Scribd Logo
Upload

Welcome to Scribd!

  • Aadhaar Authentication Basics

    Uploaded by

    Digvijay Sonar
    572 views25 pages
    This document provides instructions to set up and test Aadhaar authentication using a sample Java client application. It describes downloading the binary or source code, installing prerequisites like Java, and running the sample client. The sample client can be used to test different authentication methods by entering test Aadhaar numbers and demographic details listed in the document. Developer instructions are also provided to set up the source code in an IDE like Eclipse.

    Original Description:

    Aadhaar Authentication Basics

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    This document provides instructions to set up and test Aadhaar authentication using a sample Java client application. It describes downloading the binary or source code, installing prerequisites like Java, and running the sample client. The sample client can be used to test different authentication methods by entering test Aadhaar numbers and demographic details listed in the document. Developer instructions are also provided to set up the source code in an IDE like Eclipse.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    572 views25 pages

    Aadhaar Authentication Basics

    Uploaded by

    Digvijay Sonar
    This document provides instructions to set up and test Aadhaar authentication using a sample Java client application. It describes downloading the binary or source code, installing prerequisites like Java, and running the sample client. The sample client can be used to test different authentication methods by entering test Aadhaar numbers and demographic details listed in the document. Developer instructions are also provided to set up the source code in an IDE like Eclipse.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 25

    AadhaarAuthenticationBasics

    ThisbookwalksyouthroughAadhaarauthenticationbasicsandhelpsyoutestusingsampleauthenticationclientaswellassetup
    developmentenvironmentusingthesourcecodeprovided.Clickonthechaptersbelowtonavigate.

    Introduction
    AadhaarauthenticationistheprocesswhereinAadhaarNumber,alongwithotherattributes,includingbiometrics,aresubmittedonlineto
    theCIDRforitsverificationonthebasisofinformationordataordocumentsavailablewithit.Aadhaarauthenticationprovidesseveral
    waysinwhicharesidentcanauthenticatethemselvesusingthesystem.Atahighlevel,authenticationcanbeDemographic
    Authenticationand/orBiometricAuthentication.
    Duringtheauthenticationtransaction,theresidentsrecordisfirstselectedusingtheAadhaarNumberandthenthedemographic/biometric
    inputsarematchedagainstthestoreddatawhichwasprovidedbytheresidentduringenrolment/updateprocess.Fingerprintsintheinput
    arematchedagainstallstored10fingerprints.

    Note:InallformsofauthenticationtheAadhaarNumberneedstobesubmittedsothatauthenticationisreducedtoa1:1match.In
    addition,Aadhaarauthenticationserviceonlyrespondswithayes/noandnoPersonalIdentityInformation(PII)isreturnedaspartofthe
    response.
    Aadhaarauthenticationenablesagenciestoverifyidentityofresidentsusinganonlineandelectronicmeanswheretheagencycollects
    requiredinformationfromtheresidentalongwithresidentsAadhaarNumberandpassesthesametoUIDAIsystemsforverification.
    AadhaarauthenticationserviceprovidesservicestoinstantlyverifytheidentityoftheresidentagainsttheavailabledatainCIDR.Based
    ontheneedsoftheservice,differentidentifierscouldbeusedalongwithAadhaarNumber.Theseidentifierscouldbecombinationof
    biometrics(suchasfingerprints,irisimpressions)and/ordemographicinformation(suchasName,Dateofbirth,Address)and/orasecret
    PINorOTPnumberknownonlytotheresident.

    AuthenticationAPI
    AadhaarauthenticationserviceisexposedasstatelessserviceoverHTTPS.UsageofopendataformatinXMLandwidelyusedprotocol
    suchasHTTPallowseasyadoptionanddeploymentofAadhaarauthentication.Tosupportstrongendtoendsecurityandavoidrequest
    tamperingandmaninthemiddleattacks,itisessentialthatencryptionofdatahappensatthetimeofcaptureonthecapturedevice.
    IfyouhavenotreadtheAadhaarAuthenticationSpecification(version1.5Rev1)document,it'simportantthatyoudonowbefore
    proceeding!
    Nextfewchapterstakesyouthroughdetailsonrunningsampleapplicationcode,settingupsourcecodewithinEclipse,andusageoftest
    codesanddata.

    RunningSampleApplication

    UIDAIhascreatedafullyworkingsampleJavaclientapplicationtohelpthecommunityrapidlydevelopapplicationsthatuseAadhaar
    authentication.ThisapplicationiswritteninJavaanddemonstratesvariousfeaturesofAadhaarauthentication.Thisapplicationisprovided
    onan"ASIS"basisandshouldnotbeconsideredasasupported,productionstrengthsoftware.Thischaptercoversdetailsabout
    downloading,installing,andrunningthesampleandsettingupdevelopmentenvironmentwiththesourcecode.
    SampleJavaapplication(bothbinaryandsourcecodezipfiles)totestAadhaarauthenticationcanbedownloadedfromhere.

    RunningSamplefromDistribution
    Whenyoudownloadthebinarydistributionusingdownlinkabove,youget"authclientbin1.5.zip".Followstepsbelowtoinstallandrun
    theclient.ThesedirectionsareforWindowsOS.IfyouareusingLinuxorotherOS,youmaymakeappropriatemodificationtobuildand
    runtheclient.
    1.YouneedJava1.6oraboveinstalledonyourcomputerandanInternetconnectiontorunthissample.
    2.Unzip"authclientbin1.5.zip"intoadirectory.Youwillseethefollowingcontents.

    3.Run"runclient.bat"torunthesampleapplication.
    4.InordertouseIndiannamematching,itisrequiredthatthejavaappsruninUTF8characterencodingmode.Forthat,inJava,
    followingVMargumentshastobepassed"Dfile.encoding=UTF8".Thisisalreadyaddedtothe"runclient.bat"file.
    5.ThisopensacommandpromtaskingforOStype,enter1or2(basedonyourOS)andpressENTER.
    6.Thisopensthesampleauthenticationclient.Seescreenshotbelow.

    7.Click"Edit>Preferences"menutomakesureyouseefollowingscreenwithvalues.Ensurelicensekey,AUAcode,SubAUAcode
    areaslistedunder"TestingData"page.


    8.Nowyouarereadytotest!!
    9.Enter"999999990019"in"AadhaarNumber"fieldand"ShivshankarChoudhury"inthe"Name"field.See"TestingData"pagefor
    detailsontestdatafortestingvariouscombinations.
    10.Click"Authenticate"buttonatthebottomright
    11.Youshouldseeagreentickmarkwithinthe"AuthenticationStatus"field.Seethefollowingscreen

    12.Ifyouhaveissues,firstensureyouhavefollowedallstepscorrectly.Ifyoufacenetworkorconnectionerrors,pleasemakesureyour
    Internetconnectionisworkingwell.Iftestserver(auth.uidai.gov.in)isdownornotreachable,tryaftersometime.
    13.Ifnothingworks(!),pleasewritetothediscussiongroup.

