Get Started

Learn about how to activate your account and the security settings for your account.

Get Started with Cashfree

To get started with Cashfree,

  1. Visit the Cashfree website and click SIGN UP.

  2. Fill in the details and click SIGN UP. Learn more about our sign up process here.

  3. Sign in to the Merchant home page using your credentials.

  4. By default, you are in the production environment. Click Switch to Test to access the test environment. Use the test environment to familiarise yourself with the dashboard, explore how to integrate, and also use it to test the products before starting to use the products in the production environment.

Before you start transacting with your customers, you must activate your account.

Account Activation

You must activate your account to access the production environment. To activate the account, you must first fill in details about your business and upload the required documents. Follow the steps below:

  1. Sign in to the Merchant home page and click ACTIVATE on the desired product.

  2. Fill in the details and click SUBMIT. These details will be sent for verification.

After successful verification, you can access the production environment for your business transactions.

Learn more about the account activation here.

Account Security

To help you keep your account secure, below are a few recommendations from Cashfree:

  • Keep your Cashfree password secure Your password should be unique to Cashfree account and known only to you. We recommend you to not reuse this password for multiple services or websites. You can update your password in Account Settings.

  • Use Aliases/Users to provide access to your Cashfree account for other users You can provide others with access to your account with the desired permissions. You get complete visibility of their actions. We recommend you to not share your password with anyone.

  • Maintain the confidentiality of your API Keys It is unique to your account. Anyone who gets to know your API credentials can make an API request for your account. If you think your API Keys may be compromised, you can always generate new API Keys in Access Control.

  • Update Two-Factor authentication By default, as a mandatory security feature, SMS OTP is used for two-factor authentication while performing key actions on your merchant dashboard. You can enable an alternative mechanism in Two-Factor Authentication.

  • Enable Two-Factor Authentication on new devices/browsers We recommend you to enable two-factor authentication on logins from a new device or browser for every user of your account. You can enable this feature in Security Preferences.

  • Beware of phishing If you receive an email or SMS from us that you don't expect, then do not enter your password after clicking on the link. Generally, the phishing message might ask you to visit a link, download a file, complete a form, or open an attachment. Always check if the link has a cashfree.com domain and is HTTPS. To protect your system against automated attacks and malware, we recommend enabling automatic updates for your Operating System and Browser.

  • What to do if you suspect fraud Cashfree takes customer reports of fraudulent activity very seriously. If you think your account is compromised, or that a fraudster is actively using your account, then you should:

    • Contact Us If you suspect an attack, contact Cashfree Customer Support immediately or contact the Cashfree team at care@cashfree.com

    • Change your password You can block unauthorized user access by changing the password. If aliases/users have access to the account, their passwords should be changed. We recommend using a strong password with uppercase, lowercase, numbers, and special characters. You can change your password in Account settings. If you have forgotten your password, click here to reset it.

    • Delete and generate new API Keys Changing your password can prevent the fraudster from logging into the account, but they can still use the API if they have your API Keys. To prevent a fraudster from making an API request, you should remove all existing API Keys and generate new sets of API Keys. Anyone with the old API Keys will no longer be able to make API requests. Manage your API Keys in Access Control.