Vous êtes sur la page 1sur 25

AadhaarAuthenticationBasics

ThisbookwalksyouthroughAadhaarauthenticationbasicsandhelpsyoutestusingsampleauthenticationclientaswellassetup
developmentenvironmentusingthesourcecodeprovided.Clickonthechaptersbelowtonavigate.

Introduction
AadhaarauthenticationistheprocesswhereinAadhaarNumber,alongwithotherattributes,includingbiometrics,aresubmittedonlineto
theCIDRforitsverificationonthebasisofinformationordataordocumentsavailablewithit.Aadhaarauthenticationprovidesseveral
waysinwhicharesidentcanauthenticatethemselvesusingthesystem.Atahighlevel,authenticationcanbeDemographic
Authenticationand/orBiometricAuthentication.
Duringtheauthenticationtransaction,theresidentsrecordisfirstselectedusingtheAadhaarNumberandthenthedemographic/biometric
inputsarematchedagainstthestoreddatawhichwasprovidedbytheresidentduringenrolment/updateprocess.Fingerprintsintheinput
arematchedagainstallstored10fingerprints.

Note:InallformsofauthenticationtheAadhaarNumberneedstobesubmittedsothatauthenticationisreducedtoa1:1match.In
addition,Aadhaarauthenticationserviceonlyrespondswithayes/noandnoPersonalIdentityInformation(PII)isreturnedaspartofthe
response.
Aadhaarauthenticationenablesagenciestoverifyidentityofresidentsusinganonlineandelectronicmeanswheretheagencycollects
requiredinformationfromtheresidentalongwithresidentsAadhaarNumberandpassesthesametoUIDAIsystemsforverification.
AadhaarauthenticationserviceprovidesservicestoinstantlyverifytheidentityoftheresidentagainsttheavailabledatainCIDR.Based
ontheneedsoftheservice,differentidentifierscouldbeusedalongwithAadhaarNumber.Theseidentifierscouldbecombinationof
biometrics(suchasfingerprints,irisimpressions)and/ordemographicinformation(suchasName,Dateofbirth,Address)and/orasecret
PINorOTPnumberknownonlytotheresident.

AuthenticationAPI
AadhaarauthenticationserviceisexposedasstatelessserviceoverHTTPS.UsageofopendataformatinXMLandwidelyusedprotocol
suchasHTTPallowseasyadoptionanddeploymentofAadhaarauthentication.Tosupportstrongendtoendsecurityandavoidrequest
tamperingandmaninthemiddleattacks,itisessentialthatencryptionofdatahappensatthetimeofcaptureonthecapturedevice.
IfyouhavenotreadtheAadhaarAuthenticationSpecification(version1.5Rev1)document,it'simportantthatyoudonowbefore
proceeding!
Nextfewchapterstakesyouthroughdetailsonrunningsampleapplicationcode,settingupsourcecodewithinEclipse,andusageoftest
codesanddata.

RunningSampleApplication

UIDAIhascreatedafullyworkingsampleJavaclientapplicationtohelpthecommunityrapidlydevelopapplicationsthatuseAadhaar
authentication.ThisapplicationiswritteninJavaanddemonstratesvariousfeaturesofAadhaarauthentication.Thisapplicationisprovided
onan"ASIS"basisandshouldnotbeconsideredasasupported,productionstrengthsoftware.Thischaptercoversdetailsabout
downloading,installing,andrunningthesampleandsettingupdevelopmentenvironmentwiththesourcecode.
SampleJavaapplication(bothbinaryandsourcecodezipfiles)totestAadhaarauthenticationcanbedownloadedfromhere.

RunningSamplefromDistribution
Whenyoudownloadthebinarydistributionusingdownlinkabove,youget"authclientbin1.5.zip".Followstepsbelowtoinstallandrun
theclient.ThesedirectionsareforWindowsOS.IfyouareusingLinuxorotherOS,youmaymakeappropriatemodificationtobuildand
runtheclient.
1.YouneedJava1.6oraboveinstalledonyourcomputerandanInternetconnectiontorunthissample.
2.Unzip"authclientbin1.5.zip"intoadirectory.Youwillseethefollowingcontents.

3.Run"runclient.bat"torunthesampleapplication.
4.InordertouseIndiannamematching,itisrequiredthatthejavaappsruninUTF8characterencodingmode.Forthat,inJava,
followingVMargumentshastobepassed"Dfile.encoding=UTF8".Thisisalreadyaddedtothe"runclient.bat"file.
5.ThisopensacommandpromtaskingforOStype,enter1or2(basedonyourOS)andpressENTER.
6.Thisopensthesampleauthenticationclient.Seescreenshotbelow.

7.Click"Edit>Preferences"menutomakesureyouseefollowingscreenwithvalues.Ensurelicensekey,AUAcode,SubAUAcode
areaslistedunder"TestingData"page.


8.Nowyouarereadytotest!!
9.Enter"999999990019"in"AadhaarNumber"fieldand"ShivshankarChoudhury"inthe"Name"field.See"TestingData"pagefor
detailsontestdatafortestingvariouscombinations.
10.Click"Authenticate"buttonatthebottomright
11.Youshouldseeagreentickmarkwithinthe"AuthenticationStatus"field.Seethefollowingscreen

12.Ifyouhaveissues,firstensureyouhavefollowedallstepscorrectly.Ifyoufacenetworkorconnectionerrors,pleasemakesureyour
Internetconnectionisworkingwell.Iftestserver(auth.uidai.gov.in)isdownornotreachable,tryaftersometime.
13.Ifnothingworks(!),pleasewritetothediscussiongroup.

DevelopingusingSample
Asexplainedinpreviouschapter,sampleJavaclientwithsourcecodeisprovidedtohelpthecommunityrapidlydevelopapplicationsthat
useAadhaarauthentication.ThisapplicationiswritteninJavaanddemonstratesvariousfeaturesofAadhaarauthentication.This
applicationisprovidedonan"ASIS"basisandshouldnotbeconsideredasasupported,productionstrengthsoftware.Thischaptercovers
detailsaboutdownloadingandsettingupdevelopmentenvironment.
SampleJavaapplication(bothbinaryandsourcecodezipfiles)totestAadhaarauthenticationcanbedownloadedfromhere.

