Open banking – information for third-party providers

Liechtensteinische Landesbank AG offers the following services for third-party providers in the context of the Payment Service Directive 2 (PSD2):

  • Account information
  • Payment initiation
  • Confirmation of funds

In addition to the regulatory APIs, LLB also offers proprietary APIs that allow for further services.

The following functionalities are available:

TPP authentication

PSD2
  • eIDAS certificates
LLB Connect
  • OAuth2 token / for a direct connection between the client and the Bank no TPP authentication is required

Client authentication

PSD2
  • Redirect SCA approach
LLB Connect
  • PhotoTAN
  • Key pair (for direct connection between the client and the Bank)

Scope of services

PSD2
  • Account information
  • Payment initiation
  • Confirmation of funds
LLB Connect
  • Payment orders: Payment orders are transmitted via pain.001. The reply is a pain.002.
  • Stock exchange orders
  • Foreign exchange orders
  • Account documents in PDF format
  • Camt.053
  • Camt.054
  • MT571
  • MT970
  • Communication with client advisor

Further developments

PSD2
  • Limited by regulator
LLB Connect
  • New APIs can be made available as required

Individual APIs for partners

PSD2
  • No
LLB Connect
  • Yes

Architecture approach

PSD2
  • REST
LLB Connect
  • REST

Data format

PSD2
  • JSON
LLB Connect
  • JSON

Getting started – PSD2

Authentication of the third-party provider

The third-party provider must possess a valid QWAC and QSEAL certificate.

Client authentication

LLB uses the Redirect SCA approach. To obtain test access (user, password, photoTAN activation), please send us your contact details (company name, family name, given name, e-mail address). You will then be provided with individual access to our development environment and will be able to test the mentioned services.

  • URL production: xs2a.llb.li
  • URL test: xs2a-developer.llb.li

Details for developers

Details on the PSD2 API can be found in the Swagger file.

Availability

All requests have been replied to during the last 90 days.

In the event of a systems breakdown, a contingency mechanism will come into force in accordance with Article 33(4) of the Commission Delegated Regulation (EU) 2018/389; in the event of unplanned unavailability of the XS2A interface or a systems breakdown as set out in Article 33(1) of the Commission Delegated Regulation (EU) 2018/389, the use of the online banking service made available to our clients is permitted via the following URL: secure.llb.li/login/login.

For the purpose of identification, the certificate used when attempting to access the XS2A interface must be submitted with each request.

We refer to the framework conditions in Article 33(5) of the Commission Delegated Regulation (EU) 2018/389.

The information requested in Article 33(5)(e) of the Commission Delegated Regulation (EU) 2018/389 should be sent to the following e-mail address: support_onlineservices@llb.li.

Getting started – LLB Connect

LLB uses the Redirect SCA approach. To obtain test access (user, password, photoTAN activation), please send us your contact details (company name, family name, given name, Redirect URL, e-mail address, root and intermediate QWAC Certificate). You will then be provided with individual access to our development environment and will be able to test the mentioned services.

  • URL production: secure.llb.li/login
  • URL test: developer.llb.li

Details for developers

Details on LLB Connect API can be found in the Postman collection and the documentation.

Contact

Please do not hesitate to contact us at ebankingdirekt@llb.li.