    DevelopingusingSample
    Asexplainedinpreviouschapter,sampleJavaclientwithsourcecodeisprovidedtohelpthecommunityrapidlydevelopapplicationsthat
    useAadhaarauthentication.ThisapplicationiswritteninJavaanddemonstratesvariousfeaturesofAadhaarauthentication.This
    applicationisprovidedonan"ASIS"basisandshouldnotbeconsideredasasupported,productionstrengthsoftware.Thischaptercovers
    detailsaboutdownloadingandsettingupdevelopmentenvironment.
    SampleJavaapplication(bothbinaryandsourcecodezipfiles)totestAadhaarauthenticationcanbedownloadedfromhere.

    SettingupDevelopmentEnvironment
    Whenyoudownloadthesourcedistributionusingdownlinkabove,youget"authclientsource1.5.zip".Followstepsbelowtosetupthe
    clientasadevelopmentenvironment.ThesedirectionsareforWindowsOS.IfyouareusingLinuxorotherOS,youmaymakeappropriate
    modificationtotheinstructionsbelow.
    1.YouneedJava1.6.20orabove,ApacheMaven2.2.1orabove,andEclipseJavaIDEinstalledonyourcomputertosetup
    environmentbasedonthispage.YoucanusethesourcecodeandsetupenvironmentifyouwantitinotherIDEsandbuild
    environments.
    2.Unzip"authclientsource1.5.zip"intoadirectory.Youshouldnowseeadirectorynamed"authclientsource1.5"there
    3.Navigateto"authclientsource1.5"directory.Youshouldseethefollowinglisting.

    4.Within"CommandPrompt",changedirectory("cd")to"authclientsource1.5"
    5.Run"mvneclipse:eclipse"command.If"Maven\bin"isnotinpath,pleaseaddit.Otherwise"mvn"commandwillnotrun.
    6.Youshouldsee"BuildSuccessful"messagelikebelow.

    7.LaunchEclipseandcreateanewworkspace(orusecurrentworkspaceifyouprefer)
    8.Choose"File>Import"menu.Thislanuchesanimportdialog.
    9.Choose"ExistingProjectsintoWorkspace"optionandclick"Next"
    10.Click"Browse"buttonnextto"SelectRootDirectory"
    11.Navigateto"authclientsource1.5"andselectthedirectory
    12.Thiswilllist4projects"uidaiauthclient","uidaiauthxsdmodel","uidaibiometricintegrationapi",and"uidaisampleguiapp"

    13.Makesureallprojectsareselected.Seescreenbelow.

    14.Click"Finish"toimportall4projectsintoworkspace
    15.IfyouhaveprojectthatprovidesbiometricintegrationAPIimplementation,youwillhavetoaddittotheclasspathofthe"uidai
    sampleguiapp"project.Also,updatethevalueoffield,biometricAPIImplementationClass,intheSampleClientMainFrame.javato
    thevalueoftheclassthatimplementstheAPI.
    16.Select"SampleClientMainFrame.java"underproject"uidaisampleguiapp"(src/main/java/in/gov/uidai/auth/sampleappfolder)and
    choose"Run>RunCOnfigurations"menuorclick"Run"iconontoolbarandchoose"RunCOnfigurations".

    17.Click"NewLaunchConfiguration"icononlefttopcornerwithinthedialog.Thiscreatedanewdefaultrunconfigurationforthe
    sampleapplication.
    18.InordertouseIndiannamematching,itisrequiredthatthejavaappsruninUTF8characterencodingmode.Forthat,inJava,
    followingVMargumentshastobepassed"Dfile.encoding=UTF8".Within"RunConfigurations"doalog,addthistoVM
    arguments.

    19.Click"Run"buttononthebottomrightwithinthe"RunConfiguration"dialogtoruntheapplication.youshouldseethesample
    applicationGUIwindow.
    20.Choose"Edit>Preferences"menuoptionandensureyouchooseappropriatepathforpublickeyfileandkeystorefile(theyare
    availableunder"authclientsource1.5\uidaiauthclient\src\main\resources"folder.Ensurelicensekey,AUAcode,SubAUAcode
    areaslistedunder"TestingData"page.
    8.Enter"999999990019"in"AadhaarNumber"fieldand"ShivshankarChoudhury"inthe"Name"field.Additionaldataisavailable
    on"TestingData"page.
    9.Click"Authenticate"buttonatthebottomright

    10.Youshouldseeagreentickmarkwithinthe"AuthenticationStatus"field.Seethefollowingscreen

    11.Ifyouhaveissues,firstensureyouhavefollowedallstepscorrectly.Ifyoufacenetworkorconnectionerrors,pleasemakesureyour
    Internetconnectionisworkingwell.Iftestserver(auth.uidai.gov.in)isdownornotreachable,tryaftersometime.
    12.Ifnothingworks(!),pleasewritetothediscussiongroup.

    TestingData
    FollowingpageprovidedatanecessarytotestAadhaarauthentication.SeveraltestAadhaarnumbersareprovidedfortesting.If
    youareadeveloperhavingrealAadhaarnumber,youcanalsotestusingyourownAadhaarnumber.ToaddyourrealAadhaar
    numberintotestsystem,fillupthisform.Ifyouhavequestions,askusingthediscussiongroup.

    TestCodes
    TestURLs:(remembertoappendAUAcodeandfirsttwodigitsofAadhaarnumber)

    AuthURLhttp://auth.uidai.gov.in/1.6/<auacode>/<1stdigitofuid>/<2nddigitofuid>/<asalicensekey>
    eKYCURLhttp://developer.uidai.gov.in/kyc/1.0/<kuacode>/<1stdigitofuid>/<2nddigitofuid>/<ksalicensekey>
    OTPURLhttp://developer.uidai.gov.in/otp/1.6/<auacode>/<1stdigitofuid>/<2nddigitofuid>/<asalicensekey>
    BFDURLhttp://developer.uidai.gov.in/bfd/1.6/<auacode>/<1stdigitofuid>/<2nddigitofuid>/<asalicensekey>

    TestCodes:
    AUACode("ac"attribute):"public"
    SubAUACode("sa"attribute)"public"
    LicenseKey("lk"attribute):Youcanuseanyofthefollowinglicensekeysgivenbelow.Binarydistributionofsampleclientis
    shippedwiththefirstonebelow.
    AUALicenseKey:MBFWjkJHNFfLidl8oOHtUwgL5p1ZjDbWrqsMEVEJLVEDpnlNj_CZTgallowsusageofPI,PA,
    PFA,BIOFMR,BIOFIR,BIOIIR,OTP,PIN,IndianLanguage,eKYC
    ASALicenseKey:MH4hSkrev2h_Feu0lBRC8NIiqzT299_qPSSstOFbNFTwWrie29ThDo
    PublickeycertificateSeechapteroncertificates(remembertouseStaging/Testcertificatefortestingandproductioncertificatefor
    production)
    Keystorefordigitalsignaturefor"public"AUAKeystoreinp12fileformat(keystorePassword:"public",Alias:"public")

    TestData
    Note:Followingdataarepurelyfortestingandarenotofrealresidents.NeitherAadhaarnumbersnordemographic/biometricdataare
    realandareONLYavailableintestsystem.Anyresemblancetorealpeopleispurelycoincidental!
    Samplebiometricdatagivenbelowis"base64"encoded.Justaddtheencodedstringto"bio"element(removethenewlinewhenyouare
    cuttingthedata).ALLTESTRECORDSHAVESAMEBIOMETRIC.