SettingupDevelopmentEnvironment
Whenyoudownloadthesourcedistributionusingdownlinkabove,youget"authclientsource1.5.zip".Followstepsbelowtosetupthe
clientasadevelopmentenvironment.ThesedirectionsareforWindowsOS.IfyouareusingLinuxorotherOS,youmaymakeappropriate
modificationtotheinstructionsbelow.
1.YouneedJava1.6.20orabove,ApacheMaven2.2.1orabove,andEclipseJavaIDEinstalledonyourcomputertosetup
environmentbasedonthispage.YoucanusethesourcecodeandsetupenvironmentifyouwantitinotherIDEsandbuild
environments.
2.Unzip"authclientsource1.5.zip"intoadirectory.Youshouldnowseeadirectorynamed"authclientsource1.5"there
3.Navigateto"authclientsource1.5"directory.Youshouldseethefollowinglisting.

4.Within"CommandPrompt",changedirectory("cd")to"authclientsource1.5"
5.Run"mvneclipse:eclipse"command.If"Maven\bin"isnotinpath,pleaseaddit.Otherwise"mvn"commandwillnotrun.
6.Youshouldsee"BuildSuccessful"messagelikebelow.

7.LaunchEclipseandcreateanewworkspace(orusecurrentworkspaceifyouprefer)
8.Choose"File>Import"menu.Thislanuchesanimportdialog.
9.Choose"ExistingProjectsintoWorkspace"optionandclick"Next"
10.Click"Browse"buttonnextto"SelectRootDirectory"
11.Navigateto"authclientsource1.5"andselectthedirectory
12.Thiswilllist4projects"uidaiauthclient","uidaiauthxsdmodel","uidaibiometricintegrationapi",and"uidaisampleguiapp"

13.Makesureallprojectsareselected.Seescreenbelow.

14.Click"Finish"toimportall4projectsintoworkspace
15.IfyouhaveprojectthatprovidesbiometricintegrationAPIimplementation,youwillhavetoaddittotheclasspathofthe"uidai
sampleguiapp"project.Also,updatethevalueoffield,biometricAPIImplementationClass,intheSampleClientMainFrame.javato
thevalueoftheclassthatimplementstheAPI.
16.Select"SampleClientMainFrame.java"underproject"uidaisampleguiapp"(src/main/java/in/gov/uidai/auth/sampleappfolder)and
choose"Run>RunCOnfigurations"menuorclick"Run"iconontoolbarandchoose"RunCOnfigurations".

17.Click"NewLaunchConfiguration"icononlefttopcornerwithinthedialog.Thiscreatedanewdefaultrunconfigurationforthe
sampleapplication.
18.InordertouseIndiannamematching,itisrequiredthatthejavaappsruninUTF8characterencodingmode.Forthat,inJava,
followingVMargumentshastobepassed"Dfile.encoding=UTF8".Within"RunConfigurations"doalog,addthistoVM
arguments.

19.Click"Run"buttononthebottomrightwithinthe"RunConfiguration"dialogtoruntheapplication.youshouldseethesample
applicationGUIwindow.
20.Choose"Edit>Preferences"menuoptionandensureyouchooseappropriatepathforpublickeyfileandkeystorefile(theyare
availableunder"authclientsource1.5\uidaiauthclient\src\main\resources"folder.Ensurelicensekey,AUAcode,SubAUAcode
areaslistedunder"TestingData"page.
8.Enter"999999990019"in"AadhaarNumber"fieldand"ShivshankarChoudhury"inthe"Name"field.Additionaldataisavailable
on"TestingData"page.
9.Click"Authenticate"buttonatthebottomright

10.Youshouldseeagreentickmarkwithinthe"AuthenticationStatus"field.Seethefollowingscreen

11.Ifyouhaveissues,firstensureyouhavefollowedallstepscorrectly.Ifyoufacenetworkorconnectionerrors,pleasemakesureyour
Internetconnectionisworkingwell.Iftestserver(auth.uidai.gov.in)isdownornotreachable,tryaftersometime.
12.Ifnothingworks(!),pleasewritetothediscussiongroup.

TestingData
FollowingpageprovidedatanecessarytotestAadhaarauthentication.SeveraltestAadhaarnumbersareprovidedfortesting.If
youareadeveloperhavingrealAadhaarnumber,youcanalsotestusingyourownAadhaarnumber.ToaddyourrealAadhaar
numberintotestsystem,fillupthisform.Ifyouhavequestions,askusingthediscussiongroup.

TestCodes
TestURLs:(remembertoappendAUAcodeandfirsttwodigitsofAadhaarnumber)

AuthURLhttp://auth.uidai.gov.in/1.6/<auacode>/<1stdigitofuid>/<2nddigitofuid>/<asalicensekey>
eKYCURLhttp://developer.uidai.gov.in/kyc/1.0/<kuacode>/<1stdigitofuid>/<2nddigitofuid>/<ksalicensekey>
OTPURLhttp://developer.uidai.gov.in/otp/1.6/<auacode>/<1stdigitofuid>/<2nddigitofuid>/<asalicensekey>
BFDURLhttp://developer.uidai.gov.in/bfd/1.6/<auacode>/<1stdigitofuid>/<2nddigitofuid>/<asalicensekey>

TestCodes:
AUACode("ac"attribute):"public"
SubAUACode("sa"attribute)"public"
LicenseKey("lk"attribute):Youcanuseanyofthefollowinglicensekeysgivenbelow.Binarydistributionofsampleclientis
shippedwiththefirstonebelow.
AUALicenseKey:MBFWjkJHNFfLidl8oOHtUwgL5p1ZjDbWrqsMEVEJLVEDpnlNj_CZTgallowsusageofPI,PA,
PFA,BIOFMR,BIOFIR,BIOIIR,OTP,PIN,IndianLanguage,eKYC
ASALicenseKey:MH4hSkrev2h_Feu0lBRC8NIiqzT299_qPSSstOFbNFTwWrie29ThDo
PublickeycertificateSeechapteroncertificates(remembertouseStaging/Testcertificatefortestingandproductioncertificatefor
production)
Keystorefordigitalsignaturefor"public"AUAKeystoreinp12fileformat(keystorePassword:"public",Alias:"public")

TestData
Note:Followingdataarepurelyfortestingandarenotofrealresidents.NeitherAadhaarnumbersnordemographic/biometricdataare
realandareONLYavailableintestsystem.Anyresemblancetorealpeopleispurelycoincidental!
Samplebiometricdatagivenbelowis"base64"encoded.Justaddtheencodedstringto"bio"element(removethenewlinewhenyouare
cuttingthedata).ALLTESTRECORDSHAVESAMEBIOMETRIC.

