OFX Downloads

John's Avatar

John

17 Mar, 2023 10:44 PM

I use an investment program to track quite detailed information about my investments. I use MD to download those investment accounts (purely for visibility), and for my day to day banking needs. MD has worked exquisitely since I jumped ship from Quicken over 5 years ago. (They couldn't pay me to use Q, much less pay them to use it!)

I have routinely downloaded transactions and balances through the OFX connections with each of my institutions. Sadly a pattern is emerging where those institutions are beginning to abandon the OFX capability.

My issue is as follows, with a simple enough question (to start). Each of the two programs have two different servers for Fidelity Investments and Fidelity NetBenefits. Both programs worked seamlessly for at least the last 5 years (maybe even 10). Last March 8, 2023, my investment program which had a BrokerageLink account listed from the NetBenefits OFX server, disappeared! Even if I set up a brand new investment account and asked the OFX server to list my accounts, it was not there.

Now for MD. I swear I originally set up that BrokerageLink account on the NetBenefits server. But, I've no proof of that. The NetBenefits OFX server only lists my 401k account, similar to the investment program results (even though for SURE the investment program had been working with that account through that server up until early March). I checked the output for account info using the Fidelity Investments OFX server. IT LISTED MY BrokerageLink account as one of the options!

So.....I returned to the investment program, did a similar inquiry for the Fidelity Investments OFX server. It only listed THREE of my accounts, and NOT the BrokerageLink account.

So I am left to investigate. The first question I would have is - "Are there different OFX implementations/versions that would result in one server returning 4 accounts, while another program requesting that information only returns 3?"

I have to start somewhere. Fidelity is useless to solve this problem. Their answer was - sounds like you are using Quicken (I'm not). Try this, then this. If that doesn't work, talk to Q, because it's their problem. The Q community is definitely having the same problem based on the threads I follow over there.

Any guidance will be quite helpful as I talk to the investment program developer/forums. I have used the ToolBox in MD but to be fair, I've not yet been able to pinpoint exactly what might be causing this difference.

Thanks in advance for any input that I know this group of experts can offer me.

  1. 1 Posted by dwg on 17 Mar, 2023 11:05 PM

    dwg's Avatar

    I'm a fellow user.

    The OFX specification has not changed in a while and is generally backwards compatible so as to not break existing implementations, there is only one specification so implementation differences would be because of the developer. Hence why some Financial institutions handle negative amounts differently, which Moneydance has had to account for.

    OFX servers are usually implemented as a sub-system away from the main production systems with some sort of data feed, often they only have a time limited subset of data.

    Now I could envisage the data feed being set up so that some machines see a different number of accounts to other machines, but to say that is the case here would only be speculation.

    In short I do not see different OFX specs being a likely issue, how institutions have set up their systems is another story. So I really think the problem is likely to be of Fidelity's own making.

  2. 2 Posted by John on 17 Mar, 2023 11:38 PM

    John's Avatar

    Thanks for the response so quickly! It's always best to discard those potential options that you might never think of quickly before doing a lot of work.

    The perplexing part is still - using the exact same FI (Fidelity Investments) in OFX, one program gives me 3 accounts, MD gives me 4.

  3. 3 Posted by John on 21 Mar, 2023 06:19 PM

    John's Avatar

    I just received this very helpful and informative link on this topic (OFX downloads from Fidelity NetBenefits):

    https://nb.fidelity.com/bin-public/070_NB_PreLogin_Pages/documents/email/MECB2B/FAQ_Securing_Customer_Data_on_Fidelity_Webpages_EXTERNAL.pdf

    Is MD considered a third party data aggregator (not MD+)? If so, have you been working with Fidelity on any new download APIs that might be needed for future successful downloading? If not, since Plaid definitely is considered a third party aggregator by Fidelity (as stated in the linked document), has Plaid (MD+) been working with Fidelity on any new APIs needed (or soon to be needed) APIs for downloading?

  4. 4 Posted by dwg on 21 Mar, 2023 10:49 PM

    dwg's Avatar

    Institutions generally do not consider end user software like Moneydance to be aggregators. Aggregators are usually considered to be the Plaid, Yodlee, Salt Edge etc of this world.

  5. 5 Posted by John on 21 Mar, 2023 11:00 PM

    John's Avatar

    That is also my general understanding but I don't know what might or might not be the discerning characteristics between programs/services like that and the likes of Quicken, Moneydance, Mint, etc.

  6. 6 Posted by dwg on 21 Mar, 2023 11:47 PM

    dwg's Avatar

    The most secure method would be a direct connection between the institution and the software on your computer i.e. Direct Connect.

    Institutions are going in this direction so that they do not have to provide direct connect services ad do not have to deal with end users i.e. customers - you have a problem getting data talk to your aggregator.

    It basically reduces their costs and the work the institutions have to do, they try to make the link between themselves and the aggregator more secure, there is no consideration to privacy and the use of the data however.

