Windows 2016 x64 SFTP w/ Domain Service Accout

Version: Adobe ColdFusion 2021 Enterprise

OS: Windows 2016 (Azure)

I know this has been addressed in the past, with the solution being to not run your coldfusion service on a domain account, however I am required to for security purposes.

When I attempt to SFTP using CFFTP to certain servers using a key and a username, with ColdFusion running on a domain service account, it gets into a standoff with the SSH service that never ends.   I looked around for JSchd documentation on system configuration variables that I could inject into the jvm.config, but could find not any that would allow me to test shutting of Kerberos as an authication method.  Has anyone found a solution yet that allows for CFFTP to work over secure SSH that allows for the ColdFusion server to run on a domain account?  I don't think I can ask the SFTP server folks to shut off certain authentication methods at this point.

The SFTP service is running on RHEL, it's on a separate domain than the windows servers.  A jvm system parameter like "-DPreferredAuthentications=password,publickey,keyboard-interactive" would be nice to set which authentication methods JSchd uses first.

  <cfftp action="open" server="some.server.mil" connection="tentFoo" secure="yes" username="#tentUser#" passphrase="#tentPass#" key="#tentCert#" retrycount="5" stoponerror="yes" timeout="120" port="22" />