bio=Rk1SACAyMAAAAADkAAgAyQFnAMUAxQEAAAARIQBqAGsgPgCIAG0fRwC2AG2dSQBVAIUjPABuALShMgCxAL0jMAByAM6lPgCmAN2
kQQBwAN8qNAB1AN8mPADJAOcgOQA8AOorNABoAOomOQC+AO2fMQDFAPqlSgCvAP8lRQB8AQuhPABwAQ4fMgB7ASqcRADAAS4iNwCkAT
MeMwCFATYeNwBLATYwMQBWATcoMQCkATecMQBEATwyMgBJAUciQQCkAU8cNQB9AVQWNgCEAVUVRACoAVgYOgBBAV69NgCsAWeYNwAA

FollowingarethetestUIDsandtheirdemographicdata.Allofthemhavesamebiorecordasgivenabove.IfyouhaveyourownAadhaar
number(realone)thenyoucanusethattotesttoo.

uid=999999990019
name=ShivshankarChoudhury
dob=13051968
dobt=V
gender=M
phone=2810806979
email=sschoudhury@dummyemail.com
street=12MaulanaAzadMarg
vtc=NewDelhi
subdist=NewDelhi
district=NewDelhi
state=Newdelhi
pincode=110002
uid=999999990026
name=KumarAgarwal
dob=04051978
dobt=A
gender=M
phone=2314475929
email=kma@mailserver.com
building=IPP,IAP
landmark=OppRSEBWindow
street=5AMadhuban
locality=VeeraDesaiRoad
vtc=Udaipur
district=Udaipur
state=Rajasthan
pincode=313001
uid=999999990042
name=FatimaBedi
dob=30071943
dobt=A
gender=F
phone=2837032088
email=bedi2020@mailserver.com
building=K3ARampurGarden
vtc=Bareilly
district=Bareilly
state=UttarPradesh
pincode=243001
uid=999999990057
name=RohitPandey
dob=08071985
dobt=A
gender=M
phone=2821096353
email=rpandey@mailserver.com
building=603/4Vindyachal
street=7THRoadRajaWadi
locality=NeelkanthValley
poname=Ghatkopar(EAST)
vtc=Mumbai
district=Mumbai
state=Maharastra
pincode=243001

uid=999922220032
name=AnishaJayKapoor
gender=F
dob=01011982
dobt=V
building=2B203
street=14MainRoad
locality=Jayanagar
district=Bangalore
state=Karnataka
pincode=560036
uid=999922220013
name=NitinKumarDixit
gender=M
dob=02031972
dobt=V
building=1190/4
street=5thCross,26thMain
locality=JPNagar,phase1
district=Bangalore
state=Karnataka
pincode=560078
uid=999922220021
name=SwamynathanSrini
gender=M
dob=23011947
dobt=V
building=342
street=KGLane
locality=SarjapurArea
district=Bangalore
state=Karnataka
pincode=560035
uid=999922220045
name=JohnAlexDoe
gender=M
dob=12091973
dobt=V
building=78BlockD
street=SarjapuraRoad
locality=Sarjapura
district=Bangalore
state=Karnataka
pincode=560081
uid=999922220050
name=AliAkbar
gender=M
dob=14101962
dobt=V
building=34
street=RajMainStreet
locality=KRpuram
district=Bangalore
state=Karnataka
pincode=560078
uid=999922220066
name=AmyJohn
gender=F
dob=11071987
dobt=V
building=A303
street=14thCross
locality=BTMIILayout
district=Bangalore
state=Karnataka
pincode=560035
uid=999922220078
name=KishoreShah
gender=M
dob=21051987

dob=21051987
dobt=V
building=23Level1
street=ChurchStreet
locality=CentralArea
district=Bangalore
state=Karnataka
pincode=560076

CertificateDetails
AadhaarauthenticationrequirestheidentitydataoftheresidentwithintheXML(PIDblock)tobeencrypted.AES256sessionkeyis
encryptedusingUIDAI's2048publickey.Thispagecontainsallcertificatesavailablefortheecosystem.

ProductionPublicKeyCertificates
Note:Latestproductionpublickeycertificate(forPIDEncryption)willalwaysbeavailableunderlink:
https://developer.uidai.gov.in/site/sites/default/files/uidai_auth_prod.cer
Followingtablelistsoutallproductionpublickeycertificatesissuedsofarwiththeirexpirydate.
CertificateDetail

ExpiryDate

uidai_auth_prod.cer(Latest)

27Feb2017

CertificateDetail

ExpiryDate

uidai_auth_prod_old.cer(old)

5Aug2015

CertificateDetail

ExpiryDate

uidai_auth_prod_old.cer(old)

3Oct2013

UIDAIDigitalSignature:ForvalidatingsignatureintheUIDAIresponsexml,youarerequestedtomakeuseofthesignaturepublic
keyattachedbelow.(NotrequiredifyouarenotvalidatingsignaturesinAPIresponsesorusingthetrustrootvalidationfor
validatingtheUIDAIresponsexmlsignature)

CertificateDetail

ExpiryDate

uidai_auth_sign_prod.cer(Latest)

10June2017

CertificateDetail

ExpiryDate

uidai_auth_sign_prod_old.cer(old)

29Jul2015

Staging/TestingPublicKeyCertificates
Note:Lateststaging/testingpublickeycertificatewillalwaysbeavailableunderlink
https://developer.uidai.gov.in/site/sites/default/files/uidai_auth_stage.cer
Followingtablelistsoutallstaging/testingpublickeycertificatesissuedsofarwiththeirexpirydate.

CertificateDetail

ExpiryDate

uidai_auth_stage.cer(Latest)

16Sept2020

CertificateDetail

ExpiryDate

uidai_auth_stage_old.cer(old)

22Sept2015

PreProductionSignature/EncryptionPublicKeyCertificates
PleasefindthekeysbelowforvalidatingtheDigitalSignatureofUIDAIresponseXML,andencryptingthePIDblockofrequestXMLin
PreProductionEnvironment.
CertificateDetail

ExpiryDate

uidai_auth_sign_preprod.cer(Latest)

17June2017

CertificateDetail

ExpiryDate

uidai_auth_encrypt_preprod.cer(Latest)

05November2017

DevelopinginC/C++
NOTE:ThiscodeiscontributedbyGeodesicteamandisavailableonasisbasis.SampleCapplicationtotestAadhaar
authenticationcanbedownloadedfromhere.
AsampleCclientwithsourcecodeisprovidedtohelpthecommunityrapidlydevelopapplicationsthatuseAadhaarauthentication.This
sampleapplicationiswritteninCfortheGeoAmidadeviceanditdemonstratesvariousfeaturesofAadhaarauthentication.This
applicationisprovidedonan"ASIS"basisandshouldnotbeconsideredasasupported,productionstrengthsoftware.Thischaptercovers
detailsaboutdownloadingandsettingupdevelopmentenvironment.