    bio=Rk1SACAyMAAAAADkAAgAyQFnAMUAxQEAAAARIQBqAGsgPgCIAG0fRwC2AG2dSQBVAIUjPABuALShMgCxAL0jMAByAM6lPgCmAN2
    kQQBwAN8qNAB1AN8mPADJAOcgOQA8AOorNABoAOomOQC+AO2fMQDFAPqlSgCvAP8lRQB8AQuhPABwAQ4fMgB7ASqcRADAAS4iNwCkAT
    MeMwCFATYeNwBLATYwMQBWATcoMQCkATecMQBEATwyMgBJAUciQQCkAU8cNQB9AVQWNgCEAVUVRACoAVgYOgBBAV69NgCsAWeYNwAA

    FollowingarethetestUIDsandtheirdemographicdata.Allofthemhavesamebiorecordasgivenabove.IfyouhaveyourownAadhaar
    number(realone)thenyoucanusethattotesttoo.

    uid=999999990019
    name=ShivshankarChoudhury
    dob=13051968
    dobt=V
    gender=M
    phone=2810806979
    email=sschoudhury@dummyemail.com
    street=12MaulanaAzadMarg
    vtc=NewDelhi
    subdist=NewDelhi
    district=NewDelhi
    state=Newdelhi
    pincode=110002
    uid=999999990026
    name=KumarAgarwal
    dob=04051978
    dobt=A
    gender=M
    phone=2314475929
    email=kma@mailserver.com
    building=IPP,IAP
    landmark=OppRSEBWindow
    street=5AMadhuban
    locality=VeeraDesaiRoad
    vtc=Udaipur
    district=Udaipur
    state=Rajasthan
    pincode=313001
    uid=999999990042
    name=FatimaBedi
    dob=30071943
    dobt=A
    gender=F
    phone=2837032088
    email=bedi2020@mailserver.com
    building=K3ARampurGarden
    vtc=Bareilly
    district=Bareilly
    state=UttarPradesh
    pincode=243001
    uid=999999990057
    name=RohitPandey
    dob=08071985
    dobt=A
    gender=M
    phone=2821096353
    email=rpandey@mailserver.com
    building=603/4Vindyachal
    street=7THRoadRajaWadi
    locality=NeelkanthValley
    poname=Ghatkopar(EAST)
    vtc=Mumbai
    district=Mumbai
    state=Maharastra
    pincode=243001

    uid=999922220032
    name=AnishaJayKapoor
    gender=F
    dob=01011982
    dobt=V
    building=2B203
    street=14MainRoad
    locality=Jayanagar
    district=Bangalore
    state=Karnataka
    pincode=560036
    uid=999922220013
    name=NitinKumarDixit
    gender=M
    dob=02031972
    dobt=V
    building=1190/4
    street=5thCross,26thMain
    locality=JPNagar,phase1
    district=Bangalore
    state=Karnataka
    pincode=560078
    uid=999922220021
    name=SwamynathanSrini
    gender=M
    dob=23011947
    dobt=V
    building=342
    street=KGLane
    locality=SarjapurArea
    district=Bangalore
    state=Karnataka
    pincode=560035
    uid=999922220045
    name=JohnAlexDoe
    gender=M
    dob=12091973
    dobt=V
    building=78BlockD
    street=SarjapuraRoad
    locality=Sarjapura
    district=Bangalore
    state=Karnataka
    pincode=560081
    uid=999922220050
    name=AliAkbar
    gender=M
    dob=14101962
    dobt=V
    building=34
    street=RajMainStreet
    locality=KRpuram
    district=Bangalore
    state=Karnataka
    pincode=560078
    uid=999922220066
    name=AmyJohn
    gender=F
    dob=11071987
    dobt=V
    building=A303
    street=14thCross
    locality=BTMIILayout
    district=Bangalore
    state=Karnataka
    pincode=560035
    uid=999922220078
    name=KishoreShah
    gender=M
    dob=21051987

    dob=21051987
    dobt=V
    building=23Level1
    street=ChurchStreet
    locality=CentralArea
    district=Bangalore
    state=Karnataka
    pincode=560076

    CertificateDetails
    AadhaarauthenticationrequirestheidentitydataoftheresidentwithintheXML(PIDblock)tobeencrypted.AES256sessionkeyis
    encryptedusingUIDAI's2048publickey.Thispagecontainsallcertificatesavailablefortheecosystem.

    ProductionPublicKeyCertificates
    Note:Latestproductionpublickeycertificate(forPIDEncryption)willalwaysbeavailableunderlink:
    https://developer.uidai.gov.in/site/sites/default/files/uidai_auth_prod.cer
    Followingtablelistsoutallproductionpublickeycertificatesissuedsofarwiththeirexpirydate.
    CertificateDetail

    ExpiryDate

    uidai_auth_prod.cer(Latest)

    27Feb2017

    CertificateDetail

    ExpiryDate

    uidai_auth_prod_old.cer(old)

    5Aug2015

    CertificateDetail

    ExpiryDate

    uidai_auth_prod_old.cer(old)

    3Oct2013

    UIDAIDigitalSignature:ForvalidatingsignatureintheUIDAIresponsexml,youarerequestedtomakeuseofthesignaturepublic
    keyattachedbelow.(NotrequiredifyouarenotvalidatingsignaturesinAPIresponsesorusingthetrustrootvalidationfor
    validatingtheUIDAIresponsexmlsignature)

    CertificateDetail

    ExpiryDate

    uidai_auth_sign_prod.cer(Latest)

    10June2017

    CertificateDetail

    ExpiryDate

    uidai_auth_sign_prod_old.cer(old)

    29Jul2015

    Staging/TestingPublicKeyCertificates
    Note:Lateststaging/testingpublickeycertificatewillalwaysbeavailableunderlink
    https://developer.uidai.gov.in/site/sites/default/files/uidai_auth_stage.cer
    Followingtablelistsoutallstaging/testingpublickeycertificatesissuedsofarwiththeirexpirydate.

    CertificateDetail

    ExpiryDate

    uidai_auth_stage.cer(Latest)

    16Sept2020

    CertificateDetail

    ExpiryDate

    uidai_auth_stage_old.cer(old)

    22Sept2015

    PreProductionSignature/EncryptionPublicKeyCertificates
    PleasefindthekeysbelowforvalidatingtheDigitalSignatureofUIDAIresponseXML,andencryptingthePIDblockofrequestXMLin
    PreProductionEnvironment.
    CertificateDetail

    ExpiryDate

    uidai_auth_sign_preprod.cer(Latest)

    17June2017

    CertificateDetail

    ExpiryDate

    uidai_auth_encrypt_preprod.cer(Latest)

    05November2017

    DevelopinginC/C++
    NOTE:ThiscodeiscontributedbyGeodesicteamandisavailableonasisbasis.SampleCapplicationtotestAadhaar
    authenticationcanbedownloadedfromhere.
    AsampleCclientwithsourcecodeisprovidedtohelpthecommunityrapidlydevelopapplicationsthatuseAadhaarauthentication.This
    sampleapplicationiswritteninCfortheGeoAmidadeviceanditdemonstratesvariousfeaturesofAadhaarauthentication.This
    applicationisprovidedonan"ASIS"basisandshouldnotbeconsideredasasupported,productionstrengthsoftware.Thischaptercovers
    detailsaboutdownloadingandsettingupdevelopmentenvironment.

