diff --git a/freqtrade/config_schema/config_schema.py b/freqtrade/config_schema/config_schema.py
index d8b0b77fb..fc2c42441 100644
--- a/freqtrade/config_schema/config_schema.py
+++ b/freqtrade/config_schema/config_schema.py
@@ -752,6 +752,7 @@ CONF_SCHEMA = {
                 "jwt_secret_key": {
                     "description": "Secret key for JWT authentication.",
                     "type": "string",
+                    "default": "somethingRandomSomethingRandom123",
                 },
                 "CORS_origins": {
                     "description": "List of allowed CORS origins.",
@@ -764,7 +765,14 @@ CONF_SCHEMA = {
                     "enum": ["error", "info"],
                 },
             },
-            "required": ["enabled", "listen_ip_address", "listen_port", "username", "password"],
+            "required": [
+                "enabled",
+                "listen_ip_address",
+                "listen_port",
+                "username",
+                "password",
+                "jwt_secret_key",
+            ],
         },
         # end of RPC section
         "db_url": {
diff --git a/freqtrade/rpc/api_server/webserver.py b/freqtrade/rpc/api_server/webserver.py
index 7d3d9543d..905eced14 100644
--- a/freqtrade/rpc/api_server/webserver.py
+++ b/freqtrade/rpc/api_server/webserver.py
@@ -302,7 +302,9 @@ class ApiServer(RPCHandler):
             )
 
         if self._config["api_server"].get("jwt_secret_key", "super-secret") in (
-            "super-secret, somethingrandom"
+            "super-secret",
+            "somethingrandom",
+            "somethingRandomSomethingRandom123",
         ):
             logger.warning(
                 "SECURITY WARNING - `jwt_secret_key` seems to be default."