SettingupDevelopmentEnvironment
Whenyoudownloadthesourcedistributionfromthelinkabove,youget"cauthclientsource1.5.zip".Pleasefollowstepsbelowtosetup
theclientasadevelopmentenvironment.ThesedirectionsareforLinuxOSandARMdevices.IfyouareusingWindowsorotherOS,you
maymakeappropriatemodificationtotheinstructionsbelow.
1.Unzip"cauthclientsource1.5.zip"intoadirectory.Youshouldnowseeadirectorynamed"cauthclientsource1.5"there
2.Navigateto"cauthclientsource1.5"directory.Youshouldseethefollowinglisting.

3.DependencyLibraries:
libxml>=2.7.6
openssl>=0.9.8
DigitalSignatureGenerationrequiresanadditionallibraries:
libXslt>=1.1.24
libxmlsec1>=1.2.9
4.ThebelowDEFINESvaluesareneedtomodifybeforecompiling:
LICENCE_KEY
UIDAI_PUBLIC_CERITIFICATE
AUA_PRIVATE_CERTIFICATERequiredforDigitalSignature
5.AuthXmlAPIdocumentationisavailableunderthedocfolder


6.Youmayuseanyeditortool(Eclipse,emacsorvim)installedonyourdevelopmentmachineandsetuptheenvironmentvariable,
LD_LIBRARY_PATHinordertofindlibraries.
7.Within"CommandPrompt",changedirectory("cd")to"cauthclientsource1.5"
8.SampleMakefileincludedinthebuildforGeoamidaandgccversion.
CC=armxscalelinuxgnueabigcc
CFLAGS=D__XMLSEC_FUNCTION__=__FUNCTION__DXMLSEC_NO_XSLT=1DXMLSEC_NO_XKMS=1DXMLSEC_CRYPTO_DYNAMIC_LOADING=1
DXMLSEC_CRYPTO=\"openssl\"DUNIX_SOCKETSDXML_SECURITY
LDFLAGS=lwebcamlbiometriclautilslxml2lcurllcryptolanetlxmlsec1g

9.Onasuccessfulmake,youshouldseetheexecutablefileAuthClient.
10.RunAuthClient.ItwillgenerateAuthXML.Duringcompilationifthe"DXML_SECURITY"flagisset,thentheDigitalSignature
willbecreatedalongwithAuthXml.

APIErrorHandling
ThispageprovidesguidelinesforhandlingAPIerrorswithintheapplication.Whiledevelopingapplications,AUAsneedtodecidehowto
handletheerrorsgracefullyandprovideresident/operatorfriendlymessages.Simplyshowingtheerroronscreenisnothelpful.This
documentisanattempttoprovideguidelinesfordoingbettererrorhandling.
FollwingtabledesribesAPIerrorcodes,suggestionforhowtohandleit,possiblemessagetouser,andprobablereasonsfortheerror.
API
Error
Code

100

Description

Pi(basic)attributes
ofdemographicdata
didnotmatch

ProvisionRequiredinthe
Application

Usershouldbeallowedtore
enterhis/herpersonal
informationattributeslike
name,lname,gender,dob,
dobt,age,phone,email
whicheverisusedfor
authenticationinapplication

Suggested
Messagetothe
User

Suggested
instructionstothe
user

Pleasereenter
your<name,
lname,gender,
dob,dobt,age,
phone,email>.

Operatorshouldre
entercorrectdetails
personalinformation
aspertheAadhaar
letter.

ProbableReasons

Oneormorepersonal
informationattributesnot
matching.

Ensurecorrect
AadhaarInformation
isentered.

200

Pa(address)
attributesof
demographicdatadid
notmatch

Usershouldbeallowedtore
enterhis/herpersonaladdress
attributelikeco(careof),
house,street,lm(landmark),
loc(locality),vtc,subdist,dist,
state,pc(postalpincode),po
(postoffice)whicheverisused
forauthenticationin
application

Pleasereenter
your<co(care
of),house,
street,lm(land
mark),loc
(locality),vtc,
subdist,dist,
state,pc(postal
pincode),po
(postoffice)>.

Operatorshouldre
entercorrectdetails
personalinformation
aspertheAadhaar
letter.

Oneormorepersonal
addressattributesnot
matching.

Ensurecorrect
AadhaarInformation
isentered.

300

Biometricdatadidnot
match

Usershouldbeallowedtogive Pleasegive
hisfingerprintsnnumberof yourfinger
times.Nshouldbe
printsagain.
configurableandshouldbeset
asperapplicationrequirement.
(E.g.ForBankingApplications
itcanbesetatamaximumof5
times)

Ensurecorrect
Aadhaarnumberis
enteredandtry
authenticatingagain
withanotherfinger
ensurefingeris
placedcorrectly
ensurefingersare
cleanensurefingeris
notverydryensure
fingerprintscanneris
clean.

Fingerprintisnotgiven
properly,scannerhassome
dustaccumulated,fingers
werewet,positionoffinger
notappropriate,scanned
fingerNFIQnotgood

Afterrepeatedfailure,
iftheresidentis
genuine,exception
handlingprovision
wouldneedtobe
followedtoprovide
service.

PleasecontactUIDAI
helpdesktoinform
abouttheissueandto
understandthesteps
fortheupdationof
thebiometric
informationinCIDR.

310

Duplicatefingersused

Applicationshouldprompt
usertotryagainwithdistinct
fingers.

Pleasetryagain Operatorshould
withdistinct
insurethatthe
fingers.
residentisproviding
distinctfingers(two
differentfingers)for
twofinger
authentication.

Erroroccurswhensame
fingerissentastwoor
moreseparaterecords
withinsamerequest.For
twofingerauth,ifresident
putssamefingeragain,
thenthishappens.

311

DuplicateIrisesused

Applicationshouldprompt
usertotryagainwithdistinct
irises.

Pleasetryagain Operatorshould
withdistinct
ensurethatthe
irises.
residentisproviding
distinctirises(two
differentirises)for
authentication.

Erroroccurswhensame
irisissentastwoormore
separaterecordswithin
samerequest.

312

FMRandFIRcannot
beusedinsame
transaction

Applicationshouldensurethat
authenticationrequestdoesnot
mixFMRandFIRinthesame
transactione.g.incaseoftwo
fingerauthentication,datafor
twodistinctfingersshould
eitherbesentinFMRformat
orinFIRformat.

