Skip to main content
This page is part of Merchant Account Setup. Back to Library Setup →
Apple Pay collects payment credentials from customers. You’ll also need a payment provider configured in Orchestra to process the transactions.
Requires: Apple Developer Program membership ($99/year)

1. Create a Merchant ID

  1. Sign in to your Apple Developer Account
  2. Go to Certificates, Identifiers & Profiles > Identifiers
  3. Click +, select Merchant IDs
  4. Enter a description and identifier (e.g., merchant.com.yourcompany.store)
  5. Click Register

2. Create Certificates

Select your Merchant ID and create both certificates: Payment Processing Certificate (encrypts payment data):
  1. Under Apple Pay Payment Processing Certificate, click Create Certificate
  2. Generate a CSR using Keychain Access (macOS)
  3. Upload the CSR and download the certificate
Merchant Identity Certificate (authenticates your server):
  1. Under Apple Pay Merchant Identity Certificate, click Create Certificate
  2. Generate a CSR and upload it
  3. Download and install the certificate
  4. Export as .p12 file from Keychain

3. Verify Your Domain

  1. In your Merchant ID settings, go to Merchant Domains > Add Domain
  2. Download the verification file
  3. Host it at https://yourdomain.com/.well-known/apple-developer-merchantid-domain-association
  4. Click Verify
The file must be served over HTTPS without redirects. Download the file only once. Repeated downloads generate new content.
Domain verification is required for Apple Pay to function. Without it, the Apple Pay button will appear but the payment sheet will close immediately when clicked.

4. Store in Orchestra

Store your credentials in the Orchestra Portal for use with the Payments Library.

Testing

Use Apple Pay Sandbox with test cards in Safari on macOS or iOS.

Next Steps

Store eWallet Account

Save your Apple Pay credentials in Orchestra

Apple Pay Guide

Implement Apple Pay in your integration