Powered by Adobe Commerce 2.4.3

This extension is in our Payment category, and could affect the PCI compliance level of your store. It is the merchant’s responsibility to ensure the proper PCI compliance level of their store, as applicable by PCI regulations. The PCI Self-Assessment is one tool you can use when evaluating Payment extensions and how they may affect your PCI compliance level. For more information on Marketplace policies, please review the Marketplace Terms & Conditions.

Cardknox Payment Gateway

This is an Integration with a Third Party Service. Other charges and fees may be required to use this extension on your Store


Back to top

Cardknox is an omnichannel payment processing gateway that provides customized payment solutions to thousands of merchants in all major retail verticals. The gateway supports a wide variety of processors and platforms, and it utilizes proprietary Intelligent Routing technology to ensure smooth and uninterrupted transaction processing.

The Cardknox payment gateway extension for Magento 2 makes it easy for store owners to start accepting a variety of payment methods while continuing to take full advantage of Magento software. Upon integrating their Magento storefront with the Cardknox plugin, Magento users will be able to seamlessly process transactions through the Cardknox gateway. This includes transaction authorizations, captures, voids, and credit memos. 

Customers can benefit from Cardknox’s secure and frictionless technology when placing an order from the Magento storefront. Cardknox iFields is embedded into the checkout form via an iFrame so that the customer is able to enter in their payment information without being redirected to a new page. The customer’s payment method is tokenized before it is transmitted to Cardknox to ensure that the actual card number does not touch the Magento server. 

Users of the Cardknox plugin for Magento 2 can customize their experience, and that of their customers, with the help of several settings. Merchants can select whether they’d like transactions to always authorize only, or to authorize and capture. If the merchant chooses to authorize only, they will be able to capture their authorized sales manually by navigating to the invoice tab and invoicing the order. 

The Cardknox plugin for Magento 2 supports the secure storage of customer payment information. All payment data is stored with tokenization technology to ensure that transaction data is kept out of scope for PCI compliance. Upon enabling the payment vault, the merchant has the ability to select a customer and an associated payment method when manually entering in a sale in the backend. Additionally, once the feature is enabled, customers will have the option to save their payment information on file when placing an order. The customer can then select a saved payment method when placing a future order. As always, the actual card number is never saved—only the token is saved.


Account & Pricing

Additional fees apply and will vary depending on your needs. For pricing details, please visit our pricing page. A separate account is required to sign up. Installing this extension will not create an account.



  • Authorization only payment processing
  • Authorization and capture payment processing
  • Enable vault storage and save customer payment information
  • Advanced data tokenization
  • Apply saved payment information to a new sale
  • Void transactions (available only for transactions that have not been captured)
  • Issue full refunds and partial refunds in the credit memo tab
  • Capture authorized transactions when creating invoices
  • Set country restrictions on a transaction level


 Security Features:

Cardknox is a PCI DSS Level 1 compliant payment processor, and the Cardknox plugin for Magento meets SAQ A requirements. The plugin utilizes Cardknox iFields, which are iFrame fields that are embedded into the payment form so that a single-use token is generated for each transaction and provided to the Magento server, and then securely transmitted to the Cardknox gateway. Although the customer is not redirected when placing an order, their data is not entered directly into the Magento server because it is tokenized and transmitted directly to Cardknox through the use of iFields. Customer payment data can be stored securely on the Magento server if the store owner so desires. Payment data is stored using Cardknox’s robust tokenization technology in order to maintain PCI compliance. 


Processing Payment Methods

  • Pre-authorization
    • Authorizes funds on the customer’s credit card account. Funds are held pending transaction capture.
  • Capture
    • Captures existing authorized transactions for settlement upon invoicing and shipping.
  • Void
    • Allows you to cancel an existing transaction prior to transaction settlement.
  • Refund
    • Allows you to refund an already settled transaction. Full and partial refunds are supported.

Technical Specifications

Back to top

Seller profile

Cardknox Development, Inc.

Seller contact




Current Version


Adobe Commerce platform compatibility

Open Source (CE): 2.3 (current), 2.1 (obsolete), 2.2 (obsolete)


Beta Build


19 April, 2021


Extensions, Payments & Security, Payment Integration


Installation Guides

User Guides

License Type

GNU General Public License 3.0 (GPL-3.0)


Privacy Policy

Quality Report

Back to top

Installation & Varnish Tests


Coding Standard


Plagiarism Check


Malware Check


Marketing Review


Manual Testing


All tests were conducted on the latest versions of Adobe Commerce that existed for the compatible release lines at the moment of the extension submission. Latest versions of all other software were used, as applicable.

Release Notes

Back to top


  • Compatible with Open Source (CE) : 2.1 2.2 2.3
  • Stability: Beta Build
  • Description:

    1. Update to version 2.5.1905 of iFields
    2. Fix for null parsing in response
    3. Additional logging
    4. Partial credit memo should not close invoice
    5. Properly set reference number for refunds
    6. Fix for table prefixes when tokens are disabled
    7. Additional validation for Admin checkout


  • Compatible with Open Source (CE) : 2.1 2.2
  • Stability: Beta Build
  • Description:

    - validate checkout form before showing spinning wheel to avoid getting stuck at spinning wheel. (admin)
    - increase timeout for iFields to avoid timeouts when generating a single use token. (front end)
    - iFields version 2.3.1808.0101


  • Compatible with Open Source (CE) : 2.1 2.2
  • Stability: Beta Build
  • Description:

    - fixed bug if response does not return a expiration date.
    - fixed issue when merging JS files.
    - fixed UI to show card and cvv as required.
    - fixed bug to avoid overriding the AVS and CVV response when capturing online.
    - update batch number after capturing online.
    - updated installation guide.


  • Compatible with Open Source (CE) : 2.1 2.2
  • Stability: Beta Build
  • Description:

    1. require CVV on store front.
    2. added vault integration.
    3. fixed partial refund to use parent transaction id.


Back to top

The best place to start if you need help with a specific extension is to contact the developer. All Adobe Commerce developers have both a contact email and a support email listed.

Contact Vendor

Q & A

Back to top


Back to top