|Home > Documentation > User's guide > Administration > Administrative Tasks > Configuring security > Configuring SSL client authentication|
Starting from Geronimo 2.1.5, users can connect to a running server through a SSL tunnel by specifying the location of the trusted keystore file to org.apache.geronimo.keyStoreTrustStorePasswordFile. The default SSL keystore of the Geronimo server is geronimo-default, which locates at /var/security/keystores/ directory.
Follow the instructions below to complete a SSL connection to the Geronimo server.
Where secret is the default password of keystore geronimo-default in the server. For better security, use encrypt sub-command to encrypt the plain text password in the file. By default, the content of keystorePasswordfile.key file is from /var/config/config-substitutions.properties file.