Technical
Exception
<No>

Contacttechnical
helpdesk.

Authpacketcannotmix
fingerprint"image"records
(FIR)andfingerprint
"minutiae"records(FMR).
AUAappshouldchoose
eitheroneoranother.FMR
isrecommended.

313

SingleFIRrecord
containsmorethanone
finger

Applicationshouldprompt
usertotryagainbyplacing
singlefinger.

Pleasetryagain
byplacing
Singlefinger
onthe
authentication
device.

Operatorshould
ensurethatthe
residentisproviding
singlefingerfor
authentication.

AsperISOspec,oneFIR
cancontainoneormore
fingerimageswithinitself
(likeslap,etc).UIDAI
currentlysupportssingle
fingerrecordonly.Ifthere
isarequirementtosend2
fingers,2different
biometricrecordsshouldbe
sent.

314

NumberofFMR/FIR
shouldnotexceed10

Applicationshouldensurethat
oneauthrequestshouldnot
containmorethan10FMR/FIR
records.

AuthRequesthasmore
than10fingerrecords

315

NumberofIIRshould
notexceed2

Applicationshouldensurethat
oneauthrequestshouldnot
containmorethan2IIR
records.

AuthRequesthasmore
than2irisrecords

400

"OTP"validationfailed Applicationshouldhave
provisionforallowinguserto
provideOTPvalueagainand
aftersomeretries
(configurable)optionto
generateOTPagain.

Pleaseprovide
correctOTP
value.

Iftherearerepeated
IncorrectOTPvalueis
failuresuseris
entered.Inputnotmatching
advisedtogenerate
withthevalueinCIDR.
newOTPandsend
theauthentication
requestusingthenew
OTP.

401

"Tkn"validationfailed

Applicationshouldderivethe
valueoftkn(currentlyonly
mobilenumber)fromnetwork.
Thiselementismeantforself
servicetransationsonmobile
(SMS/USSD,etc)whereAUA
derivesthemobilenumber
fromthenetworkproviderand
passesitonaspartofAPIto
useitasafactor.

Provided"Tkndetailsare
notmatchingwith
registeredvaluesinCIDR.

500

InvalidSkeyencryption

Applicationshouldnothave
hardcodeddigitalcertificate
information.Itshouldbe
configurable.

Technical
Exception
<No>

Contacttechnical
helpdesk.

Useofwrongdigital
certificateforencryptionof
AES256Key(session
key).

Note:
Applicationcan
throwAuth
APIerrorcode
numberon
screen.Sothat
contactcentre
orapplication
support
helplinecan
understandthe
reason.

501

Invalidvalueforci
attributeinSkey
element

Applicationshouldnothave
Technical
hardcodedciattributevalue. Exception<>
Itshouldbeconfigurable.

Ensurethatexpirydateof
UIDAIcertificateusedfor
encryptionofSkeyis
specifiedascivalue.

502

InvalidPidEncryption

Applicationshoulddo
extensivetestingusingUIDAI
TestAuthServicetoensure
compliancewithauthAPI.

Technical
Exception
<No>

EnsurethatcorrectAES
encryptionhasbeenused.

Applicationshoulddo
extensivetestingusingUIDAI
TestAuthServicetoensure
compliancewithauthAPI.

Technical
Exception
<No>

503

InvalidHMac
encryption

EnsurethatAESkeyused
forencryptionofPid
XMLwasencryptedand
specifiedasvalueforSkey.

EnsurethatcorrectAES
encryptionhasbeenused.
EnsurethatAESkeyused
forencryptionofHmac

wasencryptedand
specifiedasvalueforSkey.
EnsurethatsameAESkey
isusedforencryptionof
PidandHmac.
504

Sessionkeyre
initiationrequireddue
toexpiryorkeyoutof
sync

Applicationshouldhavea
provisiontosendfullsession
keyandinitiateanewsession
incaseofsuchfailure.

Technical
Exception
<No>

Pleasetryagain.

WhenSynchronized
SessionKeyschemeis
used,thiscanhappenif
eithersessionisexpired
(currentlyconfiguredto
max4hrs)orifthekey
goesoutofsync.

505

SynchronizedSkey
usageisnotallowed

Applicationshouldusefull
skey

Technical
Exception
<No>

Switchtofullskey
scheme

ThishappenswhenAUA
doesnothaveprivilageto
useSSKscheme

510

InvalidAuthXML
format

ApplicationAuthentication
requestshouldcomplyto
AuthenticationAPIlatest
versionandapplicationshould
validateitsstructurebefore
sendingittoCIDRfor
authentication.

Technical
Exception
<No>

Pleaseensurethatthe
latestrecommended
APIisusedfor
application
development.Refer
UIDAIwebsitefor
thelatestversionof
API.

Noncompliancewith
supportedAuthentication
APIversionstructurein
CIDR.

Ifthisdoesnot
resolvetheissuethan
pleasecontact
technicalhelpdesk.

511

InvalidPIDXML
format

ApplicationAuthentication
requestshouldcomplytoPID
XMLformatdefinedin
AuthenticationAPIlatest
versionandstructural
validationshouldbedone
beforeencryptionofPID
XML.

Technical
Exception
<No>

Pleaseensurethatthe
latestrecommended
APIisusedfor
application
development.Refer
UIDAIwebsitefor
thelatestversionof
API.

Noncompliancewith
supportedAuthentication
APIversionstructurein
CIDR.

Ifthisdoesnot
resolvetheissuethan
pleasecontact
technicalhelpdesk.

520

Invaliddevice

Applicationshouldensurethat Technical
tidattributeinAuthXML
Exception
hasvaluepublic
<No>

521

InvalidFingerdevice
(fdcinMetaelement)

Applicationshouldobtain
propercodefromfingerprint
sensorvendoranduseit

522

InvalidIrisdevice(idc
inMetaelement)

Applicationshouldobtain
propercodefromirissensor
vendoranduseit

Usinganyothervalueother
thanpublic(alllower
case,nospacesorspecial
char)willresultinthis
error.

FDCcodesareassignedas
partofcertificationand
applicationdeveloper
shoulduseproperfdccode
givenbythefingerprint
sensor/extractorvendor

IDCcodesareassignedas
partofcertificationand
applicationdeveloper
shoulduseproperidccode

Technical
Exception
<No>

Technical
Exception
<No>

givenbytheiris
sensor/extractorvendor
530

Invalidauthenticator
code

Applicationshouldpassvalid
AUAcodeinauthentication
requestwhichisregistered
withUIDAI.Valueofthiscode
shouldbeconfigurable.

