https://www.paypal.com/cgi-bin/webscr?cmd=_get-api-signature&generic-flow=true

 

 

Good luck!

 

 

Facebooktwittergoogle_plusredditpinterestlinkedinmail

Search