J.P. Morgan Host-to-Host SSH Support

Updated on November 20, 2024 

SSH Key Updates

The SSH Key for the SFTP protocol will be replaced on February 8, 2025. The new key will be available to download below after February 3.

The current Secure Shell (SSH) Key for transport and authentication on the following J.P. Morgan Host-to-Host URLs:

  • Production: transmissions.jpmorgan.com

If you connect via SFTP to transmissions.jpmorgan.com on port 22, please download the J.P. Morgan public key and rename as needed. The fingerprint is: 96:53:6e:18:7d:84:d2:57:7f:00:c8:a3:23:8b:63:b4 and will be replaced on February 8, 2025.

Host-to-Host Supported SSH Ciphers

Only the following ciphers are supported for internet-based connections via applications that use Secure File Transfer Protocol (SFTP):

  • Supported Ciphers for SSH
  • Supported Keyed-Hash Message Authentication Code (HMAC)
    • hmac-sha2-512
    • hmac-sha2-256
  • Supported SSH Key Exchange Algorithms and Public Keys Supported
    • diffie-hellman-group-exchange-sha256
    • ecdh-sha2-nistp256
    • ecdh-sha2-nistp384
    • ecdh-sha2-nistp521
    • diffie-hellman-group16-sha512
    • Diffie-hellman-group18-sha512
    • diffie-hellman-group14-sha256
    • curve25519-sha256
    • curve25519-sha256@libssh.org
  • Supported SSH Host Key Algorithms
    • ecdsa-sha2-nistp256-cert-v01@openssh.com
    • ecdsa-sha2-nistp384-cert-v01@openssh.com
    • ecdsa-sha2-nistp521-cert-v01@openssh.com
    • ssh-ed25519-cert-v01@openssh.com
    • ecdsa-sha2-nistp256
    • ecdsa-sha2-nistp384
    • ecdsa-sha2-nistp521
    • ssh-ed25519
    • ssh-rsa-sha256 (Support beginning 2Q2025)
    • ssh-rsa-sha512  (Support beginning 2Q2025)
    • ssh-rsa

If your application does not support the available ciphers or does not have the required encryption capabilities, it may be necessary to change its configuration, upgrade it to current version, switch to another protocol or replace it.

Application Compatibility

Client software applications that are known to connect successfully to Host-to-Host are shown below. Note that this list may change over time, and it is best practice to only use supported current versions of third-party applications. The use and functionality of third-party software is subject to change without notice, and, is therefore not recommended or endorsed. J.P. Morgan makes no representation, explicit or implied, as to the functionality, quality, or suitability of any third-party software referenced below.

  • Axway Secure Client 6.1, 6.2, 6.3
  • Curl 7.58.0
  • FileZilla Client 3.10.x
  • PSCP (PuTTY) 0.70
  • PSFTP (PuTTY SFTP) 0.70
  • VanDyke SecureFX 8.3
  • WinSCP 5.13
  • OpenSSH 7.6