Technical
Exception
<No>

AUAcodeusedin
Authenticationrequestis
notvalid.
or
AUAcodeusedintheAuth
URLisnotsameasthe
AUAcodeusedintheAuth
XML.

540

InvalidAuthXML
version

Applicationshouldpass
Technical
supportedvalidAPIversionin Exception
authenticationrequest.Valueof <No>
thisshouldbeconfigurable.

APIversionusedinAuth
XML(Authentication
request)iseithernot
supportedorinvalid.

541

InvalidPIDXML
version

Applicationshouldpass
supportedvalidAPIPIDXML
versioninauthentication
request.Valueofthisshouldbe
configurable.

VersionofthePid
elementused

542

AUAnotauthorizedfor Applicationshouldensurelink
ASA.
isinplacebetweenAUAASA
beforesendingrequestto
CIDR.

Technical
Exception
<No>

InthePIDXML
(Authenticationrequest)is
eithernotsupportedor
invalid.

Ensurethe
Thiserrorwillbereturned
authenticationrequest ifAUAandASAdonot
isbeingsentthrough havelinkingintheportal
theauthorizedASA
aspertherecordsof
UIDAI.
or
PleasecontactUIDAI
helpdesktoreportthe
issueandto
understandfurther
stepsfortheupdation
ofASAAUA
linkage.

543

SubAUAnot
ApplicationshouldensureSub
associatedwithAUA AUAisaddedandassociated
withcorrectAUAbefore
sendingrequesttoCIDR.

Ensurethe
authenticationrequest
isbeingsentthrough
theassociatedAUA
aspertherecordsof
UIDAI.
or
PleasecontactUIDAI
helpdesktoreportthe
issueandto
understandfurther
stepsfortheupdation
ofASAAUA
linkage.

Thiserrorwillbereturned
ifSubAUAspecifiedin
saattributeisnotadded
asSubAUAinportal

550

561

InvalidUseselement
attributes

Requestexpired(Pid
>tsvalueisolderthan
NhourswhereNisa
configuredthresholdin
authenticationserver)

Applicationshouldusevalid
attributesdefinedinAPIfor
<Uses>tagandvalidationon
Authrequestshouldbedone
beforesendingrequestto
CIDR.

Technical
Exception
<No>

AUAapplicationshouldnot
storePidblockandincaseof
applicationwhichareusing
thickclientthereshouldbea
provisiontosyncupdatewith
serveratstart.

1.Incase
of
Device/Client
based
Application

Thiserroristypically
reportedifbtattribute
hasbeenspecifiedbut
bio=ninUseselement.
btattributeisrequired
onlyifbio=yinUses
element.

a.Either
device
date/timeis
behindcurrent
date/timeor
requestisold.
Pleasetry
again.

Invalidattributesusedin
Usestag.

Pleaseverifythatthe
device/client
date/timeis
synchronisedwith
IndianStandardTime
(IST)andresendthe
authentication
request.

EitherDevice/Client/Server
date/timeisbehindcurrent
oneoroldstoredpidis
gettingsent.

Pleaseverifythatthe
device/client
date/timeis
synchronisedwith
IndianStandardTime
(IST)andresendthe
authentication
request.

Device/Client/server
date/timeisaheadthan
currentdate/time.

Userisrequiredto
sendthe
authenticationrequest
onceagain.

IfsameAuthXMLis
sentmorethanonceto
server,then,2ndand
subsequentrequestswill
failwiththiserror.

2.Incase
ofwebbased
Application
a.Technical
Exception
<No>

562

Timestampvalueis
futuretime(value
specifiedPid>tsis
aheadofauthentication
servertimebeyond
acceptablethreshold)

AUAapplicationshouldnot
storePidblockandincaseof
applicationwhichareusing
thickclientthereshouldbea
provisiontosyncupdatewith
serveratstart.

1.Incase
of
Device/Client
based
Application
a.Either
device
date/timeis
aheadcurrent
date/timeor
requestisold.
Pleasetry
again.
2.Incase
ofwebbased
Application
a.Technical
Exception
<No>

563

Duplicaterequest(this
erroroccurswhen
exactlysame
authenticationrequest
wasresentbyAUA)

Applicationshouldaskuserto
tryagain.

Pleasesubmit
yourrequest
again.

564

HMACValidation
failed

Applicationshouldcreate
HMACusingSHA256

Technical
Exception
<No>

HMACisnotcalculated
usingAPIdefined
algorithm

CurrentLicensehas
expired.

Licensekeyusedin
applicationisinvalid.

565

566

Licensekeyhas
expired

Invalidlicensekey

Applicationshouldhavea
configurableLicensekey
managementfeaturethrough
whichonecanmanageKey
withoutchangingapplication.

Technical
Exception
<No>

Applicationshouldhavea
Licensekeymanagement
featurethroughwhichonecan
manageKeywithoutchanging
application.

Technical
Exception
<No>

567

Invalidinput(thiserror
occurswhensome
unsupportedcharacters
werefoundinIndian
languagevalues,
lnameorlav)

Applicationshouldhave
Technical
client/serverlevelchecksto
Exception
stopuserstoinputunsupported <No>
characters.

someunsupported
characterswerefoundin
Indianlanguagevalues,
lnameorlavinAuth
requestXML

568

UnsupportedLanguage

Applicationshouldhave
client/serverlevelchecksto
restrictuserstoonlyselect
languagefromAPIsupported
localLanguage.

Technical
Exception
<No>

Valueoflangattributeis
notfromthelistsupported
byauthapi.

Digitalsignature
verificationfailed(this
meansthat
authenticationrequest
XMLwasmodified
afteritwassigned)

Applicationshouldensure
securityofdataendtoendie.
Fromclient/devicetoCIDR
serverbyusingappropriate
communicationprotocol.

Technical
Exception
<No>

Authenticationrequest
XMLwasmodifiedafterit
wassigned.

Invalidkeyinfoin
digitalsignature(this
meansthatcertificate
usedforsigningthe
authenticationrequest
isnotvaliditiseither
expired,ordoesnot
belongtotheAUAor
isnotcreatedbyawell
knownCertification
Authority)

Applicationshouldhavean
independentmodulefor
signingAuthXMLand
certificateshouldbestoredand
manageoutsideofthe
application.

Technical
Exception
<No>

Certificateusedforsigning
theauthenticationrequest
isnotvaliditiseither
expired,ordoesnotbelong
totheAUAorisnot
createdbyawellknown
CertificationAuthority

Pleasechangeyour
defaultPINthrough
UIDAIupdation
clientandresendyour
authentication
request.