    SettingupDevelopmentEnvironment
    Whenyoudownloadthesourcedistributionfromthelinkabove,youget"cauthclientsource1.5.zip".Pleasefollowstepsbelowtosetup
    theclientasadevelopmentenvironment.ThesedirectionsareforLinuxOSandARMdevices.IfyouareusingWindowsorotherOS,you
    maymakeappropriatemodificationtotheinstructionsbelow.
    1.Unzip"cauthclientsource1.5.zip"intoadirectory.Youshouldnowseeadirectorynamed"cauthclientsource1.5"there
    2.Navigateto"cauthclientsource1.5"directory.Youshouldseethefollowinglisting.

    3.DependencyLibraries:
    libxml>=2.7.6
    openssl>=0.9.8
    DigitalSignatureGenerationrequiresanadditionallibraries:
    libXslt>=1.1.24
    libxmlsec1>=1.2.9
    4.ThebelowDEFINESvaluesareneedtomodifybeforecompiling:
    LICENCE_KEY
    UIDAI_PUBLIC_CERITIFICATE
    AUA_PRIVATE_CERTIFICATERequiredforDigitalSignature
    5.AuthXmlAPIdocumentationisavailableunderthedocfolder


    6.Youmayuseanyeditortool(Eclipse,emacsorvim)installedonyourdevelopmentmachineandsetuptheenvironmentvariable,
    LD_LIBRARY_PATHinordertofindlibraries.
    7.Within"CommandPrompt",changedirectory("cd")to"cauthclientsource1.5"
    8.SampleMakefileincludedinthebuildforGeoamidaandgccversion.
    CC=armxscalelinuxgnueabigcc
    CFLAGS=D__XMLSEC_FUNCTION__=__FUNCTION__DXMLSEC_NO_XSLT=1DXMLSEC_NO_XKMS=1DXMLSEC_CRYPTO_DYNAMIC_LOADING=1
    DXMLSEC_CRYPTO=\"openssl\"DUNIX_SOCKETSDXML_SECURITY
    LDFLAGS=lwebcamlbiometriclautilslxml2lcurllcryptolanetlxmlsec1g

    9.Onasuccessfulmake,youshouldseetheexecutablefileAuthClient.
    10.RunAuthClient.ItwillgenerateAuthXML.Duringcompilationifthe"DXML_SECURITY"flagisset,thentheDigitalSignature
    willbecreatedalongwithAuthXml.

    APIErrorHandling
    ThispageprovidesguidelinesforhandlingAPIerrorswithintheapplication.Whiledevelopingapplications,AUAsneedtodecidehowto
    handletheerrorsgracefullyandprovideresident/operatorfriendlymessages.Simplyshowingtheerroronscreenisnothelpful.This
    documentisanattempttoprovideguidelinesfordoingbettererrorhandling.
    FollwingtabledesribesAPIerrorcodes,suggestionforhowtohandleit,possiblemessagetouser,andprobablereasonsfortheerror.
    API
    Error
    Code

    100

    Description

    Pi(basic)attributes
    ofdemographicdata
    didnotmatch

    ProvisionRequiredinthe
    Application

    Usershouldbeallowedtore
    enterhis/herpersonal
    informationattributeslike
    name,lname,gender,dob,
    dobt,age,phone,email
    whicheverisusedfor
    authenticationinapplication

    Suggested
    Messagetothe
    User

    Suggested
    instructionstothe
    user

    Pleasereenter
    your<name,
    lname,gender,
    dob,dobt,age,
    phone,email>.

    Operatorshouldre
    entercorrectdetails
    personalinformation
    aspertheAadhaar
    letter.

    ProbableReasons

    Oneormorepersonal
    informationattributesnot
    matching.

    Ensurecorrect
    AadhaarInformation
    isentered.

    200

    Pa(address)
    attributesof
    demographicdatadid
    notmatch

    Usershouldbeallowedtore
    enterhis/herpersonaladdress
    attributelikeco(careof),
    house,street,lm(landmark),
    loc(locality),vtc,subdist,dist,
    state,pc(postalpincode),po
    (postoffice)whicheverisused
    forauthenticationin
    application

    Pleasereenter
    your<co(care
    of),house,
    street,lm(land
    mark),loc
    (locality),vtc,
    subdist,dist,
    state,pc(postal
    pincode),po
    (postoffice)>.

    Operatorshouldre
    entercorrectdetails
    personalinformation
    aspertheAadhaar
    letter.

    Oneormorepersonal
    addressattributesnot
    matching.

    Ensurecorrect
    AadhaarInformation
    isentered.

    300

    Biometricdatadidnot
    match

    Usershouldbeallowedtogive Pleasegive
    hisfingerprintsnnumberof yourfinger
    times.Nshouldbe
    printsagain.
    configurableandshouldbeset
    asperapplicationrequirement.
    (E.g.ForBankingApplications
    itcanbesetatamaximumof5
    times)

    Ensurecorrect
    Aadhaarnumberis
    enteredandtry
    authenticatingagain
    withanotherfinger
    ensurefingeris
    placedcorrectly
    ensurefingersare
    cleanensurefingeris
    notverydryensure
    fingerprintscanneris
    clean.

    Fingerprintisnotgiven
    properly,scannerhassome
    dustaccumulated,fingers
    werewet,positionoffinger
    notappropriate,scanned
    fingerNFIQnotgood

    Afterrepeatedfailure,
    iftheresidentis
    genuine,exception
    handlingprovision
    wouldneedtobe
    followedtoprovide
    service.

    PleasecontactUIDAI
    helpdesktoinform
    abouttheissueandto
    understandthesteps
    fortheupdationof
    thebiometric
    informationinCIDR.

    310

    Duplicatefingersused

    Applicationshouldprompt
    usertotryagainwithdistinct
    fingers.

    Pleasetryagain Operatorshould
    withdistinct
    insurethatthe
    fingers.
    residentisproviding
    distinctfingers(two
    differentfingers)for
    twofinger
    authentication.

    Erroroccurswhensame
    fingerissentastwoor
    moreseparaterecords
    withinsamerequest.For
    twofingerauth,ifresident
    putssamefingeragain,
    thenthishappens.

    311

    DuplicateIrisesused

    Applicationshouldprompt
    usertotryagainwithdistinct
    irises.

    Pleasetryagain Operatorshould
    withdistinct
    ensurethatthe
    irises.
    residentisproviding
    distinctirises(two
    differentirises)for
    authentication.

    Erroroccurswhensame
    irisissentastwoormore
    separaterecordswithin
    samerequest.

    312

    FMRandFIRcannot
    beusedinsame
    transaction

    Applicationshouldensurethat
    authenticationrequestdoesnot
    mixFMRandFIRinthesame
    transactione.g.incaseoftwo
    fingerauthentication,datafor
    twodistinctfingersshould
    eitherbesentinFMRformat
    orinFIRformat.

    Technical
    Exception
    <No>

    Contacttechnical
    helpdesk.

