Open banking – information for third-party providers
LLB (Österreich) AG offers the following services for third-party providers in the context of the Payment Service Directive 2 (PSD2):
- Account information
- Payment initiation
- Confirmation of funds
In addition to the regulatory APIs, LLB (Österreich) AG also offers proprietary APIs that allow for further services.
The following functionalities are available:
TPP authentication
PSD2
- eIDAS certificates
LLB Connect
- OAuth2 token / for a direct connection between the client and the Bank no TPP authentication is required
Client authentication
PSD2
- Redirect SCA approach
LLB Connect
- PhotoTAN
- Key pair (for direct connection between the client and the Bank)
Scope of services
PSD2
- Account information
- Payment initiation
- Confirmation of funds
LLB Connect
- Payment orders: Payment orders are transmitted via pain.001. The reply is a pain.002.
- Stock exchange orders
- Foreign exchange orders
- Account documents in PDF format
- Camt.053
- Camt.054
- MT571
- MT940
- Communication with client advisor
Further developments
PSD2
- Limited by regulator
LLB Connect
- New APIs can be made available as required
Individual APIs for partners
PSD2
- No
LLB Connect
- Yes
Architecture approach
PSD2
- REST
LLB Connect
- REST
Data format
PSD2
- JSON
LLB Connect
- JSON
Getting started – PSD2
Authentication of the third-party provider
The third-party provider must possess a valid QWAC and QSEAL certificate.
Client authentication
LLB (Österreich) AG uses the Redirect SCA approach. To obtain test access (user, password, photoTAN activation), please send us your contact details (company name, family name, given name, e-mail address). You will then be provided with individual access to our development environment and will be able to test the mentioned services.
- URL production: xs2a.llb.at
- URL test: xs2a-developer.llb.at
Details for developers
Details on the PSD2 API can be found in the Swagger file.
Availability
All requests have been replied to during the last 90 days.
In the event of a systems breakdown, a contingency mechanism will come into force in accordance with Article 33(4) of the Commission Delegated Regulation (EU) 2018/389; in the event of unplanned unavailability of the XS2A interface or a systems breakdown as set out in Article 33(1) of the Commission Delegated Regulation (EU) 2018/389, the use of the online banking service made available to our clients is permitted via the following URL: secure.llb.at/login/login.
For the purpose of identification, the certificate used when attempting to access the XS2A interface must be submitted with each request.
This will not involve any changes to the way online banking works; the same web pages will be made available as would be the case if a client were accessing them directly.
We refer to the framework conditions in Article 33(5) of the Commission Delegated Regulation (EU) 2018/389.
The information requested in Article 33(5)(e) of the Commission Delegated Regulation (EU) 2018/389 should be sent to the following e-mail address: support_onlineservices@llb.li.
Getting started – LLB Connect
LLB (Österreich) AG uses the Redirect SCA approach. To obtain test access (user, password, photoTAN activation), please send us your contact details (company name, family name, given name, Redirect URL, e-mail address). You will then be provided with individual access to our development environment and will be able to test the mentioned services.
- URL production: secure.llb.at/login
- URL test: developer.llb.at
Contact
Please do not hesitate to contact us at support_onlineservices@llb.li.