Thiserrorwillbereturned
ifresidentisusingthe
defaultPINwhichneedsto
beresetbeforeusage.

569

570

571

PINRequiresreset(this
errorwillbereturnedif
residentisusingthe
defaultPINwhich
needstoberesetbefore
usage)

Pleasereset
yourPINin
UIDAI
updation
applicationand
usenewPINin
this
application.

572

Invalidbiometric
position(Thiserroris
returnedifbiometric
positionvaluepos
attributeinBio
elementisnot
applicableforagiven
biometrictypetype
attributeinBio
element.)

Applicationshouldhaveclient Technical
levelvalidationtochecktype Exception
andcorrespondingvalidpos <no>
valuesbeforecreatingPID
block.

Thiserrorisreturnedif
biometricpositionvalue
posattributeinBio
elementisnotapplicable
foragivenbiometrictype
typeattributeinBio
element

573

Piusagenotallowedas Applicationshouldhavea
perlicense
configurablebusinessrule
whichcanrestricttheusageof
PiattributebasedonAUA
licenseauthorization.

Technical
Exception
<No>

Piusagenotallowedasper
license

574

Pausagenotallowedas Applicationcanhaveaclient
perlicense
levelchecktorestrict/allow
entryofpaattributeasper
licenseofAUA.

Technical
Exception
<No>

Pausagenotallowedasper
license

575

Pfausagenotallowed
asperlicense

Technical
Exception
<No>

Pfausagenotallowedas
perlicense

576

FMRusagenotallowed Applicationcanhaveaclient
Technical
asperlicense
levelchecktorestrict/allow
Exception
entryofFMRattributeasper <No>
licenseofAUA.

FMRusagenotallowedas
perlicense

577

FIRusagenotallowed
asperlicense

Applicationcanhaveaclient
levelchecktorestrict/allow
entryofFIRattributeasper
licenseofAUA.

Technical
Exception
<No>

FIRusagenotallowedas
perlicense

578

IIRusagenotallowed
asperlicense

Applicationcanhaveaclient
levelchecktorestrict/allow
entryofIIRattributeasper
licenseofAUA.

Technical
Exception
<No>

IIRusagenotallowedas
perlicense

579

OTPusagenotallowed
asperlicense

Applicationcanhaveaclient
levelchecktorestrict/allow
entryofOTPattributeasper
licenseofAUA.

Technical
Exception
<No>

OTPusagenotallowedas
perlicense

580

PINusagenotallowed
asperlicense

Applicationcanhaveaclient
levelchecktorestrict/allow
entryofPINattributeasper
licenseofAUA.

Technical
Exception
<No>

PINusagenotallowedas
perlicense

Applicationcanhaveaclient
levelchecktorestrict/allow
entryofpfaattributeasper
licenseofAUA.

581

Fuzzymatchingusage
notallowedasper
license

Applicationcanhaveaclient
Technical
levelchecktorestrict/allow
Exception
entryofmsattributeinpi,pa <No>
andpfaelementasperlicense
ofAUA.

Fuzzymatchingusagenot
allowedasperlicense

582

Locallanguageusage
notallowedasper
license

Applicationcanhaveaclient
Technical
levelchecktorestrict/allow
Exception
entryoflocallanguage
<No>
attributeinpi,paandpfa
elementasperlicenseofAUA.

Locallanguageusagenot
allowedasperlicense

584

InvalidPincodein
Metaelement

Pincodeshouldhaveavalid
value(inlovattribute)

Technical
Exception
<No>

Ifpincodevalueisnotone
ofthevalidvaluesin
UIDAIsystem,thiserror
occurs

585

InvalidGeocodein
Metaelement

Geocodevaluemustbeavalid
Technical
lat.longvalueindecimal
Exception
formatasperspec(inlov
<No>
attribute)

Ifgeocodedoesnothave
properformatasperspec
(decimalrepresentation
withporecisionupto4
decimalvaluesforlatand
long),thiserroroccurs

710

MissingPidataas
specifiedinUses

Applicationshouldvalidatepid Technical
blockbeforeencryptingdata
Exception
withAPIspecifiedPIDblock
<No>
structureandUseselement
attributesvaluestoensurePID
blockhavealltheelementsand
attributes.Clientlevel
validationshouldalsobeputto
checkallmandatoryand
conditionalfieldsofAPIXML.

MissingPidataas
specifiedinUses

720

MissingPadataas
specifiedinUses

Sameas710

Technical
Exception
<No>

MissingPadataas
specifiedinUses

721

MissingPfadataas
specifiedinUses

Sameas710

Technical
Exception
<No>

MissingPfadataas
specifiedinUses

730

MissingPINdataas
specifiedinUses

Sameas710

Technical
Exception
<No>

MissingPINdataas
specifiedinUses

740

MissingOTPdataas
specifiedinUses

Sameas710

Technical
Exception
<No>

MissingOTPdataas
specifiedinUses

800

Invalidbiometricdata

AUAtoreviewbiometric
devicebeingusedandwhether
templatesareISOcompliant.

Technical
Exception
<No>

FMRvalueisnotISO
compliantbadheaderor
otherissuewithtemplates.

FIR/IIRvalueisnot
compliant,ortemplates
couldnotbeextractedfor
thegivenFIR/IIRfor
matchingpurposes.

810

Missingbiometricdata
asspecifiedinUses

Sameas710

Technical
Exception
<No>

Missingbiometricdataas
specifiedinUses

811

Missingbiometricdata
inCIDRforthegiven
Aadhaarnumber

YourBiometric
dataisnot
availablein
CIDR.

Ensurecorrect
Aadhaarnumberis
enteredandtry
authenticatingagain.

Afterrepeatedfailure,
iftheresidentis
genuine,exception
handlingprovision
wouldneedtobe
followedtoprovide
service.

PleasecontactUIDAI
helpdesktoinform
abouttheissueandto
understandthesteps
fortheupdationof
biometricinformation
inCIDR.

812

Residenthasnotdone
BestFinger
Detection.Application
shouldinitiateBFD
applicationtohelp
residentidentifytheir
bestfingers.See
AadhaarBestFinger
DetectionAPI
specification.

Applicationshouldmake
provisontoinitiateBFD
applicationbasedontheerror
codetohelpresidentidentify
theirbestfingers.

Youhavenot
donebest
fingerdetection
sokindly
proceedwith
theBFD
processfor
successful
authentication.