    Authpacketcannotmix
    fingerprint"image"records
    (FIR)andfingerprint
    "minutiae"records(FMR).
    AUAappshouldchoose
    eitheroneoranother.FMR
    isrecommended.

    313

    SingleFIRrecord
    containsmorethanone
    finger

    Applicationshouldprompt
    usertotryagainbyplacing
    singlefinger.

    Pleasetryagain
    byplacing
    Singlefinger
    onthe
    authentication
    device.

    Operatorshould
    ensurethatthe
    residentisproviding
    singlefingerfor
    authentication.

    AsperISOspec,oneFIR
    cancontainoneormore
    fingerimageswithinitself
    (likeslap,etc).UIDAI
    currentlysupportssingle
    fingerrecordonly.Ifthere
    isarequirementtosend2
    fingers,2different
    biometricrecordsshouldbe
    sent.

    314

    NumberofFMR/FIR
    shouldnotexceed10

    Applicationshouldensurethat
    oneauthrequestshouldnot
    containmorethan10FMR/FIR
    records.

    AuthRequesthasmore
    than10fingerrecords

    315

    NumberofIIRshould
    notexceed2

    Applicationshouldensurethat
    oneauthrequestshouldnot
    containmorethan2IIR
    records.

    AuthRequesthasmore
    than2irisrecords

    400

    "OTP"validationfailed Applicationshouldhave
    provisionforallowinguserto
    provideOTPvalueagainand
    aftersomeretries
    (configurable)optionto
    generateOTPagain.

    Pleaseprovide
    correctOTP
    value.

    Iftherearerepeated
    IncorrectOTPvalueis
    failuresuseris
    entered.Inputnotmatching
    advisedtogenerate
    withthevalueinCIDR.
    newOTPandsend
    theauthentication
    requestusingthenew
    OTP.

    401

    "Tkn"validationfailed

    Applicationshouldderivethe
    valueoftkn(currentlyonly
    mobilenumber)fromnetwork.
    Thiselementismeantforself
    servicetransationsonmobile
    (SMS/USSD,etc)whereAUA
    derivesthemobilenumber
    fromthenetworkproviderand
    passesitonaspartofAPIto
    useitasafactor.

    Provided"Tkndetailsare
    notmatchingwith
    registeredvaluesinCIDR.

    500

    InvalidSkeyencryption

    Applicationshouldnothave
    hardcodeddigitalcertificate
    information.Itshouldbe
    configurable.

    Technical
    Exception
    <No>

    Contacttechnical
    helpdesk.

    Useofwrongdigital
    certificateforencryptionof
    AES256Key(session
    key).

    Note:
    Applicationcan
    throwAuth
    APIerrorcode
    numberon
    screen.Sothat
    contactcentre
    orapplication
    support
    helplinecan
    understandthe
    reason.

    501

    Invalidvalueforci
    attributeinSkey
    element

    Applicationshouldnothave
    Technical
    hardcodedciattributevalue. Exception<>
    Itshouldbeconfigurable.

    Ensurethatexpirydateof
    UIDAIcertificateusedfor
    encryptionofSkeyis
    specifiedascivalue.

    502

    InvalidPidEncryption

    Applicationshoulddo
    extensivetestingusingUIDAI
    TestAuthServicetoensure
    compliancewithauthAPI.

    Technical
    Exception
    <No>

    EnsurethatcorrectAES
    encryptionhasbeenused.

    Applicationshoulddo
    extensivetestingusingUIDAI
    TestAuthServicetoensure
    compliancewithauthAPI.

    Technical
    Exception
    <No>

    503

    InvalidHMac
    encryption

    EnsurethatAESkeyused
    forencryptionofPid
    XMLwasencryptedand
    specifiedasvalueforSkey.

    EnsurethatcorrectAES
    encryptionhasbeenused.
    EnsurethatAESkeyused
    forencryptionofHmac

    wasencryptedand
    specifiedasvalueforSkey.
    EnsurethatsameAESkey
    isusedforencryptionof
    PidandHmac.
    504

    Sessionkeyre
    initiationrequireddue
    toexpiryorkeyoutof
    sync

    Applicationshouldhavea
    provisiontosendfullsession
    keyandinitiateanewsession
    incaseofsuchfailure.

    Technical
    Exception
    <No>

    Pleasetryagain.

    WhenSynchronized
    SessionKeyschemeis
    used,thiscanhappenif
    eithersessionisexpired
    (currentlyconfiguredto
    max4hrs)orifthekey
    goesoutofsync.

    505

    SynchronizedSkey
    usageisnotallowed

    Applicationshouldusefull
    skey

    Technical
    Exception
    <No>

    Switchtofullskey
    scheme

    ThishappenswhenAUA
    doesnothaveprivilageto
    useSSKscheme

    510

    InvalidAuthXML
    format

    ApplicationAuthentication
    requestshouldcomplyto
    AuthenticationAPIlatest
    versionandapplicationshould
    validateitsstructurebefore
    sendingittoCIDRfor
    authentication.

    Technical
    Exception
    <No>

    Pleaseensurethatthe
    latestrecommended
    APIisusedfor
    application
    development.Refer
    UIDAIwebsitefor
    thelatestversionof
    API.

    Noncompliancewith
    supportedAuthentication
    APIversionstructurein
    CIDR.

    Ifthisdoesnot
    resolvetheissuethan
    pleasecontact
    technicalhelpdesk.

    511

    InvalidPIDXML
    format

    ApplicationAuthentication
    requestshouldcomplytoPID
    XMLformatdefinedin
    AuthenticationAPIlatest
    versionandstructural
    validationshouldbedone
    beforeencryptionofPID
    XML.

    Technical
    Exception
    <No>

    Pleaseensurethatthe
    latestrecommended
    APIisusedfor
    application
    development.Refer
    UIDAIwebsitefor
    thelatestversionof
    API.

    Noncompliancewith
    supportedAuthentication
    APIversionstructurein
    CIDR.

    Ifthisdoesnot
    resolvetheissuethan
    pleasecontact
    technicalhelpdesk.

    520

    Invaliddevice

    Applicationshouldensurethat Technical
    tidattributeinAuthXML
    Exception
    hasvaluepublic
    <No>

    521

    InvalidFingerdevice
    (fdcinMetaelement)

    Applicationshouldobtain
    propercodefromfingerprint
    sensorvendoranduseit

    522

    InvalidIrisdevice(idc
    inMetaelement)

    Applicationshouldobtain
    propercodefromirissensor
    vendoranduseit

    Usinganyothervalueother
    thanpublic(alllower
    case,nospacesorspecial
    char)willresultinthis
    error.

    FDCcodesareassignedas
    partofcertificationand
    applicationdeveloper
    shoulduseproperfdccode
    givenbythefingerprint
    sensor/extractorvendor

    IDCcodesareassignedas
    partofcertificationand
    applicationdeveloper
    shoulduseproperidccode

    Technical
    Exception
    <No>

    Technical
    Exception
    <No>

    givenbytheiris
    sensor/extractorvendor
    530

    Invalidauthenticator
    code

    Applicationshouldpassvalid
    AUAcodeinauthentication
    requestwhichisregistered
    withUIDAI.Valueofthiscode
    shouldbeconfigurable.

