H-Sphere Documentation Administrator Guide Merchant Gateway Manager


NetBilling Configuration

(version 2.3.1 Patch 3 and higher)


Related Docs:   Merchant Gateway Manager Supported Merchant Gateway Providers



NetBilling certificate is trusted by Equifax and provided by GeoTrust. In Java 1.3.x and older the standard java cartcerts file doesn't include GeoTrust root Certificates and therefore H-Sphere returns 'Connect error, untrusted server cert chain' when trying to connect to the merchant gateway. That's why GeoTrust Root certificates should be imported into cacerts file.

So, if you have Java 1.3 and older, you have the following solutions:
A. If you have got the default java cacerts file and you have never changed it, you can simply replace it with the cacerts file offered by psoft:
/usr/java/<java home>/jre/lib/security/cacerts

B. If you need to keep your cacerts file, you can fix this problem using the keytool feature available in the standard Java installation:

  1. Make sure you have Java 1.3 or older.
    Note: Java 1.4.x cacerts file includes GeoTrust root certificates by defaut, so it shouldn't be modified.
  2. Go to the GeoTrust website and download the Equifax_Secure_Certificate_Authority.cer file.
  3. Rename it to geotrustroot.cer
  4. Place geotrustroot.cer in the /usr/java/jdk1.3.1/jre/lib/security/ directory
  5. As root, allow read/write access to the /usr/java/jdk1.3.1/jre/lib/security/cacerts file
    chmod 666 /usr/java/jdk1.3.1/jre/lib/security/cacerts
  6. Log in as the cpanel user:
    su -l cpanel
  7. Go to the /usr/java/jdk1.3.1/jre/lib/security/ directory:
    cd /usr/java/jdk1.3.1/jre/lib/security/
  8. Run the following command:
    keytool -import -trustcacerts -alias geotrustroot -keystore cacerts -file geotrustroot.cer -storepass changeit
  9. As root, change permissions back on the /usr/java/jdk1.3.1/jre/lib/security/cacerts file:
    chmod 444 /usr/java/jdk1.3.1/jre/lib/security/cacerts
C. Upgrade Java to 1.4 by following our documentation.

Note: If your certificate is already imported into cacerts, but Java still generates 'Connect error, untrusted server cert chain', please check the connection to your payment server from your control panel server by running the following command from the control panel server console to check connection:
telnet [server.name] [port]

Make sure that the direct-java-2.3.3.jar file is present in the /hsphere/local/home/cpanel/java_rt/ directory.

If it's not there:

  1. Contact NetBilling and obtain the direct-java-2.3.3.jar file.
  2. Put the lib file into in the directory ~cpanel/java_rt/.
  3. Restart H-Sphere.



  1. Select NetBilling in the Add New Gateway box.
  2. Click the Add button.
  3. Fill out the form that appears:

    • Title: give a name to this NetBilling connection
    • Protocol: http or https protocol to connect to the gateway server
    • Server: the name of the NetBilling server
    • Account: your NetBilling account ID
    • Site Tag: your brief site nickname
    • Notification Email for VOID transactions: NetBilling doesn't support VOID transactions. Instead, H-Sphere sends a notification to this address that the transaction needs to be canceled manually through NetBilling web interface.
  4. Click Submit Query

CVV (Card Verification Value). To enable fraud protection using CVV, enable and configure CVV support in your NetBilling account. More on CVV credit card verification.

Related Docs:   Merchant Gateway Manager Supported Merchant Gateway Providers

User comments
No comments for this page.
Add comment

Home   Products   Services   Partners   Support   News   Contact   Forum
© 2020 psoft.net
All rights reserved.