ReferAadhaarBest
DetectionAPI
specificationsfor
detailsontheBFD
process.

Residenthasnotdone
BestFingerDetection.

820

Missingoremptyvalue Sameas710
forbtattributein
Useselement

Technical
Exception
<No>

Missingoremptyvaluefor
btattributeinUses
element

821

Invalidvalueinthe
Sameas710
btattributeofUses
element

Technical
Exception
<No>

Invalidvalueinthebt
attributeofUseselement

901

Noauthenticationdata
foundintherequest
(thiscorrespondstoa
scenariowhereinnone

Applicationshouldvalidate
Technical
thatUsergiveatleastoneauth
Exception
factorbeforeencryptionofPID <No>
block.

AllfactorsofAuthare
optional.Hence,itis
possibletoattemptanauth
withoutspecifyanyvalues

oftheauthdata
Demo,Pv,orBiosis
present)

foranyofthefactorsPi,
Pa,Pfa,BioorPv.Ifnone
oftheseelementshaveany
valuethatcanbeusedfor
authenticationpurposes,
then,thiserrorwillbe
reported.

902

Invaliddobvaluein
thePielement(this
correspondstoa
scenarioswherein
dobattributeisnotof
theformatYYYYor
YYYYMMDD,or
theageofresidentis
notinvalidrange)

Applicationshouldhavea
clientlevelchecktocheckdob
dateformatandagebusiness
rulesspecified(CurrentRuleis
thatageshouldnotbelessthan
0andgreaterthan150years)

Pleaseenter
dobin
specifieddate
formatorenter
ageinspecified
range.

Reenterthedateof
birthorageand
resendanew
authentication
request.

dobattributeisnotofthe
formatYYYYor
YYYYMMDD,orthe
ageofresidentisnotin
validrange.

910

Invalidmvvaluein
thePielement

Sameas710

Technical
Exception
<No>

911

Invalidmvvaluein
thePfaelement

Sameas710

Technical
Exception
<No>

912

Invalidmsvalue

Sameas710

Technical
Exception
<No>

913

BothPaandPfa
arepresentinthe
authenticationrequest
(PaandPfaare
mutuallyexclusive)

Sameas710

AttempttousePaandPfa
bothinthesamerequest
canresultinthiserror.

930
939

Technicalerrorthatare
internalto
authenticationserver

AUA/ASAshouldcallUIDAI
techsupport.

Technical
Exception
<No>

UIDAIserversideissues.
UIDAItechsupportto
reviewthescenarioand
takeappropriateaction.

940

UnauthorizedASA
channel

AUAshouldconsultASA.

Technical
Exception
<No>

941

UnspecifiedASA
channel

AUAshouldconsultASA.

Technical
Exception
<No>

980

Unsupportedoption

AUAtoreviewtheauthclient
tocheckwhetheranydev
featureisbeingusedinprod

Technical
Exception
<No>

Currentlythiserrorisnot
reported.Canbeusedin
future.

996

AadhaarCancelled

Resident

Aadhaarisnoin
authenticablestatus.

shouldre
enroll.

**PleaseseeACTN
attributeforactionableby
theresident.
997

998

999

AadhaarSuspended

InvalidAadhaar
Number0rNon
AvailabilityofAadhaar
data

Unknownerror

AUAapplicationshouldhave
mechanismtohandlethis
scenarioasAadhaarnumberis
validbutitsstatusisnotactive.

YourAadhaar
numberstatus
isnotactive.
Kindlycontact
UIDAI
Helpline.

AUAapplicationshouldhavea
clientlevelvalidationfor
Aadhaarnumbervalidityie.
shouldbe12digitsand
conformtoVerhoeffalgorithm.

Ensureyou
haveentered
correctAadhaar
number.Please
retrywith
correct
Aadhaar
numberafter
sometime.

Ensureyouhave
enteredcorrect
Aadhaarnumber.
Pleaseretrywith
correctAadhaar
numberafter
sometime.

Technical
Exception
<No>

Pleasecontact
authsupportteamof
UIDAI

Aadhaarisnotin
Auhenticatablestatus.
**PleaseseeACTN
attributeforactionableby
theresident.

Ifclientlevelvalidations
aredonethenAadhaar
numberdoesnotexistin
CIDR.Pleaseretrywith
correctAadhaarnumber
aftersometime.
**PleaseseeACTN
attributeforactionableby
theresident.

**ACTNCodes
Error
Code

ACTN ActionableMessage

996

A401 Aadhaarcancelledbeingaduplicate.ResidentshallusevalidAadhaar.

996

A402 Aadhaarcancelledduetodisputedenrolment.ShallreenrolifresidentdoesnthaveavalidAadhaar.

996

A403 AadhaarcancelledduetotechnicalIssues.ResidentshallcontactUIDAIcontactcentre.

996

A404 Aadhaarcancelledduetodisputedenrolment(BE).ShallreenrolifresidentdoesnthaveavalidAadhaar.

996

A405 Aadhaarcancelledduetoerrorneousenrolment(Iris).ShallreenrolifresidentdoesnthaveavalidAadhaar.

997

A301 Aadhaarsuspendedduetoinactivity.ResidentshallfollowtheReactivationprocess.

997

A302

AadhaarsuspendedduetoBiometricsintegrityissue.ResidentshallvisitPermanentEnrolmentCentrewith
documentproofsforupdate.

997

A303

AadhaarsuspendedduetoDemographicintegrityissue.ResidentshallvisitPermanentEnrolmentCentre/
UIDAIwebsitewithdocumentproofsforupdate.

997

A304

AadhaarsuspendedduetoAddressdispute.ResidentshallvisitPermanentEnrolmentCentrewithdocument
proofsforupdate.

997

A305

AadhaarsuspendedduetoPhotodispute.ResidentshallvisitPermanentEnrolmentCentrewithdocument
proofsforupdate.

997

A306 AadhaarsuspendedduetoAgedispute.Residentshallupdatetheage.

997

A307 Aadhaarsuspendedsincechildhasnotupdatedbiometricsafterageof5.Residentshallupdatethebiometrics.

ACTN ActionableMessage

997

A308

997

A309 Aadhaarislockedbyresident.ResidentshallfollowtheUnlockingprocess.

998

A201 Aadhaarnumberisincorrect.ResidentshallusecorrectAadhaar.

998

A202 Authenticationtemporarilynotavailable,residentshallretryaftersometime.

Error
Code

Aadhaarsuspendedsinceresidenthasnotupdatedbiometricsafterageof15.Residentshallupdatethe
biometrics.