FCA Security Gateway (SGW) bypass guide for Chrysler, Dodge, Jeep, and Ram
Technician reference for authenticating through the FCA Security Gateway Module on 2017+ Chrysler, Dodge, Jeep, and Ram vehicles. Covers Autel + AutoAuth, the AE Solutions MDP+ with wiTECH 2.0, physical SGW bypass connectors, SGW module locations, and which scan tool functions require a bypass.
Trying to perform bi-directional controls, key programming, or ECU flashing on a 2017 or newer Chrysler, Dodge, Jeep, or Ram and getting blocked? That's the FCA Security Gateway Module (SGW) doing its job. Without authenticating through the SGW, most active scan tool functions will return errors or won't execute. Here are the three FCA-authorized paths to authenticate, where the SGW module lives in common vehicles, and which functions actually require a bypass.
Background - what the SGW does and why it blocks your scan tool
Starting around 2017-2018, FCA (now Stellantis) introduced a Security Gateway Module (SGW) on most Chrysler, Dodge, Jeep, and Ram vehicles. The SGW sits between the OBD-II port and the vehicle's CAN bus network, blocking unauthorized scan tool commands - including bi-directional controls, resets, and programming functions.
Without bypassing or authenticating through the SGW, your scan tool will connect but many active functions will return errors or simply won't execute.
Method 1 - Autel + AutoAuth SGW bypass
Autel integrates with AutoAuth, the FCA-approved third-party gateway solution.
Steps:
- Create an AutoAuth account at autoauth.com and purchase the subscription (charged per-use or via subscription plan).
- On your Autel tablet, go to Settings > AutoAuth and log in with your AutoAuth credentials.
- Connect your Autel tool to the vehicle and start a diagnostic session.
- When prompted that the SGW is detected, select "Authenticate via AutoAuth" - the tablet will connect to the AutoAuth server and grant a timed bypass token.
- You now have full bi-directional control for that session.
Note: The bypass is session-based. If you disconnect and reconnect, you may need to re-authenticate.
Supported Autel models: Most current Autel tablets support AutoAuth, including the MaxiSys MS906 Pro, MaxiSys MS919, MaxiSys MS909, MaxiSys Ultra, MaxiSys Elite II, and MaxiCOM MK906 Pro series.
Tip: Always update your Autel software before attempting SGW-authenticated sessions. Outdated firmware is a common cause of failed authentication.
Method 2 - AE Solutions MDP+ with wiTECH 2.0 (OEM-level)
The MDP+ (Mopar Diagnostic Platform Plus) from AE Solutions is an OEM-grade J2534 interface device that handles SGW authentication natively - no AutoAuth subscription required. Because it operates at the OEM level using the same protocol stack as dealer tooling, the SGW recognizes it as an authorized device.
How it works:
- The MDP+ pairs with wiTECH 2.0 (FCA's OEM web-based diagnostic platform) and communicates through FCA's own authentication servers.
- SGW access is granted automatically during the wiTECH 2.0 session handshake - no separate bypass step needed.
- Supports full OEM-level functions: ECU/TCM flash, SKIM/IMMO programming, bi-directional controls, module configuration, and SGW-protected resets.
Setup overview:
- Connect the MDP+ to the OBD-II port and to your laptop via USB or Wi-Fi.
- Open a browser and navigate to witech.fcagroup.com (active subscription required).
- Launch a vehicle session - wiTECH 2.0 will recognize the MDP+ and authenticate through FCA's servers.
- SGW is transparently handled; proceed with full diagnostic and programming functions.
Tip: The MDP+ is the preferred interface when doing PCM/TCM reflashing or SKIM programming on 2018+ FCA vehicles. Aftermarket tools can occasionally have compatibility gaps on newer calibration files - OEM tooling ensures you're working from the same file source as the dealer.
Autel + AutoAuth vs AE Solutions MDP+ - how to choose
Autel + AutoAuth handles SGW authentication through a third-party (AutoAuth), provides limited OEM coverage on ECU flash and programming work, supports SKIM and key programming with an AutoAuth subscription, and is best suited for multi-brand shops doing general diagnostics across many makes. Subscription is per-use or annual through AutoAuth, and an internet connection is required.
The AE Solutions MDP+ handles SGW authentication natively through wiTECH 2.0 using FCA's own servers, offers full OEM parity for ECU and TCM flash and programming, provides full OEM support for SKIM and key programming, and is best suited for FCA-heavy shops or any work that needs OEM-level coverage. Subscription is through wiTECH 2.0 and an internet connection is required.
Many shops run both - Autel for multi-brand day-to-day diagnostics, MDP+ for deep FCA programming jobs.
Method 3 - Physical SGW bypass connector
A hardwired bypass is available for shop use when internet connectivity is a concern or for faster workflow.
- Products like the AutoEnginuity SGW bypass cable plug directly into the SGW module (usually behind the dash near the fuse box).
- Provides a persistent bypass without requiring a live internet connection each session.
- Most commonly used on 2018+ Ram 1500/2500/3500, Jeep Wrangler JL, Jeep Gladiator, and Dodge Durango.
SGW module location by vehicle
On the 2019+ Ram 1500 (DT), the SGW is located behind the driver-side dash, near the fuse panel.
On the 2018+ Jeep Wrangler JL, it is located under the dash on the driver side.
On the 2020+ Jeep Gladiator, it is located under the dash on the driver side.
On the 2017+ Chrysler Pacifica, it is located behind the glove box or in the center console area.
On the 2018+ Dodge Durango, it is located under the dash, near the BCM.
What scan tool functions require an SGW bypass
Functions that do NOT require an SGW bypass: reading and clearing DTCs, and live data / PID monitoring.
Functions that DO require an SGW bypass: bi-directional controls (actuator tests), key programming / IMMO functions, ECU and TCM flash / programming, and active TPMS relearn procedures.
Oil resets and service resets sometimes require an SGW bypass depending on the vehicle and the specific reset.
Quick tips for working through the FCA Security Gateway
- Always update your Autel software before attempting SGW-authenticated sessions - outdated firmware is a common cause of failed authentication.
- If AutoAuth authentication fails, check your internet connection on the tablet first.
- For OEM-level programming or SKIM work, the MDP+ + wiTECH 2.0 combination is the most reliable path on 2018+ FCA vehicles.
- Some shops run both tools - Autel for multi-brand day-to-day diagnostics, MDP+ for deep FCA programming jobs.
- Some shops keep a dedicated hotspot paired to the Autel tablet specifically for AutoAuth sessions in the bay.
- The SGW bypass is not the same as disabling security - all methods above are FCA-authorized authentication pathways.
- If an authorized tool (Autel + AutoAuth or the MDP+ with wiTECH 2.0) still reports all modules offline after authenticating, and voltage and the OBD-II connection are good, the SGW module itself may be faulty and need replacement.
If you need help choosing between Autel + AutoAuth, the AE Solutions MDP+ with wiTECH 2.0, or a physical SGW bypass cable, locating the SGW module on a specific vehicle, or troubleshooting failed authentication, contact AETools at https://aetools.us or call us directly.