J.P. Morgan Host-to-Host SSH Support

Updated February 20, 2024 

SSH Key Updates

The SSH Key for the SFTP protocol will be replaced after 9 p.m. ET on March 2, 2024. The new keys are now available to download below. Please do not activate the new certificates in production until after 9 p.m. ET on March 2.

The current Secure Shell (SSH) Key for transport and authentication on the following J.P. Morgan Host-to-Host URLs:

  • Production: transmissions.jpmorgan.com

If you connect via SFTP to transmissions.jpmorgan.com on port 22, please download the J.P. Morgan public key and rename as needed. The fingerprint is: 96:53:6e:18:7d:84:d2:57:7f:00:c8:a3:23:8b:63:b4 and will expire on February 16, 2025.

Host-to-Host Supported SSH Ciphers

Only the following ciphers are supported for internet-based connections via applications that use Secure File Transfer Protocol (SFTP):

  • Supported Ciphers for SSH
    • AES128-CTR
    • AES192-CTR
    • AES256-CTR
  • Supported Keyed-Hash Message Authentication Code (HMAC)
    • hmac-sha2-512
    • hmac-sha2-256
    • hmac-sha256@ssh.com (alias support ending June 2023)
    • hmac-sha512@ssh.com(alias support ending June 2023)
  • Supported SSH Key Exchange Algorithms and Public Keys Supported
    • diffie-hellman-group-exchange-sha256

If your application does not support the available ciphers or does not have the required encryption capabilities, it may be necessary to change its configuration, upgrade it to current version, switch to another protocol or replace it.

Application Compatibility

Client software applications that are known to connect successfully to Host-to-Host are shown below. Note that this list may change over time, and it is best practice to only use supported current versions of third-party applications. The use and functionality of third-party software is subject to change without notice, and, is therefore not recommended or endorsed. J.P. Morgan makes no representation, explicit or implied, as to the functionality, quality, or suitability of any third-party software referenced below.

  • Axway Secure Client 6.1, 6.2, 6.3
  • Curl 7.58.0
  • FileZilla Client 3.10.x
  • PSCP (PuTTY) 0.70
  • PSFTP (PuTTY SFTP) 0.70
  • VanDyke SecureFX 8.3
  • WinSCP 5.13
  • OpenSSH 7.6