    Technical
    Exception
    <No>

    AUAcodeusedin
    Authenticationrequestis
    notvalid.
    or
    AUAcodeusedintheAuth
    URLisnotsameasthe
    AUAcodeusedintheAuth
    XML.

    540

    InvalidAuthXML
    version

    Applicationshouldpass
    Technical
    supportedvalidAPIversionin Exception
    authenticationrequest.Valueof <No>
    thisshouldbeconfigurable.

    APIversionusedinAuth
    XML(Authentication
    request)iseithernot
    supportedorinvalid.

    541

    InvalidPIDXML
    version

    Applicationshouldpass
    supportedvalidAPIPIDXML
    versioninauthentication
    request.Valueofthisshouldbe
    configurable.

    VersionofthePid
    elementused

    542

    AUAnotauthorizedfor Applicationshouldensurelink
    ASA.
    isinplacebetweenAUAASA
    beforesendingrequestto
    CIDR.

    Technical
    Exception
    <No>

    InthePIDXML
    (Authenticationrequest)is
    eithernotsupportedor
    invalid.

    Ensurethe
    Thiserrorwillbereturned
    authenticationrequest ifAUAandASAdonot
    isbeingsentthrough havelinkingintheportal
    theauthorizedASA
    aspertherecordsof
    UIDAI.
    or
    PleasecontactUIDAI
    helpdesktoreportthe
    issueandto
    understandfurther
    stepsfortheupdation
    ofASAAUA
    linkage.

    543

    SubAUAnot
    ApplicationshouldensureSub
    associatedwithAUA AUAisaddedandassociated
    withcorrectAUAbefore
    sendingrequesttoCIDR.

    Ensurethe
    authenticationrequest
    isbeingsentthrough
    theassociatedAUA
    aspertherecordsof
    UIDAI.
    or
    PleasecontactUIDAI
    helpdesktoreportthe
    issueandto
    understandfurther
    stepsfortheupdation
    ofASAAUA
    linkage.

    Thiserrorwillbereturned
    ifSubAUAspecifiedin
    saattributeisnotadded
    asSubAUAinportal

    550

    561

    InvalidUseselement
    attributes

    Requestexpired(Pid
    >tsvalueisolderthan
    NhourswhereNisa
    configuredthresholdin
    authenticationserver)

    Applicationshouldusevalid
    attributesdefinedinAPIfor
    <Uses>tagandvalidationon
    Authrequestshouldbedone
    beforesendingrequestto
    CIDR.

    Technical
    Exception
    <No>

    AUAapplicationshouldnot
    storePidblockandincaseof
    applicationwhichareusing
    thickclientthereshouldbea
    provisiontosyncupdatewith
    serveratstart.

    1.Incase
    of
    Device/Client
    based
    Application

    Thiserroristypically
    reportedifbtattribute
    hasbeenspecifiedbut
    bio=ninUseselement.
    btattributeisrequired
    onlyifbio=yinUses
    element.

    a.Either
    device
    date/timeis
    behindcurrent
    date/timeor
    requestisold.
    Pleasetry
    again.

    Invalidattributesusedin
    Usestag.

    Pleaseverifythatthe
    device/client
    date/timeis
    synchronisedwith
    IndianStandardTime
    (IST)andresendthe
    authentication
    request.

    EitherDevice/Client/Server
    date/timeisbehindcurrent
    oneoroldstoredpidis
    gettingsent.

    Pleaseverifythatthe
    device/client
    date/timeis
    synchronisedwith
    IndianStandardTime
    (IST)andresendthe
    authentication
    request.

    Device/Client/server
    date/timeisaheadthan
    currentdate/time.

    Userisrequiredto
    sendthe
    authenticationrequest
    onceagain.

    IfsameAuthXMLis
    sentmorethanonceto
    server,then,2ndand
    subsequentrequestswill
    failwiththiserror.

    2.Incase
    ofwebbased
    Application
    a.Technical
    Exception
    <No>

    562

    Timestampvalueis
    futuretime(value
    specifiedPid>tsis
    aheadofauthentication
    servertimebeyond
    acceptablethreshold)

    AUAapplicationshouldnot
    storePidblockandincaseof
    applicationwhichareusing
    thickclientthereshouldbea
    provisiontosyncupdatewith
    serveratstart.

    1.Incase
    of
    Device/Client
    based
    Application
    a.Either
    device
    date/timeis
    aheadcurrent
    date/timeor
    requestisold.
    Pleasetry
    again.
    2.Incase
    ofwebbased
    Application
    a.Technical
    Exception
    <No>

    563

    Duplicaterequest(this
    erroroccurswhen
    exactlysame
    authenticationrequest
    wasresentbyAUA)

    Applicationshouldaskuserto
    tryagain.

    Pleasesubmit
    yourrequest
    again.

    564

    HMACValidation
    failed

    Applicationshouldcreate
    HMACusingSHA256

    Technical
    Exception
    <No>

    HMACisnotcalculated
    usingAPIdefined
    algorithm

    CurrentLicensehas
    expired.

    Licensekeyusedin
    applicationisinvalid.

    565

    566

    Licensekeyhas
    expired

    Invalidlicensekey

    Applicationshouldhavea
    configurableLicensekey
    managementfeaturethrough
    whichonecanmanageKey
    withoutchangingapplication.

    Technical
    Exception
    <No>

    Applicationshouldhavea
    Licensekeymanagement
    featurethroughwhichonecan
    manageKeywithoutchanging
    application.

    Technical
    Exception
    <No>

    567

    Invalidinput(thiserror
    occurswhensome
    unsupportedcharacters
    werefoundinIndian
    languagevalues,
    lnameorlav)

    Applicationshouldhave
    Technical
    client/serverlevelchecksto
    Exception
    stopuserstoinputunsupported <No>
    characters.

    someunsupported
    characterswerefoundin
    Indianlanguagevalues,
    lnameorlavinAuth
    requestXML

    568

    UnsupportedLanguage

    Applicationshouldhave
    client/serverlevelchecksto
    restrictuserstoonlyselect
    languagefromAPIsupported
    localLanguage.

    Technical
    Exception
    <No>

    Valueoflangattributeis
    notfromthelistsupported
    byauthapi.

    Digitalsignature
    verificationfailed(this
    meansthat
    authenticationrequest
    XMLwasmodified
    afteritwassigned)

    Applicationshouldensure
    securityofdataendtoendie.
    Fromclient/devicetoCIDR
    serverbyusingappropriate
    communicationprotocol.

    Technical
    Exception
    <No>

    Authenticationrequest
    XMLwasmodifiedafterit
    wassigned.

    Invalidkeyinfoin
    digitalsignature(this
    meansthatcertificate
    usedforsigningthe
    authenticationrequest
    isnotvaliditiseither
    expired,ordoesnot
    belongtotheAUAor
    isnotcreatedbyawell
    knownCertification
    Authority)

    Applicationshouldhavean
    independentmodulefor
    signingAuthXMLand
    certificateshouldbestoredand
    manageoutsideofthe
    application.

    Technical
    Exception
    <No>

    Certificateusedforsigning
    theauthenticationrequest
    isnotvaliditiseither
    expired,ordoesnotbelong
    totheAUAorisnot
    createdbyawellknown
    CertificationAuthority

    Pleasechangeyour
    defaultPINthrough
    UIDAIupdation
    clientandresendyour
    authentication
    request.

