Home > Documentation > User's guide > Administration > Administrative Tasks > Configuring security > Configuring SSL client authentication |
Starting from Geronimo 2.1.5, users can connect to a running server through a SSL tunnel by specifying the location of the trusted keystore file to org.apache.geronimo.keyStoreTrustStorePasswordFile
. The default SSL keystore of the Geronimo server is geronimo-default
, which locates at /var/security/keystores/
directory.
Follow the instructions below to complete a SSL connection to the Geronimo server.
org.apache.geronimo.framework/jmx-security/2.1.5/car
using start sub-command or via the administration console on the server.keyStorePassword=secret
trustStorePassword=secret
geronimo-default
in the server. For better security, use encrypt sub-command to encrypt the plain text password in the file. By default, the content of keystorePasswordfile.key
file is from /var/config/config-substitutions.properties
file.org.apache.geronimo.keyStoreTrustStorePasswordFile
.
export JAVA_OPTS="-Dorg.apache.geronimo.keyStoreTrustStorePasswordFile=$myDir/KeystoreTrustSotrePasswordFile.key"
set JAVA_OPTS="-Dorg.apache.geronimo.keyStoreTrustStorePasswordFile=%myDir%/KeystoreTrustSotrePasswordFile.key"
Bookmark this on Delicious Digg this | Privacy Policy - Copyright © 2003-2011, The Apache Software Foundation, Licensed under ASL 2.0. |