Working with SSH Keys

SSH keys are required in order to provide secure connection with the remote git host specified in the Repository Origin field which can be accessed via Connect to Git Repository or in Edit repository/integration settings. The Git Integration for Jira app uses one set of keys for accessing all configured repositories.

Follow this guide if you are one of the users who wre limited to or wanted to use SSH to securely connect to your git repositories.


There are two options available for specifying SSH keys:

  • SSH keys stored on server filesystem. The keys are located in the home folder of the user which account is used to run Jira. This option provides better compatibility with installation of the previous versions of the Git Integration app. This option does not support passphrases.
  • SSH keys are stored in the app configuration. The keys are added using the Git Integration app configuration. This option supports passphrases.

Getting Started

Before connecting repositories via SSH, users are required to generate SSH keys for use with the remote git host (public key) and for Git Integration app in Jira (private key).

Generated SSH keys always come in pair. (Example: and id_rsa)

For establishing safety connection with SSH, upload a public key to the SSH server and set the private key to the SSH client.

In this case, the SSH server is the Git server and the SSH client is the Jira server. Therefore:

  • Git server — public key
  • Jira server — private key (Git Integration for Jira > SSH Keys)


For Windows, we recommend to use PuTTY and use PuTTYgen to generate public and private SSH keys.

  1. Launch PuTTYgen and refer to the above image for the rest of the steps on this section.
  2. Set Type of key to generate to RSA.
  3. Set Number of bits in a generated key to 4096.
  4. Click Generate.
  5. Follow screen instructions such as moving your mouse pointer on random locations on the blank area of the PuTTYgen dialog. Do this until the progress bar completely fills up and the SSH key pair is generated.
  6. Entering a Passphrase for the generated key is optional but will ensure a more secure connection.
  7. Save your generated public and private key to a file by clicking the respective options.
  8. Copy the generated key. This is the public key that you will be using on the SSH configuration page of your git host.
  9. For the private key, see the note below.

You can also use the git bash command line to generate SSH key pair. For detailed information, see Generate SSH via Git bash.

Read on the section Generating SSH Keys and follow specific information for the git host and platform that you use.


On Linux and MacOS, this generates an SSH key in RSA format:

ssh-keygen -t rsa -b 4096 -m pem -C "

Generating SSH Keys







GitLab CE/EE

Follow the above GitLab references for GitLab CE/EE. Then verify that your GitLab server should have the following SSH settings:

  • Enabled Git access protocols -- Both SSH and HTTP(s)
  • RSA SSH keys -- Are allowed

Other SSH key formats may be supported by Git Integration for Jira app, but prefer to use RSA format for your SSH git connections.



VSTS/TFS/Azure DevOps/Azure Repos

For generating SSH keys for Azure Repos (which is applicable to MS git hosts), follow instructions at Use SSH Key Authentication.

Adding a Private SSH Key (Jira Server)

  1. From your Jira dashboard menu, go to Git > Manage (Git) repositories. On the sidebar under Git Integration for Jira, select SSH Keys.

  2. Click Add SSH Key. The following screen is displayed.

    Utilize the following options for adding the new SSH key:

    Key nameEnter a meaningful name for this private SSH key as required.
    Private keyThis is the actual private SSH key. Upload the private key file via Browse... or paste the generated private key into the provided field.
    PassphraseOptional. Enter the passphrase that was assigned to this private key.
  3. Click Add to complate this setup.

Adding an SSH Public Key

Add a public SSH key to your remote git host to prepare its repositories for connection with the Git Integration for Jira app.

  1. Login to your remote git host.
  2. Go to the SSH configuration page, if supported.
  3. Paste the public key to the provided box and complete the setup.

SSH Keys Configuration (Jira Server)

Manage and associate SSH keys to connected git repositories via the SSH Keys in Git Integration for Jira Server app repository configuration page.

SSH keys configuration in Git Integration app

The list of added private SSH keys is accessible on this page. Both types of SSH keys are displayed in this list. Legacy filesystem-based keys contain directory path in the Private key column.

Refer to the following table for list column information:

NameThe name of the private SSH key will appear here.
Private keyThis is the private SSH key in hex mode.
PassphraseA lock icon is displayed if the SSH key pair has a passphrase.
AssociationsLists the repositories that are associated with this SSH key.
Last used byLists the repositories that are using this SSH key.
OperationsClick the icon to perform Delete or Associations functions.

Adding and Associating SSH Keys

Limit the usage of the SSH key by associating them to selected repositories. As of v2.6.9 of the Git Integration for Jira app, the option to strictly map keys to repositories is available.

On the SSH Keys page, click Actions > Associations for the selected SSH key.

The following screen is displayed:

Associate SSH key config screen

Mark the required repository or repositories to associate the SSH key.

Clicking the Select All text label marks all repositories that will be associated to this SSH key.

Clicking the Select None text label deselects all repositores.

Click Save to save the settings.

If you have multiple repositories that uses the same SSH key, configure them via Git Integration app by doing the following steps:

  1. Configure a repository that requires an SSH key via Add Repository Wizard.
  2. Associate that SSH key with the currently configured repository via SSH Keys.
  3. Add another repository that requires the same SSH key. You will be presented with the following screen:Associate existing ssh key to added repository
  4. Select the SSH key that you have associated to the previously added repository from the Existing key list.
  5. Click Next to continue. Complete the wizard and add another repository as desired.

For third-party products or services (such as GitHub, GitLab, Bitbucket, etc.), register the PUBLIC KEY for target repository or in profile settings of your git account.

For custom git hosting servers, ask your administrator to check that the target keypair's PUBLIC KEY is added into the authorized_keys file of the git server. For more information, see the following article.

Removing SSH Keys

SSH keys cannot be modified or updated. To change the keys, remove and add them again.

Reconfigure Git Repository and SSH Key

Perform the following steps to reconfigure repositories and SSH key:

  1. Remove any old SSH keys configured with the Git Integration app via <JiraHOSTNAME> /secure/ViewSshKeys.jspa
  2. Restart Jira.
  3. Get the following file from your Jira server to your Windows workstation: /home/jira/.ssh/id_rsa
  4. Set up the git repository in Jira using the repository location and upload the private key that was downloaded above.

For multiple repository configuration, see Bulk change.

Connecting SSH Git Repositories (Jira Cloud)

SSH git repositories can be integrated with Jira Cloud via Git Integration for Jira app.

  1. Generate an SSH key pair. We recommend to generate a 4096-bit key.
  2. Obtain the Clone SSH git URL from your git host repository page.
  3. On your Jira Cloud dashboard, go to menu Git > Manage Git repositories.
  4. On the Auto-connect integration panel, click Git.
  5. Paste the clone URL into the Remote Git URL field.
  6. Click Next.
  7. Click Connect.
  8. Paste the Private SSH key on the provided box or click Upload Key File to upload a private SSH key file.
  9. Enter the Passphrase of the private SSH key, if any. Otherwise, leave it blank.
  10. Click Connect.

The connected repository is listed in the git configuration page.

Get new product notifications and feature updates from BigBrassBand LLC.

Subscribe to our mailing list