    Thiserrorwillbereturned
    ifresidentisusingthe
    defaultPINwhichneedsto
    beresetbeforeusage.

    569

    570

    571

    PINRequiresreset(this
    errorwillbereturnedif
    residentisusingthe
    defaultPINwhich
    needstoberesetbefore
    usage)

    Pleasereset
    yourPINin
    UIDAI
    updation
    applicationand
    usenewPINin
    this
    application.

    572

    Invalidbiometric
    position(Thiserroris
    returnedifbiometric
    positionvaluepos
    attributeinBio
    elementisnot
    applicableforagiven
    biometrictypetype
    attributeinBio
    element.)

    Applicationshouldhaveclient Technical
    levelvalidationtochecktype Exception
    andcorrespondingvalidpos <no>
    valuesbeforecreatingPID
    block.

    Thiserrorisreturnedif
    biometricpositionvalue
    posattributeinBio
    elementisnotapplicable
    foragivenbiometrictype
    typeattributeinBio
    element

    573

    Piusagenotallowedas Applicationshouldhavea
    perlicense
    configurablebusinessrule
    whichcanrestricttheusageof
    PiattributebasedonAUA
    licenseauthorization.

    Technical
    Exception
    <No>

    Piusagenotallowedasper
    license

    574

    Pausagenotallowedas Applicationcanhaveaclient
    perlicense
    levelchecktorestrict/allow
    entryofpaattributeasper
    licenseofAUA.

    Technical
    Exception
    <No>

    Pausagenotallowedasper
    license

    575

    Pfausagenotallowed
    asperlicense

    Technical
    Exception
    <No>

    Pfausagenotallowedas
    perlicense

    576

    FMRusagenotallowed Applicationcanhaveaclient
    Technical
    asperlicense
    levelchecktorestrict/allow
    Exception
    entryofFMRattributeasper <No>
    licenseofAUA.

    FMRusagenotallowedas
    perlicense

    577

    FIRusagenotallowed
    asperlicense

    Applicationcanhaveaclient
    levelchecktorestrict/allow
    entryofFIRattributeasper
    licenseofAUA.

    Technical
    Exception
    <No>

    FIRusagenotallowedas
    perlicense

    578

    IIRusagenotallowed
    asperlicense

    Applicationcanhaveaclient
    levelchecktorestrict/allow
    entryofIIRattributeasper
    licenseofAUA.

    Technical
    Exception
    <No>

    IIRusagenotallowedas
    perlicense

    579

    OTPusagenotallowed
    asperlicense

    Applicationcanhaveaclient
    levelchecktorestrict/allow
    entryofOTPattributeasper
    licenseofAUA.

    Technical
    Exception
    <No>

    OTPusagenotallowedas
    perlicense

    580

    PINusagenotallowed
    asperlicense

    Applicationcanhaveaclient
    levelchecktorestrict/allow
    entryofPINattributeasper
    licenseofAUA.

    Technical
    Exception
    <No>

    PINusagenotallowedas
    perlicense

    Applicationcanhaveaclient
    levelchecktorestrict/allow
    entryofpfaattributeasper
    licenseofAUA.

    581

    Fuzzymatchingusage
    notallowedasper
    license

    Applicationcanhaveaclient
    Technical
    levelchecktorestrict/allow
    Exception
    entryofmsattributeinpi,pa <No>
    andpfaelementasperlicense
    ofAUA.

    Fuzzymatchingusagenot
    allowedasperlicense

    582

    Locallanguageusage
    notallowedasper
    license

    Applicationcanhaveaclient
    Technical
    levelchecktorestrict/allow
    Exception
    entryoflocallanguage
    <No>
    attributeinpi,paandpfa
    elementasperlicenseofAUA.

    Locallanguageusagenot
    allowedasperlicense

    584

    InvalidPincodein
    Metaelement

    Pincodeshouldhaveavalid
    value(inlovattribute)

    Technical
    Exception
    <No>

    Ifpincodevalueisnotone
    ofthevalidvaluesin
    UIDAIsystem,thiserror
    occurs

    585

    InvalidGeocodein
    Metaelement

    Geocodevaluemustbeavalid
    Technical
    lat.longvalueindecimal
    Exception
    formatasperspec(inlov
    <No>
    attribute)

    Ifgeocodedoesnothave
    properformatasperspec
    (decimalrepresentation
    withporecisionupto4
    decimalvaluesforlatand
    long),thiserroroccurs

    710

    MissingPidataas
    specifiedinUses

    Applicationshouldvalidatepid Technical
    blockbeforeencryptingdata
    Exception
    withAPIspecifiedPIDblock
    <No>
    structureandUseselement
    attributesvaluestoensurePID
    blockhavealltheelementsand
    attributes.Clientlevel
    validationshouldalsobeputto
    checkallmandatoryand
    conditionalfieldsofAPIXML.

    MissingPidataas
    specifiedinUses

    720

    MissingPadataas
    specifiedinUses

    Sameas710

    Technical
    Exception
    <No>

    MissingPadataas
    specifiedinUses

    721

    MissingPfadataas
    specifiedinUses

    Sameas710

    Technical
    Exception
    <No>

    MissingPfadataas
    specifiedinUses

    730

    MissingPINdataas
    specifiedinUses

    Sameas710

    Technical
    Exception
    <No>

    MissingPINdataas
    specifiedinUses

    740

    MissingOTPdataas
    specifiedinUses

    Sameas710

    Technical
    Exception
    <No>

    MissingOTPdataas
    specifiedinUses

    800

    Invalidbiometricdata

    AUAtoreviewbiometric
    devicebeingusedandwhether
    templatesareISOcompliant.

    Technical
    Exception
    <No>

    FMRvalueisnotISO
    compliantbadheaderor
    otherissuewithtemplates.

    FIR/IIRvalueisnot
    compliant,ortemplates
    couldnotbeextractedfor
    thegivenFIR/IIRfor
    matchingpurposes.

    810

    Missingbiometricdata
    asspecifiedinUses

    Sameas710

    Technical
    Exception
    <No>

    Missingbiometricdataas
    specifiedinUses

    811

    Missingbiometricdata
    inCIDRforthegiven
    Aadhaarnumber

    YourBiometric
    dataisnot
    availablein
    CIDR.

    Ensurecorrect
    Aadhaarnumberis
    enteredandtry
    authenticatingagain.

    Afterrepeatedfailure,
    iftheresidentis
    genuine,exception
    handlingprovision
    wouldneedtobe
    followedtoprovide
    service.

    PleasecontactUIDAI
    helpdesktoinform
    abouttheissueandto
    understandthesteps
    fortheupdationof
    biometricinformation
    inCIDR.

    812

    Residenthasnotdone
    BestFinger
    Detection.Application
    shouldinitiateBFD
    applicationtohelp
    residentidentifytheir
    bestfingers.See
    AadhaarBestFinger
    DetectionAPI
    specification.

    Applicationshouldmake
    provisontoinitiateBFD
    applicationbasedontheerror
    codetohelpresidentidentify
    theirbestfingers.

    Youhavenot
    donebest
    fingerdetection
    sokindly
    proceedwith
    theBFD
    processfor
    successful
    authentication.