    Mentioning Mint I think is furfy. Intuit is the aggregator of course, Mint is Intuit's online end user product, which it tightly tied in to their aggregation.

    I do not see any institution, and we are really talking about U.S. institutions here, seeing a small U.K. based company as an aggregator. One institution also told Moneydance that they will not deal with a non U.S. based company.

  7. 7 Posted by John on 22 Mar, 2023 12:13 AM

    John's Avatar

    I'm a bit unclear, but I'll ask: Does that mean that the connection I make using MD as the program on my computer to download transactional information from institutions is, in your words, a direct connection? Why is this also not the case with Quicken, who uses the OFX protocol to download as well (at least with DirectConnect)? In that simple comparison, neither Quicken nor MD would or should be classified data aggregators, correct? And yeah, I looked at Mint for all of a mere 10-15 minutes many, many years ago and decided I didn't like what I was giving them access to.

    As to working with or not working with non US institutions, I've no experience so can't really comment.

  8. 8 Posted by dwg on 22 Mar, 2023 12:37 AM

    dwg's Avatar

    Direct connect is a direct link between Moneydance and the bank's server (or their service provider) it is the same as Quicken's Direct connect in every way, same protocol, same server.

    Moneydance+ is not direct connect, it uses the aggregator Plaid, it is equivalent to Quicken's Express Web Connect. An aggregator periodically downloads transactions and holds them awaiting for you to download from them.

    Neither Quicken or Moneydance are considered aggregators.

    People may think that as the software is aggregating all of my data it is an aggregator, a real aggregator though links data from many organisations for many people in one location.

    The naming of Express Web Connect may lead people to think it is part of Quicken. When the software was owned by Intuit the service was run by Intuit and being used by both the Quicken and Mint products, with Quicken now not owned by Intuit whether it has its own service or still uses Intuit I do not know, but I suspect they have an agreement with Intuit, as I think it makes more sense.

  9. 9 Posted by John on 22 Mar, 2023 12:44 AM

    John's Avatar

    Thanks for that explanation dwg.

  10. 10 Posted by John on 22 Mar, 2023 12:48 AM

    John's Avatar

    For the record, I'm not having any issues with downloading from Fidelity (Investments or NetBenefits). When I look at the OFX log (console window), I do see lots of references to TLS, Trusted Certificates, cipher suites, when downloading from Fidelity. I don't see that from downloads with other institutions. Perusing through the program changelogs, there are references to TLS and Fidelity, and Trusted Certificates and download setups that might require those options in 2019 and 2021.

    I am quite happy with MD and its direct connections at the current time.

    Again thanks for your clarifications.

  11. 11 Posted by dwg on 22 Mar, 2023 02:08 AM

    dwg's Avatar

    Direct connect makes use of trusted certificates without those it doesn't work, it also makes use of a secured link for the data transfer. The trusted certificates come built into Moneydance, when one expires it usually requires a Moneydance update.

    Direct Connect is a client/server implementation using the OFX protocol, OFX is both a protocol as well as a file format. Moneydance is the client.

    OFX appears to be evolving, it has now has moved under the FDX organisation and one of the things I feel that is likely to do is move access to be token based, which is how Open Banking works.

  12. 12 Posted by John on 22 Mar, 2023 02:23 AM

    John's Avatar

    When I use a python tool ofxtools and ofxget script in that project, lets take Fidelity Investments, when I make the ofxget request for acctinfo, it replies back with all of my accounts. The OFX dialog in that case is clean of any trusted certificates comments. It was on a clean, just installed machine, wo no MD on the machine, just W10 OS and a clean install of Python 3.10. I get that the implementation that is integrated into MD may need/require the trusted certificates, but I do not think that is the case for every OFX connection (for instance in other programs, e.g. the python script). If so, each individual program may select what is/isn't integrated with their code dependent of course on the requirements of the financial institution.

    Of course, I am easily out on a limb on this one and could be totally off base. Just an example of asking and retrieving OFX data communications.

  13. 13 Posted by dwg on 22 Mar, 2023 02:29 AM

    dwg's Avatar

    A lot of institutions use certificates, they do not have to however. It is another layer of security.

  14. 14 Posted by John on 22 Mar, 2023 02:51 AM

    John's Avatar

    Agreed on that. Thanks.

  15. System closed this discussion on 21 Jun, 2023 03:00 AM.

Comments are currently closed for this discussion. You can start a new one.

Keyboard shortcuts

Generic

? Show this help
ESC Blurs the current field

Comment Form

r Focus the comment reply box
^ + ↩ Submit the comment

You can use Command ⌘ instead of Control ^ on Mac

Recent Discussions

14 Jun, 2024 04:59 AM
14 Jun, 2024 02:45 AM
14 Jun, 2024 02:01 AM
13 Jun, 2024 10:05 PM
13 Jun, 2024 09:58 PM