    ReferAadhaarBest
    DetectionAPI
    specificationsfor
    detailsontheBFD
    process.

    Residenthasnotdone
    BestFingerDetection.

    820

    Missingoremptyvalue Sameas710
    forbtattributein
    Useselement

    Technical
    Exception
    <No>

    Missingoremptyvaluefor
    btattributeinUses
    element

    821

    Invalidvalueinthe
    Sameas710
    btattributeofUses
    element

    Technical
    Exception
    <No>

    Invalidvalueinthebt
    attributeofUseselement

    901

    Noauthenticationdata
    foundintherequest
    (thiscorrespondstoa
    scenariowhereinnone

    Applicationshouldvalidate
    Technical
    thatUsergiveatleastoneauth
    Exception
    factorbeforeencryptionofPID <No>
    block.

    AllfactorsofAuthare
    optional.Hence,itis
    possibletoattemptanauth
    withoutspecifyanyvalues

    oftheauthdata
    Demo,Pv,orBiosis
    present)

    foranyofthefactorsPi,
    Pa,Pfa,BioorPv.Ifnone
    oftheseelementshaveany
    valuethatcanbeusedfor
    authenticationpurposes,
    then,thiserrorwillbe
    reported.

    902

    Invaliddobvaluein
    thePielement(this
    correspondstoa
    scenarioswherein
    dobattributeisnotof
    theformatYYYYor
    YYYYMMDD,or
    theageofresidentis
    notinvalidrange)

    Applicationshouldhavea
    clientlevelchecktocheckdob
    dateformatandagebusiness
    rulesspecified(CurrentRuleis
    thatageshouldnotbelessthan
    0andgreaterthan150years)

    Pleaseenter
    dobin
    specifieddate
    formatorenter
    ageinspecified
    range.

    Reenterthedateof
    birthorageand
    resendanew
    authentication
    request.

    dobattributeisnotofthe
    formatYYYYor
    YYYYMMDD,orthe
    ageofresidentisnotin
    validrange.

    910

    Invalidmvvaluein
    thePielement

    Sameas710

    Technical
    Exception
    <No>

    911

    Invalidmvvaluein
    thePfaelement

    Sameas710

    Technical
    Exception
    <No>

    912

    Invalidmsvalue

    Sameas710

    Technical
    Exception
    <No>

    913

    BothPaandPfa
    arepresentinthe
    authenticationrequest
    (PaandPfaare
    mutuallyexclusive)

    Sameas710

    AttempttousePaandPfa
    bothinthesamerequest
    canresultinthiserror.

    930
    939

    Technicalerrorthatare
    internalto
    authenticationserver

    AUA/ASAshouldcallUIDAI
    techsupport.

    Technical
    Exception
    <No>

    UIDAIserversideissues.
    UIDAItechsupportto
    reviewthescenarioand
    takeappropriateaction.

    940

    UnauthorizedASA
    channel

    AUAshouldconsultASA.

    Technical
    Exception
    <No>

    941

    UnspecifiedASA
    channel

    AUAshouldconsultASA.

    Technical
    Exception
    <No>

    980

    Unsupportedoption

    AUAtoreviewtheauthclient
    tocheckwhetheranydev
    featureisbeingusedinprod

    Technical
    Exception
    <No>

    Currentlythiserrorisnot
    reported.Canbeusedin
    future.

    996

    AadhaarCancelled

    Resident

    Aadhaarisnoin
    authenticablestatus.

    shouldre
    enroll.

    **PleaseseeACTN
    attributeforactionableby
    theresident.
    997

    998

    999

    AadhaarSuspended

    InvalidAadhaar
    Number0rNon
    AvailabilityofAadhaar
    data

    Unknownerror

    AUAapplicationshouldhave
    mechanismtohandlethis
    scenarioasAadhaarnumberis
    validbutitsstatusisnotactive.

    YourAadhaar
    numberstatus
    isnotactive.
    Kindlycontact
    UIDAI
    Helpline.

    AUAapplicationshouldhavea
    clientlevelvalidationfor
    Aadhaarnumbervalidityie.
    shouldbe12digitsand
    conformtoVerhoeffalgorithm.

    Ensureyou
    haveentered
    correctAadhaar
    number.Please
    retrywith
    correct
    Aadhaar
    numberafter
    sometime.

    Ensureyouhave
    enteredcorrect
    Aadhaarnumber.
    Pleaseretrywith
    correctAadhaar
    numberafter
    sometime.

    Technical
    Exception
    <No>

    Pleasecontact
    authsupportteamof
    UIDAI

    Aadhaarisnotin
    Auhenticatablestatus.
    **PleaseseeACTN
    attributeforactionableby
    theresident.

    Ifclientlevelvalidations
    aredonethenAadhaar
    numberdoesnotexistin
    CIDR.Pleaseretrywith
    correctAadhaarnumber
    aftersometime.
    **PleaseseeACTN
    attributeforactionableby
    theresident.

    **ACTNCodes
    Error
    Code

    ACTN ActionableMessage

    996

    A401 Aadhaarcancelledbeingaduplicate.ResidentshallusevalidAadhaar.

    996

    A402 Aadhaarcancelledduetodisputedenrolment.ShallreenrolifresidentdoesnthaveavalidAadhaar.

    996

    A403 AadhaarcancelledduetotechnicalIssues.ResidentshallcontactUIDAIcontactcentre.

    996

    A404 Aadhaarcancelledduetodisputedenrolment(BE).ShallreenrolifresidentdoesnthaveavalidAadhaar.

    996

    A405 Aadhaarcancelledduetoerrorneousenrolment(Iris).ShallreenrolifresidentdoesnthaveavalidAadhaar.

    997

    A301 Aadhaarsuspendedduetoinactivity.ResidentshallfollowtheReactivationprocess.

    997

    A302

    AadhaarsuspendedduetoBiometricsintegrityissue.ResidentshallvisitPermanentEnrolmentCentrewith
    documentproofsforupdate.

    997

    A303

    AadhaarsuspendedduetoDemographicintegrityissue.ResidentshallvisitPermanentEnrolmentCentre/
    UIDAIwebsitewithdocumentproofsforupdate.

    997

    A304

    AadhaarsuspendedduetoAddressdispute.ResidentshallvisitPermanentEnrolmentCentrewithdocument
    proofsforupdate.

    997

    A305

    AadhaarsuspendedduetoPhotodispute.ResidentshallvisitPermanentEnrolmentCentrewithdocument
    proofsforupdate.

    997

    A306 AadhaarsuspendedduetoAgedispute.Residentshallupdatetheage.

    997

    A307 Aadhaarsuspendedsincechildhasnotupdatedbiometricsafterageof5.Residentshallupdatethebiometrics.

    ACTN ActionableMessage

    997

    A308

    997

    A309 Aadhaarislockedbyresident.ResidentshallfollowtheUnlockingprocess.

    998

    A201 Aadhaarnumberisincorrect.ResidentshallusecorrectAadhaar.

    998

    A202 Authenticationtemporarilynotavailable,residentshallretryaftersometime.

    Error
    Code

    Aadhaarsuspendedsinceresidenthasnotupdatedbiometricsafterageof15.Residentshallupdatethe
    biometrics.

    You might also like